Firmware and Frameworks: MITRE ATT&CK
Learn how firmware security fits into this widely used framework that tracks and maps adversary actions. Find out which tactics and techniques are leveraging firmware vulnerabilities and known exploits.
Firmware: Ransomware’s #1 Enabler
Two intersecting trends — the recent firmware explosion and rampant ransomware — have caused havoc and made security teams question their previous strategies. This research illustrates how we got here …
The Top 5 Firmware Attack Vectors
As firmware-level threats continue to gain popularity in the wild, security teams need to understand how these threats work and the real-world risks they pose to an organization’s security. Recently …
Weak Links: Firmware Security for ICT Supply Chains
Every piece of information and communications technology (ICT) equipment in an organization today is an amalgamation of chips, components, and code from a convoluted chain of vendors and suppliers. Any …
5 Reasons to Secure Firmware in Financial Organizations
The cybersecurity teams who defend financial services organizations are engaged in what often feels like hand-to-hand combat with financially and politically motivated adversaries. Teams must simultaneously enable highly-tailored omni-channel customer …
Applying Zero Trust in the Supply Chain
Learn how organizations can apply the core concepts of Zero Trust to mitigate their risk and prevent firmwarebased attacks such as DMA attacks, with the goal in mind to provide …
From the Back Office to the Boardroom: The Changing Role of the Security Executive
How to Navigate This Change and Shift to a Risk-Centric Approach CISOs and other security executives have long been perceived as the “no” people of the organization, shutting down new …
How to Build a Risk Management Plan
7 Steps to Agile Risk Managment in the Age of Distribution The face of risk has never been more amorphous and elusive. Because the same technologies driving the digital revolution—AI, …
5 Best Practices for Improved Risk Management
With Digital Transformation Happening at Lightning Speed, Keep Your Risk in Check Over the past couple of years, many organizations have taken a “transform first, ask (security) questions later” approach …
7 Best Practices to Modernize Your Third-Party Risk Management
Today’s challenging business climate – with its growing uncertainty, greater complexity and increasingly disruptive cyber threats – has been a wakeup call to improve third-party risk management (TPRM). For these …
