Microsoft has announced the acquisition of ReFirm Labs to bolster IoT security. This move comes as modern computing devices increasingly move to Cloud connectivity.
The rise of the intelligent Edge, often described as an amalgamation of distinct microprocessors each serving unique functions such as high-speed networking, graphics, and AI, has seen an expansion in devices containing specialised sub-processors, each with its own firmware layer, presenting a challenging security landscape.
A notable challenge lies in the difficulty of monitoring and protecting devices at the firmware level, a task that many vulnerability analysis and endpoint detection and response tools struggle with. This has created an attractive opportunity for attackers, particularly as firmware often stores sensitive information like credentials and encryption keys. A survey commissioned by Microsoft revealed that 83% of security decision-makers had encountered firmware security incidents, yet only 29% had allocated resources to protect this crucial layer.
In light of the increasing number of attacks on firmware and the revelation of over 25 critical severity vulnerabilities in IoT and Operational Technology devices, securing these devices from the supply chain upwards has become imperative. Device manufacturers, integrating third-party software and components, may inadvertently introduce security vulnerabilities due to a lack of tools and expertise in component analysis.
ReFirm Labs is recognised for its firmware security expertise and its Centrifuge firmware platform, which enhances Microsoft’s capabilities in analysing and protecting firmware with the efficiency of Cloud computing. The incorporation of ReFirm Labs into Microsoft aims to enrich the firmware analysis and security capabilities across devices that constitute the intelligent Edge, from servers to IoT devices.
The technology and knowledge brought by ReFirm Labs, particularly its notable contribution through the Binwalk open-source software, will advance Microsoft’s existing efforts to secure IoT and OT devices. This initiative is part of Microsoft’s broader strategy to close the security gaps between hardware and software, including the launch of Secured-core PCs, the development of the Pluton security processor, and the extension of secured-core to servers and Edge devices.
This acquisition underscores Microsoft’s commitment to enhancing security from chip to Cloud, leveraging its vast resources, including a team of over 3,500 defenders and the processing of more than 8 trillion security signals daily. The integration of ReFirm Labs’ technology and expertise is poised to offer significant value to customers, enabling them to discover, monitor, and update their network-connected devices, thereby safeguarding against the emerging threats posed by firmware vulnerabilities.
There’s plenty of other editorial on our sister site, Electronic Specifier! Or you can always join in the conversation by commenting below or visiting our LinkedIn page.