Would you rather have 10 0-day, or 10,000 vulns that were technically public, but no VDB or vuln scanner knew about? Justify your answer.
@seccubus 10 oday = unknown unknowns. how about the 10k "unknown knowns" =)
-
-
@attritionorg 1 hole can sink a ship, but plenty os ships have holes and cross the ocean. -
@seccubus you think that of the 10k holes, a few aren't as big as the 'sink' ones? -
@attritionorg that why I believe in solutions like#bromium have the future, and av is losing the race. -
@seccubus these are classic vulns, not malware/virus. you wouldn't expect AV to catch any of them. -
@attritionorg av never spots vulns, just exploits. However it can only spot known exploits, so helpless in either case.
End of conversation
New conversation -
-
-
@attritionorg knowing what the hole is, only helps me directly if I know I have it and/or if i know where it is.#SecOfficer -
@seccubus 10 0day no clue. 10k you know if you go looking. your scanner won't tell you, your vendor won't for a large % either.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.