// THREAT DETECTION AND DATA PRIVACY TERM
Workaround
A workaround is a temporary solution used to bypass a security flaw or operational problem. It doesn't fix the root cause but allows the system to continue functioning securely until a permanent patch is available.
TECHNICAL DEFINITION
In cybersecurity incident response, a workaround is a temporary, tactical mitigation or compensating control applied to a system or network to bypass a known vulnerability or software bug. This interim solution, distinct from a permanent patch, reduces the immediate risk of exploitation and restores functionality, allowing for business continuity while a definitive remediation is developed and deployed.
BACKGROUND
A zero-day is a vulnerability or security hole in a computer system unknown to its developers or anyone capable of mitigating it. Until the vulnerability is remedied, threat actors can exploit it in a zero-day exploit, or zero-day attack.
READ MORE ON WIKIPEDIASYNONYMS & ALIASES
- temporary fix
- stop-gap measure
- compensating control
- interim solution
- band-aid fix
- bypass
USAGE NOTE
Workarounds are implemented to quickly reduce risk but must be tracked carefully, as they can become permanent and introduce their own security issues.
DEVELOPERS
Organizations developing technology related to Workaround.
Develops 'virtual patching' technology within its security platforms, such as Deep Security. This allows organizations to shield vulnerabilities from exploitation by implementing a protective policy layer, serving as a direct workaround until an official patch can be applied.
Provides Next-Generation Firewalls (NGFWs) and the Cortex XDR platform, which allow security teams to create custom threat prevention rules and policies. These serve as workarounds to block specific exploits or malicious traffic targeting known vulnerabilities before a patch is deployed.
Operates a global network that includes a Web Application Firewall (WAF). Cloudflare can rapidly deploy new WAF rules to protect customers from emerging threats and zero-day vulnerabilities, effectively acting as a large-scale, immediate workaround for web-based attacks.
Offers the Falcon endpoint protection platform, which enables administrators to implement workarounds directly on endpoints. This can include isolating hosts, blocking specific malicious processes, or creating custom detection rules to prevent the exploitation of an unpatched vulnerability.
A leading incident response and threat intelligence firm that provides actionable guidance when new vulnerabilities or attack campaigns are discovered. Their recommendations often consist of specific configurations and mitigation steps that act as temporary workarounds to protect systems from active threats.
Specializes in vulnerability management platforms that identify and prioritize security flaws across an organization's IT infrastructure. This intelligence is crucial for directing where workarounds are needed most urgently, guiding security teams to apply temporary fixes to the most critical systems.
Provides a cloud security platform that inspects all internet traffic for threats. By operating between the user and the application, Zscaler can block exploit attempts against unpatched software, providing a protective workaround without requiring any changes to the end device.