Supporting Cyber Protection Teams
Warfighters need to have absolute confidence in all their equipment when deployed in the field. Yet, while teams have the training and tools to verify and maintain their tactical equipment, the same ...
Navigating the Financial Impact and Material Challenges of the IT Supply Chain
In today’s interconnected and digital landscape, the IT supply chain plays a critical role in the success and security of enterprises. However, it also exposes organizations to a myriad of risks that ...
Modern Endpoint Security: Supply Chain Security with EDR is a Force Multiplier
The history of endpoint security has been defined by key moments in which new threats and attacker strategies force security to reinvent itself. The rapid rise of supply chain attacks and vulnerabilities ...
PCWorld: Tons of Gigabyte motherboards come with a hidden firmware backdoor
The backdoor installs software updates from unsecured web servers. Read More > The post PCWorld: Tons of Gigabyte motherboards come with a hidden firmware backdoor appeared first on Eclypsium | Supply Chain ...
CSO: Gigabyte firmware component can be abused as a backdoor
Attackers can abuse the UEFI firmware to inject executable malware code into the Windows kernel, compromising systems. Read More > The post CSO: Gigabyte firmware component can be abused as a backdoor ...
The Stack: Millions of Gigabyte motherboards appear to be backdoored
“I know how I would do this intentionally and it would look exactly like this. You literally are downloading something from the internet and running it with the highest privileges on the ...
WIRED: Millions of PC Motherboards Were Sold With a Firmware Backdoor
Hidden code in hundreds of models of Gigabyte motherboards invisibly and insecurely downloads programs—a feature ripe for abuse, researchers say. Read More > The post WIRED: Millions of PC Motherboards Were Sold ...
BTS #11 – SCRM and Supply Chain Security Up and Down the Stack – Steve Orrin
Supply Chain threats and industry / government initiatives like EO 14028 are driving a deeper understanding and a set of requirements for applying supply chain risk management (SCRM) and increased transparency (ex ...
Supply Chain Risk from Gigabyte App Center Backdoor
Recently, the Eclypsium platform began detecting suspected backdoor-like behavior within Gigabyte systems in the wild. These detections were driven by heuristic detection methods, which play an important role in detecting new, previously-unknown ...
The Ultimate Guide to Supply Chain Security
Eclypsium is tackling arguably the most fundamental challenge in IT and security today – how to make it easy for any organization to independently audit the security of their supply chains and ...
