A security framework requiring all users, both inside and outside an organization’s network, to be continuously verified before accessing applications and data. Zero Trust assumes that no user or device is inherently trustworthy.

An attack that targets a previously unknown vulnerability in software or hardware before a fix is available. Because there’s no existing defense, zero-day exploits are highly dangerous and often used in advanced cyber attacks.

A security flaw in software or hardware that is exploited by attackers before the vendor has released a fix.