If you aren’t using a Zero Trust approach, are you really practicing security?

From a security and risk mitigation perspective you want an approach that is consistently effective, especially when a newly discovered vulnerability is being actively exploited.  However, the Log4J vulnerability renders virtually every website as potentially compromised.  This means that web security solutions that only rely on reverse DNS resolution, or IP reputation are ineffective – websites cannot be currently trusted to be safe.  Web gateways provide a better level of protection by actively scanning web content for malware, but this still relies on the effectiveness of detection and response to work and eventually a zero-day can find its way through the defenses.