You are part of a cybersecurity team that discovered a zero-day vulnerability affecting your organization’s critical infrastructure. What should be the most immediate action taken to mitigate the risk posed by this vulnerability?
The first immediate action to take when a zero-day vulnerability is discovered should be to implement compensating controls. Compensating controls are security measures put in place to mitigate the risk of the zero-day vulnerability until a permanent fix, such as a patch, can be developed and deployed. Updating software, replacing hardware, or public disclosure may be part of a later response, but controlling the risk immediately is crucial.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are compensating controls?
Open an interactive chat with Bash
Why is it risky to wait for a vendor to release a patch for a zero-day vulnerability?