Skip to main content

2015 saw more zero-day exploits but it took less time to fix them

A pair of hands on a laptop keyboard with two displays.
Image used with permission by copyright holder
Zero-day attacks can be an infuriating quandary for developers. With the right exploit, skilled hackers can find a security hole in a piece of software and use it to hold hostage data from the software’s users. Because it puts developers in a hurry to fix the issue immediately, before threats begin to impact its users, this type of attack is known as a zero-day exploit — as in the developer has zero days to release a patch before things go haywire.

In 2012, there were 14 zero-day exploits out in the wild. By 2013, this increased to 23, and in 2014, there was only one more discovered, making the total 24. After that, unfortunately, and as security firm Symantec points out, the zero-day exploit situation did not improve, nor did it only moderately worsen. Instead, from 2014 to 2015, the number of classified zero-day exploits jumped 225 percent, from an already daunting 24 to a distressing 54.

Recommended Videos

The drastic upturn in last year’s exploits is due in part to the Hacking Team breach, which unleashed six of these zero-day exploits on its own, inspiring Adobe and other developers to accelerate their fixes.

Please enable Javascript to view this content

“It is difficult to defend against new and unknown vulnerabilities,” reads Symantec’s yearly Internet Threat Report, “particularly zero-day vulnerabilities for which there may be no patch, and attackers are trying hard to exploit them faster than vendors can roll out patches.”

The report notes that the most popular exploit kit in 2015, Angler, took advantage of these new zero days to conduct over 19.5 million attacks that were, in turn, blocked by Symantec.

Over the last year, the most common victim of zero-day attacks was Adobe Flash, which infamously survived 10 vulnerabilities, comprising 17 percent of the total zero-day attacks in 2015. While this is clearly not something a company should take pride in, that was an improvement over 2014 when Flash’s zero-day exploit count stood at an unfortunate 12. Notably, though, Microsoft also endured 10 zero days in 2015.

On the bright side, however, Adobe has been a serious contributor to the reduction in the amount of time it took developers to issue zero-day patches in 2015. Compared to the average 59 days it took in 2014 and even the four it took in 2013, the average repair time of just one day in 2015 isn’t too shabby.

Meanwhile, the total time of exposure was seven days last year, as opposed to 295 days in 2014 and 19 days in 2013.

So even though we’re now seeing more zero-day attacks than ever, the time it is taking to address them is diminishing rapidly. That could arguably put us in a better place than before.

Gabe Carey
Former Digital Trends Contributor
A freelancer for Digital Trends, Gabe Carey has been covering the intersection of video games and technology since he was 16…
Snap up this LG 27-inch gaming monitor for $126 at Walmart
The LG 27-inch gaming monitor on a white background.

If you’ve just grabbed one of the affordable gaming PC deals going on, don't forget to grab a monitor deal too. Right now at Walmart, you can buy an LG 27-inch UltraGear full HD gaming monitor for $126. That’s a fantastic price for such a large monitor -- even this screen normally costs $159. If you’ve just bought a mid-range or budget gaming PC and you want a good looking full HD screen to pair with it, you’ll be delighted with this option. Let’s take a look at what it has to offer for this great low price.

Why you should buy the LG 27-inch UltraGear full HD gaming monitor
The best gaming monitors are a little different from the regular best monitors, focusing more on high refresh rates and low response times. The LG 27-inch UltraGear full HD gaming monitor has all of that. It has a high refresh rate of 180Hz so it can handle fast-moving action from all your favorite games, from the latest Call of Duty to some fun sessions on Fortnite. There’s no risk of motion blur here. The LG 27-inch UltraGear full HD gaming monitor also has support for AMD FreeSync, which further helps matters.

Read more
AMD says that FSR 4 might not be an RDNA 4 exclusive after all
AMD announcing FSR 4 during CES 2025.

AMD will soon launch new graphics cards, although they were pretty much absent from its CES 2025 keynote. Fortunately, a new interview with Frank Azor, AMD's chief architect of gaming solutions and gaming marketing, gives us a little bit more information. One interesting tidbit from the interview is that FSR 4, currently an RDNA 4 exclusive, might still one day make it to older AMD GPUs.

Azor spoke to Michael Quesada in an interview that was later shared by El Chapuzas Informatico and VideoCardz. They spoke about FSR 4, but also the general price point and the predicted performance of the RX 9070 XT. Throughout the interview, it's made clear that AMD is angling for a value-oriented product this time around.

Read more
20 years on, the Mac mini is in the best shape of its life
The Mac mini up on its side on a desk.

The original Mac mini was released 20 years ago today. And while it was a miniature marvel when it debuted, it’s gone from strength to strength in the years since. Today, it’s one of the best desktop computers you can buy.

When Steve Jobs pulled out the first Mac mini on stage in 2005, it was met with gasps and cheers from the audience, such was its unbelievably compact form factor. Yet when it was introduced, Jobs’ description of it was somewhat underwhelming: “This is a very robust computer, but it’s very, very tiny.” You got the feeling that even Apple wasn’t taking it particularly seriously.

Read more