| Zscaler Deploys Protections for Internet Explorer Zero-Day Vulnerability |
| Exploit Allegedly Used to Compromise Google and Others |
| SUNNYVALE, California, January 14, 2010 - Zscaler, Inc., the market leader in cloud-delivered multi-tenant Security as a Service (SaaS), announced that it has globally deployed protections to combat a zero-day vulnerability in Microsoft Internet Explorer. The vulnerability (CVE-2010-0249) affects all currently supported versions of Internet Explorer and has been tied to recent high profile, targeted attacks |
| Numerous reports suggest that this vulnerability was used in recently publicized attacks on Google, Adobe, and others. A patch is not yet available for this issue. Moreover, suggested workarounds can be cumbersome to implement and will restrict features on legitimate websites. Zscaler was notified of the exploit through the Microsoft MAPPs program, through which Microsoft shares data with
trusted partners. |
| “Targeted, web based attacks can be a powerful tool for criminals,” said Michael Sutton, vice president Security Research, Zscaler. “Zero-day attacks that impact popular software such as Internet Explorer impact virtually every organization. When vulnerabilities such as these emerge, rapid deployment of protections is absolutely critical.” According to Sutton, Zscaler was able to push protections to all Zscaler Enforcement nodes within hours of receiving exploit details from Microsoft. |
| About Zscaler |
| Through a multi-tenant, globally-deployed infrastructure, Zscaler enforces business policy, mitigates risk, and provides twice the functionality at a fraction of the cost of current solutions. It enables organizations to provide the right access to the right users, from any place and on any device - while empowering the end-user with a rich Internet experience. For more information, visit us at www.zscaler.com. |
| Press Contacts: |
Paula Dunne,
Office: +1-408-776-1400, Mobile: +1-408-893-8750
Paula.Dunne@zscaler.com |
| Zscaler®, and the Zscaler Logo are trademarks of Zscaler, Inc. in the United States. All other trademarks, trade names or service marks used or mentioned herein belong to their respective owners. |
| |
The Cloud Security Company™
