Many organisations don’t take firmware attacks seriously enough

Most organisations have policies and systems in place to reduce the risk of cyber attacks generally but according to research from Microsoft, less than one third of organisations devote enough resources to preventing firmware attacks.

Whilst the timing is coincidental with Microsoft promoting their range of extra-secure Windows 10 computers, there are lessons here for us all.

Firmware is the computer code that sits in chips on the motherboard of your devices, and since it is the layer below the operating system, normal cyber protection tools can often be ineffective. As such, any vulnerabilities can be more easily exploited and since some firmware needs to be updated separately, and it may not be done regularly.

I recommend that you be aware of the risks and take the necessary steps to mitigate them – this BBC article is a good place to start.