Practice zero-day vocabulary: exploitation before patches, vulnerability windows, dark web markets, nation-state actors, and Patch Tuesday exposure windows.
0 / 5 completed
1 / 5
A security briefing says 'The zero-day was exploited before the patch was available.' Why is this particularly dangerous?
A zero-day vulnerability is dangerous because defenders have zero days to prepare — the vulnerability is actively exploited before the vendor knows about it or can release a patch. Organizations cannot patch what isn't known, forcing reliance on behavioral detection and network controls.
2 / 5
A threat intelligence report mentions 'the vulnerability window.' What does this phrase refer to?
The vulnerability window is the dangerous gap between disclosure (or exploitation) and patching. For zero-days, this window starts before disclosure — making it especially long. Even for known CVEs, slow patching processes create extended vulnerability windows.
3 / 5
An intelligence report says 'The zero-day is sold on the dark web.' What does a zero-day sell for?
Zero-day exploits are valuable commodities. A browser or mobile OS zero-day can sell for $500,000 to $2.5 million+ on gray/dark markets. Buyers include nation-states, intelligence agencies, and criminal organizations. The high price reflects the power of undetectable, unpatched exploitation.
4 / 5
A news report says 'Nation-state threat actors use zero-days.' Why do nation-states specifically seek zero-days?
Nation-state actors use zero-days for strategic operations requiring stealth — espionage, sabotage (like Stuxnet), or pre-positioning access in critical infrastructure. They preserve valuable zero-days for high-priority targets rather than burning them on opportunistic attacks.
5 / 5
A security manager says 'The Patch Tuesday cycle leaves a window of exposure.' What is Patch Tuesday?
Microsoft releases patches on Patch Tuesday (second Tuesday of each month). Attackers who discover vulnerabilities can exploit them from the day of discovery until Patch Tuesday — potentially weeks. Many organizations then have additional delay in testing and deploying patches, extending the exposure window further.