Firmware Security in Financial Services Supply Chains
A 2022 global survey of cybersecurity decision makers in the financial services industry that highlights awareness of firmware exploits, future spending, and remediation strategies.
First Financial Fights Cyberattacks by Securing their Firmware
Credit unions face increasingly sophisticated attacks. This study highlights the work of one of New Mexico’s largest credit unions — First Financial Credit Union — as they sealed firmware gaps …
A NIST Blueprint for Securing Digital Supply Chains
NIST 1800-161 is the foundational guidance for securing all digital supply chains. In this Eclypsium white paper we show how securing device-level “core code” fits into that framework and delivers …
5 Reasons a Vulnerability Scanner Can’t Do Firmware Security
With the increase in firmware-focused threats, many cybersecurity teams are wondering why their VM tools can’t keep up. The bottom line? They were ever meant to. Here are 5 reasons …
Need Secure Supply Chains? Start with Their DNA
The fastest and most effective path to securing device supply chains – the number one target of both nation states and criminal gangs – is by securing their embedded code.
Zero Trust for Devices: Establishing Chip-Level Trust in Enterprise Endpoints
Learn how Zero Trust principles apply to enterprise IT devices and why these principles need to extend down to the base hardware of chips, processors and system components.
Firmware and Frameworks: MITRE ATT&CK
Learn how firmware security fits into this widely used framework that tracks and maps adversary actions. Find out which tactics and techniques are leveraging firmware vulnerabilities and known exploits.
Firmware: Ransomware’s #1 Enabler
Two intersecting trends — the recent firmware explosion and rampant ransomware — have caused havoc and made security teams question their previous strategies. This research illustrates how we got here …
The Top 5 Firmware Attack Vectors
As firmware-level threats continue to gain popularity in the wild, security teams need to understand how these threats work and the real-world risks they pose to an organization’s security. Recently …
Weak Links: Firmware Security for ICT Supply Chains
Every piece of information and communications technology (ICT) equipment in an organization today is an amalgamation of chips, components, and code from a convoluted chain of vendors and suppliers. Any …
