THE Hacker News argues that you cannot control when the next critical vulnerability drops, but you can shrink your exposed surface to avoid the scramble, emphasising that most teams have more internet-facing exposure than they realise. It notes that for serious vulnerabilities, disclosure to exploitation can be as short as 24 to 48 hours, and a project called Zero Day Clock projects the time-to-exploit shrinking to minutes by 2028.
The piece highlights a real zero-day in Microsoft SharePoint (CVE-2025-53770) that was exploited before a patch, with Microsoft stating it was disclosed on a Saturday and Chinese state‑sponsored groups had been exploiting it for up to two weeks; Intruder’s research found thousands of publicly accessible SharePoint instances at disclosure time, all of which were unnecessary exposures.
It outlines three key elements of attack surface reduction: asset discovery to define the surface, treating exposure as a risk with a suitable detection capability, and continuous monitoring, including daily port scanning to catch changes such as an exposed Remote Desktop. The article concludes that fewer exposed services mean fewer surprises and slower, more deliberate responses when new vulnerabilities emerge, with Intruder offering automation to help stay ahead of exposure. according to Intruder.