Trend Micro's Zero Day Initiative Celebrates 20 Years of Industry Leadership
Trend Micro (OTC:TMICY) is celebrating the 20th anniversary of its Zero Day Initiative (ZDI), the world's largest vendor-agnostic bug bounty program. In 2024, ZDI led the industry by helping disclose 73% of all vulnerabilities, surpassing all other participating vendors combined.
The program provides Trend Micro customers with virtual patches for zero-day vulnerabilities approximately two months ahead of official vendor updates. Currently, ZDI operates with 450+ dedicated researchers across 14 global threat centers and maintains a community of over 19,000 vulnerability researchers.
Notable achievements include discovering critical vulnerabilities in Microsoft's systems, identifying Apple QuickTime security issues, and disrupting covert government operations like the Black Energy APT targeting Ukraine.
Trend Micro (OTC:TMICY) celebra il 20° anniversario della sua Zero Day Initiative (ZDI), il più grande programma di bug bounty indipendente dai fornitori. Nel 2024, ZDI ha guidato il settore contribuendo alla divulgazione di il 73% di tutte le vulnerabilità , superando la somma di tutti gli altri fornitori partecipanti.
Il programma offre ai clienti di Trend Micro patch virtuali per vulnerabilità zero-day con un anticipo di circa due mesi rispetto agli aggiornamenti ufficiali dei fornitori. Attualmente, ZDI opera con oltre 450 ricercatori dedicati distribuiti in 14 centri globali per le minacce e conta una comunità di più di 19.000 ricercatori di vulnerabilità .
Tra i risultati più importanti si annoverano la scoperta di vulnerabilità critiche nei sistemi Microsoft, l'individuazione di problemi di sicurezza in Apple QuickTime e l'interruzione di operazioni governative segrete come l'APT Black Energy che prendeva di mira l'Ucraina.
Trend Micro (OTC:TMICY) celebra el 20º aniversario de su Zero Day Initiative (ZDI), el programa de recompensas por errores independiente más grande del mundo. En 2024, ZDI lideró la industria ayudando a revelar el 73% de todas las vulnerabilidades, superando a todos los demás proveedores participantes combinados.
El programa proporciona a los clientes de Trend Micro parches virtuales para vulnerabilidades zero-day aproximadamente dos meses antes de las actualizaciones oficiales de los proveedores. Actualmente, ZDI cuenta con más de 450 investigadores dedicados en 14 centros globales de amenazas y mantiene una comunidad de más de 19,000 investigadores de vulnerabilidades.
Logros destacados incluyen el descubrimiento de vulnerabilidades crÃticas en los sistemas de Microsoft, la identificación de problemas de seguridad en Apple QuickTime y la interrupción de operaciones gubernamentales encubiertas como el APT Black Energy que atacaba a Ucrania.
Trend Micro (OTC:TMICY)ëŠ� 세계 최대ì� ë²¤ë” ë…립 버그 바운í‹� 프로그램ì� ì œë¡œ ë°ì´ ì´ë‹ˆì…”í‹°ë¸�(ZDI)ì� 20주년ì� 기ë…합니ë‹�. 2024ë…� ZDIëŠ� 업계ì—ì„œ ì „ì²´ 취약ì ì˜ 73% 공개ë¥� 주ë„하며 다른 ëª¨ë“ ì°¸ì—¬ 벤ë”ë¥� 합친 것보ë‹� ë� ë§Žì€ ì„±ê³¼ë¥� 기ë¡í–ˆìŠµë‹ˆë‹¤.
ì� í”„ë¡œê·¸ëž¨ì€ Trend Micro ê³ ê°ì—게 ê³µì‹ ë²¤ë” ì—…ë°ì´íŠ¸ë³´ë‹¤ ì•� ë‘� ë‹� ì•žì„œ ì œë¡œ ë°ì´ 취약ì ì— ëŒ€í•� ê°€ìƒ� 패치ë¥� ì œê³µí•©ë‹ˆë‹�. 현재 ZDIëŠ� ì � 세계 14ê°� 위협 센터ì—ì„œ 450ëª� ì´ìƒì� ì „ë‹´ 연구ì›�ê³� 함께 ìš´ì˜ë˜ë©°, 19,000ëª� ì´ìƒì� 취약ì � 연구ìž� 커뮤니티ë¥� ìœ ì§€í•˜ê³ ìžˆìŠµë‹ˆë‹¤.
주요 성과로는 마ì´í¬ë¡œì†Œí”„íŠ� ì‹œìŠ¤í…œì˜ ì¹˜ëª…ì � 취약ì � 발견, ì• í”Œ 퀵타ìž� 보안 ë¬¸ì œ ì‹ë³„, ìš°í¬ë¼ì´ë‚˜ë¥¼ 겨냥í•� 블랙 ì—너지 APT와 ê°™ì€ ì€ë°€í•� ì •ë¶€ ìž‘ì „ ë°©í•´ ë“±ì´ ìžˆìŠµë‹ˆë‹¤.
Trend Micro (OTC:TMICY) célèbre le 20e anniversaire de sa Zero Day Initiative (ZDI), le plus grand programme de bug bounty indépendant des fournisseurs au monde. En 2024, ZDI a mené l'industrie en contribuant à la divulgation de 73 % de toutes les vulnérabilités, dépassant la somme de tous les autres fournisseurs participants.
