• Hello and welcome! Register to enjoy full access and benefits:

    • Advertise in the Marketplace section for free.
    • Get more visibility with a signature link.
    • Company/website listings.
    • Ask & answer queries.
    • Much more...

    Register here or log in if you're already a member.

  • 🎉 WHV has crossed 72000 (72k) monthly views (unique) and 272000 clicks per month, as per Google Analytics! Thank you for your support! 🎉

Is Firmware the New Security Perimeter for Data Centers?

johny899

johny899

New Member
Content Writer
Messages
994
Reaction score
3
Points
23
Balance
$26.4USD
Think about where attackers begin their attack? A failure of a secure data centre from within made me consider how attackers use firmware as their starting point. Is firmware the new boundary of the data centre security perimeter?

Why Firmware Is So Important​

Firmware is below the operating system and controls how hardware operates. I used to ignore firmware at the same rate as many other teams still do. No longer do cybercriminals ignore firmware.

If an attacker can exploit firmware successfully, then it provides complete and persistent access to the system. Most traditional security systems do not detect such an access point, thereby making firmware the most dangerous element within a data centre.

Why Old Security Tools Miss Firmware Attacks​

Firewalls and antivirus only secure software and systems above them. We need to also be worried about the fact that many companies leave their BIOS and MGT Firmware without updating them.

The following reasons are why firmware attacks are so concerning:
  • After you re-install your operating system, firmware attacks continue to be a problem
  • The majority of current security products do not detect firmware attacks
  • Firmware attacks can take complete hardware control of an infected system
This is not speculation - this is real-world experience.

Firmware vs Software Attacks​

Attacks on computer software typically follow predictable patterns, while firmware attacks tend to be stealthy. Malware operating through firmware has the ability to be active before the operating system and any security software are executed.

Instead of attacking the "lock", the attacker has more control when they attack the "door".

How Data Centers Can Protect Themselves​

Today's smart teams incorporate firmware into their security. The key here is to:
  • Follow a Secure Boot Process & use Trusted Hardware.
  • Update firmware on a Regular Basis.
  • Only allow access to the hardware management tools on an "As Needed" basis.
These are all fairly simple steps, yet can have a major impact on your overall security posture.

Final Thoughts​

Firmware may not look important, but it controls everything. If teams ignore it, attackers won’t. Firmware really is becoming the new security boundary, and it deserves more attention.
 
You must log in or register to reply here.
HostingNAP Ad

Support / Help Desk

Blog - (WHV)

Hosting Reviews

Navigation

  1. WHV Forums
    1. WHV - Announcements
    2. General Discussion
    3. Introduction
    4. Web Hosting Forum
    5. Help
    6. News
  2. Marketplace
    1. VPS Offers
    2. Dedicated Server Offers
    3. Shared Hosting Offers
    4. Reseller Hosting Offers
    5. Other Offers (Not Hosting)
    6. Domain Offers
  3. Web Hosting Discussion
    1. Hosting Software & Control Panels
    2. Other Hosting Tutorials
    3. Reviews
    4. Articles
    5. Offtopic
  4. Web Hosting Tutorials
    1. cPanel Tutorials
    2. WHM Reseller Tutorials
    3. DirectAdmin Tutorials
    4. Blesta Tutorials
    5. WHMCS Tutorials
  5. Hosting Extensions
    1. WHMCS Market
    2. Blesta Market
    3. HostBill Market
Top