Blogs & Stories

Trustwave Blog

The Trustwave Blog empowers information security professionals to achieve new heights through expert insight that addresses hot topics, trends and challenges and defines best practices.

Potential Windows Zero-Day On Sale to Highest Bidder

Proof of the rapidly expanding viability of the cybercriminal underground, our SpiderLabs researchers this week reported on a forum post that is peddling an unconfirmed zero-day vulnerability in Windows that could affect virtually every user of the operating system.

Ziv Mador, VP of security research at Trustwave, joined Trustwave Talks to discuss the fascinating discovery by his team of a potential Windows zero-day "local privilege escalation" vulnerability, which is being auctioned off in the cybercriminal underground to a single buyer at the starting asking price of $90,000.

Ziv describes what we know about the vulnerability, why zero-days becoming more publicly accessible is a worrying trend and how organizations can protect themselves against this and similar threats.

We hope you enjoy the chat!