To help address this challenge, we are excited to announce the firmware analysis capability in Microsoft Defender for IoT – now available in Public Preview.įirmware analysis takes a binary firmware image that runs on an IoT device and conducts an automated analysis to identify potential security vulnerabilities and weaknesses. The devices are basically black boxes – without insight into what software or patch level was used to build the device, known vulnerabilities, or other potential anomalies. But for IoT and OT devices without an agent, organizations don’t get the same level of visibility into the growing number of devices on their network. With modern endpoint solutions, IT and security analysts get visibility into the software inventories and known vulnerabilities for IT devices. This problem is so important that the US National Cybersecurity Strategy released a report in March 2023 indicating the IoT security threat as a strategic objective. This is the situation organizations find themselves in when it comes to IoT and OT devices. Or when a critical vulnerability like log4shell is discovered, having no easy way to know which of those endpoints are exploitable. Consider an organization that has thousands of endpoints on their network that are running 10-year old, unpatched SSH servers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |