Partnerships with Intel, Qualcomm, and AMD will bring a new layer of device security that alters the boot process to detect firmware compromise. Microsoft is teaming up with Windows device manufacturers to tighten firmware security in a new initiative called Secure-Core PCs, which are built to defend against firmware-level attacks. Its announcement arrives as attackers
Federal guidelines can help all organizations pragmatically and meaningfully improve their firmware security. Adversaries recently have noticed that firmware and hardware constitute a serious blind spot for most organizations. While firmware may have once been the domain of nation-state attackers, it’s now easier than ever for criminals to develop firmware-based attacks that bypass security and
As new Internet of Things products enter the market, speed shouldn’t trump concerns about security. Microsoft made news recently at the annual Black Hat conference in Las Vegas, generating a lot of buzz about its discovery of a malicious Russian hacker group using common Internet of Things (IoT) devices to carry out widespread attacks on
A recently announced pair of vulnerabilities in server firmware could put enterprise IT at risk. A recently announced pair of vulnerabilities in the firmware for baseboard management controllers (BMCs) used by at least eight different manufacturers’ servers is the latest incident to show a supply chain vulnerability that can have an impact on enterprise computing.
More than 5,100 vulnerable devices containing multiple terabytes of data are open to exploitation, researchers found. Thousands of users of Lenovo network-attached storage devices are at risk of data compromise via a firmware-level vulnerability. The flaw, which is present in certain models of the NAS products, allows unauthenticated users to view and access data stored
The new Intel SGX Card is intended to extend application memory security using Intel SGX in existing data center infrastructure. Intel today announced new security tools and updates ahead of next week’s RSA Conference (RSAC). The Intel SGX Card and hardware-based firmware analyzer (HBFA) are intended to provide greater security within data centers and identify