MD3 Vulnerability management Flashcards
Vulnerability management
A vulnerability is a weakness that can be exploited by a threat.
Exploit
In security, an exploit is a way of taking advantage of a vulnerability. Besides finding vulnerabilities, security planning relies a lot on thinking of exploits.
Vulnerability management
4 Step Process
Vulnerability management is the process of finding and patching vulnerabilities. Vulnerability management helps keep assets safe. It’s a method of stopping threats before they can become a problem. Vulnerability management is a four step process.
Vulnerability management
4 Step process
Step 1: Identify vulnerabilities
Step 2: Consider potential exploits of those vulnerabilities
Step 3: Prepare defences against threats
Step 4: Evaluate defences
Vulnerability management happens in a cycle. It’s a regular part of what security teams do because there are always new vulnerabilities to be concerned about.
Zero-day exploits
New vulnerabilities are constantly being discovered. These are known as zero-day exploits. A zero-day is an exploit that was previously unknown.
The term zero-day refers to the fact that the exploit is happening in real time with zero days to fix it. These kind of exploits are dangerous. They represent threats that haven’t been planned for yet.
