Joint NSA & CISA Cybersecurity Info Sheet Urges Fortification of Baseboard Management Controllers
Overlooked firmware! Indeed. When users buy commercial or commercial on the shelf (COTS) products, there are standard features such as BMC. Adversaries kno…https://t.co/rygWKvQh5k
GSA and American Council for Technology - Industry Advisory Council (ACT-IAC) event on Cyber-Supply Chian Risk Management. Please see the PFP Cybersecurity handout file in comment.
https://t.co/p1fAS3xe4p
#supplychainsecurity#DFARS#FAR#zerotrust https://t.co/JJJSg9UiaK
Beside public charging stations, be careful with USB cable.
I have been showing an USB cable with its connector opened to show a small circuit board with a controller chip. There are stories that adversaries use USB cable as tools. https://t.co/xoQCN7jbtF
This is an excellent example that a dual use technology is showing impact outside of defense applications. There many more to come towards commercial and consumer applications. Congrats to @N5SensorsInc and the N5 Sensors, Inc. Team.
Blu Ventures dua…https://t.co/zx2kyUJrIg
It is a good question for board meetings about how ChatGPT will impact their business. One thing for sure is that I expect to be surprised again and again. https://t.co/31I5qDyHx1
PFP Cybersecurity detects firmware attacks with air gapped monitoring, for level 1 and level 0 devices, in machine time.
—————
Red Balloon Security, Inc. have disclosed multiple architectural vulnerabilities in Siemens SIMATIC and…https://t.co/eqljRWDCHM https://t.co/OJfJf5jqVu
While awareness is due for Chinese made CCTV camera, buyers should pay attention to Chinese camera chips inside CCTV camera made by all vendors. "Chips from the HiSilicon unit of Huawei are sparking concern because they power millions of surveillance cam…https://t.co/90MtljwHMM
Commissioner Simington Calls For Mandatory Security Updates For Wireless Devices.
"It is true that vulnerabilities in device software can give rise to data theft and other application-level incidents that are usually thought of a…https://t.co/edp7mlS1v0 https://t.co/4diFF3bjyT
How do ensure there is no unallowed chips such as memory and IP camera chips, in your products? PFP Cybersecurity SigLytics can do it on benchtop, I. Manufacturing and by end users. https://t.co/Rb0IqjriFe
The SigLytics (TM) analytics platform from PFP Cybersecurity detects changes in hardware bill of materials (#HBOM) and software bill of materials (#SBOM) from chips, boards, devices and system.
Thanks to @IGonebnyy for pointing out the naming error about…https://t.co/HKXxSaY7AC
PFP Cybersecurity's SigLytics analytics platform protects chips, boards, devices and systems. It is scalable, flexible, portable and affordable. https://t.co/rE2lmRomFv
“The active exploitation of some of the discovered vulnerabilities can’t be detected by firmware integrity monitoring systems due to limitations of the Trusted Platform Module (TPM) measurement. The remote device health attestation…https://t.co/gT1SXpVq5w https://t.co/aq3fyqt2xa
We are proud supporters of Dr. Aziza Shad and sponsors of The Aslan Project Inc., a Washington, DC nonprofit that addresses inequalities in global pediatric cancer care through a multi-disciplinary approach focusing on education an…https://t.co/AEo7tv1OI3 https://t.co/RAhEjEE6Sa
The PFP Cybersecurity SigLytics platform can detect counterfeit chips, devices with counterfeit chips inside, devices tampered in hardware and firmware. It is designed for non-technical frontline operators to check devices in hand…https://t.co/2bQHeTweuD https://t.co/egZLjXlhVH
Vendors and users have seen this for years but there was no written requirement.
The new GSA Subpart 504.70 - Cyber-Supply Chain Risk Management requirement, effective 4/1/2022, with penalties such as termination should bring atten…https://t.co/Po4HDP6JJT https://t.co/wvbkpEKmac