Le programme offre aux clients de Trend Micro des correctifs virtuels pour les vulnérabilités zero-day environ deux mois avant les mises à jour officielles des fournisseurs. Actuellement, ZDI fonctionne avec plus de 450 chercheurs dédiés répartis dans 14 centres mondiaux de menaces et compte une communauté de plus de 19 000 chercheurs en vulnérabilités.
Parmi les réalisations notables figurent la découverte de vulnérabilités critiques dans les systèmes Microsoft, l’identification de problèmes de sécurité dans Apple QuickTime, ainsi que la perturbation d’opérations gouvernementales secrètes telles que l’APT Black Energy ciblant l’Ukraine.
Trend Micro (OTC:TMICY) feiert das 20-jährige Jubiläum seiner Zero Day Initiative (ZDI), dem weltweit größten herstellerunabhängigen Bug-Bounty-Programm. Im Jahr 2024 führte ZDI die Branche an, indem es bei der Offenlegung von 73 % aller Schwachstellen half und damit alle anderen teilnehmenden Anbieter zusammen übertraf.
Das Programm bietet Trend Micro-Kunden virtuelle Patches für Zero-Day-Schwachstellen etwa zwei Monate vor den offiziellen Updates der Anbieter. Derzeit arbeitet ZDI mit über 450 engagierten Forschern in 14 globalen Bedrohungszentren und unterhält eine Gemeinschaft von mehr als 19.000 Schwachstellenforschern.
Bemerkenswerte Erfolge umfassen die Entdeckung kritischer Schwachstellen in Microsoft-Systemen, die Identifizierung von Sicherheitsproblemen bei Apple QuickTime und die Störung verdeckter Regierungsoperationen wie der Black Energy APT, die auf die Ukraine abzielte.
- Led industry with 73% of all vulnerability disclosures in 2024
- Provides customers early protection through virtual patches 2 months before official updates
- Extensive research network with 450+ dedicated researchers and 19,000+ vulnerability researchers
- Successful track record of identifying critical security threats in major software products
- None.
Bug bounty program incentivizes security research to make customers and industry safer
To learn more about the Trend Zero Day Initiativeâ„�, visit: Ìý
Kevin Simzer, COO at Trend: "Our top priority is empowering our customers to take a proactive approach to cybersecurity. The Zero Day Initiative is one of the best tools we have to stay ahead of cybercriminals, and it's one of a kind. Nobody else in the industry can protect their customers as far in advance as we do."
Trend ZDI is a leader in global vulnerability research and disclosure. In 2024 it helped to responsibly disclose
The research behind these newly discovered bugs ensures that Trend customers receive virtual patches against zero-day vulnerabilities. These virtual patches are available, on average, more than two months before official vendor updates are available.
But the ZDI doesn't just benefit Trend customers. It makes the digital world safer for everyone by ensuring software flaws are fixed by vendors before threat actors can exploit them.Ìý
The program comes from humble beginnings, when it Ìýin 2005 by TippingPoint, a division of 3Com. The idea was simple: financially incentivize the security research community to find zero-days in common products and responsibly disclose those to the relevant vendor so they can make their products more secure.
The now-famous Ìýfollowed in 2007, offering teams of researchers an opportunity to go head-to-head against each other and the clock to find zero-days in pre-selected product categories.
Trend became the custodian of the ZDI in 2016 after acquiring TippingPoint. Today, the program boasts 450+ dedicated researchers working from 14 global threat centers, and a wider community of over 19,000 vulnerability researchers.
Highlights of the ZDI program include:
- that a patch for a LNK vulnerability exploited by the infamous Stuxnet worm did not work properly. Their research enabled Microsoft to issue a new patch, five years after the original
-
$125,000 - ZDI researcher found in Apple's QuickTime for Windows software, prompting the tech giant to cease support for the product. ZDI led the charge to urge QuickTime customers to uninstall it
- The ZDI's work has helped to on numerous occasions, including the Black Energy APT which has frequently targeted
Ukraine over the years - A ZDI researcher won a 2023 Pwnie for "most under-hyped research" when he discovered a : activation context cache poisoning
About Trend Micro
Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information.ÌýFueled by decades of security expertise, global threat research, and continuous innovation, Trend Micro's AI-powered cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints.ÌýAs a leader in cloud and enterprise cybersecurity, Trend's platform delivers a powerful range of advanced threat defense techniques optimized for environments like AWS, Microsoft, and Google, and central visibility for better, faster detection and response.ÌýWith 7,000 employees across 70 countries, Trend Micro enables organizations to simplify and secure their connected world. .
View original content to download multimedia:
SOURCE Trend Micro Incorporated
FAQ
What percentage of vulnerabilities did Trend Micro's ZDI help disclose in 2024?
How many researchers are part of Trend Micro's Zero Day Initiative (ZDI)?
What is the advantage of ZDI's virtual patches for Trend Micro customers?
What major security discoveries has Trend Micro's ZDI program made?
When was Trend Micro's Zero Day Initiative (ZDI) established?
