Share this article

Improve this guide

83% of businesses have experienced firmware attacks recently

2 min. read

Published onMarch 31, 2021

published onMarch 31, 2021

Share this article

Improve this guide

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Key notes

Cyberattacks on corporate firmware have intensified over the past two years, according to a study commissioned by Microsoft.

More than 80% of enterprises have experienced at least one firmware attack in the past two years, but only 29% of security budgets are allocated to protect firmware.

Firms do invest in monitoring networkvulnerabilitiesand scanning techniques; but one of the reasons for the alarming mentioned numbers would be that firmware is more difficult to monitor, Microsoftsays.

Why are firmware attacks more appealing for hackers?

Why are firmware attacks more appealing for hackers?

In terms of effort, attacks on software are easier to finalize. However, hackers prefer targeting firmware because, if successful, they guarantee access to a company’s credentials andencryptionkeys. And the damage is considerably more substantial.

Given the increased security measures taken by companies recently, attackers have also invested more time in perfecting their strategies.

As a result, many companies don’t even know they have been exposed to such a security breach so they don’t particularlytake appropriate measures.

How to prevent attacks on firmware?

To prevent these types of attacks, enterprises should focus on using Kernel data protection (KDP) and memoryencryptionsolutions. These techniques work by blocking malware from accessing kernel memory.

However, only 36% of businesses invest in hardware-based memoryencryptionand less than half (46%) are investing in hardware-based kernel protections, the study says.

So companies spend more time and resources on post-attack measures than on designing prevention strategies, which the source rates asoutdatedmethods

The main reason for these trends would be the lack of automation. Consequently, Microsoft proposes a new class of devices called Secured-core PCs, with a zero-trust build core that prevents attacks on firmware from the very beginning.

Secured-core PCs have already been delivered to some companies with positive results. Microsoft has partnered with AMD and Intel to include this technology on their devices.

As a result, more than 100 secured-core devices from brands such as Acer, Dell, HP, Lenovo, or Panasonic are available on the market today. The number will surely go higher in the near future.

More about the topics:Cybersecurity

Sinziana Mihalache

Sînziana loves getting people to better understand products, processes, and experiences beyond a simple user guide, either in writing or making use of images. She joined the team after a long-term collaboration with one of the world’s top cybersecurity companies - Bitdefender. Outside work, Sînziana enjoys climbing mountains, backpacking around the world, and writing about almost anything on her blog.

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Δ

Sinziana Mihalache