Microsoft: nowadays most vulnerabilities are exploited as zero-days


Originally published at:

When a vulnerability in Windows, Office and other Microsoft products is attacked for the first time, it’s likely a zero-day. The number of exploits for already patched vulnerabilities is decreasing, according to Microsoft’s Matt Miller who works at the company’s Security Response Center.