Tag Archive for: component

US CISA Urges Improvements to Key Computer Component

/in


Governance & Risk Management
,
Patch Management

Unified Extensible Firmware Interface Should Be More Secure, Says Agency

Prajeet Nair (@prajeetspeaks) •
August 4, 2023    

US CISA Urges Improvements to Key Computer Component
Image: Shutterstock

The U.S. federal government is urging computer manufacturers to improve the security of firmware architecture that boots up devices after a powerful bootkit spotted last year sparked heightened concerns over permanent malware infections.

See Also: Live Webinar | Unmasking Pegasus: Understand the Threat & Strengthen Your Digital Defense

The Cybersecurity and Infrastructure Security Agency issued a call to action Thursday for the standard developers behind the Unified Extensible Firmware Interface to improve patch distribution, coding and logging practices.

UEFI is an industry standard for hardware initialization when a computer powers up, published by the UEFI Forum. A spokesperson said the forum has no comment.

The call comes after the discovery of malware known as BlackLotus, a powerful bootkit sold in hacking forums for $5,000, caused the National Security Agency in June to warn Windows systems administrators over its threat.

BlackLotus bypasses Microsoft security features meant to protect hackers from infecting the boot process that takes place before the Windows operating system assumes control. Once the malware has infected UEFI software, it can gain full control over the system. Boot loader infections are difficult to detect and any computer infected with BlackLotus must be completely re-imaged and possibly discarded.

Microsoft has released multiple patches to stymie BlackLotus, but the NSA said patching is only a first step to hardening machines against the malware (see: NSA Issues Remediation Guidance for BlackLotus Malware).

“UEFI bootkits are very powerful…

Source…

SPHINX Real-time Cyber Risk Assessment

/in



By Component, By Application, By Platform, By End User And Region – Global Analysis of Market Size, Share & Trends For 2019–2021 And Forecasts To 2031

/in


ReportLinker

ReportLinker

C4ISR Market to surpass USD 181. 1 billion by 2031 from USD 120. 2 billion in 2021 at a CAGR of 4. 2% in the coming years, i. e. , 2021-2031. Product Overview C4ISR (Command, Control, Communications, Computers, Intelligence, Surveillance & Reconnaissance) systems are mainly used by organizations in the defense industry.

New York, July 05, 2022 (GLOBE NEWSWIRE) — Reportlinker.com announces the release of the report “C4ISR Market: Segmented: By Component, By Application, By Platform, By End User And Region – Global Analysis of Market Size, Share & Trends For 2019–2021 And Forecasts To 2031” – https://www.reportlinker.com/p06288795/?utm_source=GNW
However, civil sector institutions such as airports, railways, and oil and gas exploration departments are increasingly using them. The C4ISR system is a collection of systems, commonly known as a network of networks, that operates on the same principles as the Internet. As a result, it is vulnerable to comparable attacks known as cyber attacks, which necessitate the implementation of proper security measures to protect it from such attacks or to recover if the attack succeeds. Cyber security of C4ISR systems refers to all of the steps taken to accomplish this.

Market Highlights
Global C4ISR Market is expected to project a high up CAGR of 4.2% by 2031.

Some of the primary drivers driving the market are the deployment of small, reliable, and advanced C4ISR systems in a variety of applications, which has increased demand around the world. The cost of these systems has decreased as a result of improvements in ISR technologies and improvements in their manufacturing procedures. Armed forces and law enforcement agencies’ improved defensive and surveillance capabilities are pushing the C4ISR market.

Global C4ISR Market: Segments
Services segment is expected to register maximum market share over the forecast period

The requirement to improve armoured forces operational efficiency, the growing need to support C4ISR system life extension initiatives, and the growing usage of augmented reality and virtual reality in battle management and planning are all propelling the C4ISR market forward.

Space segment is estimated to account for…

Source…

Guard, Reserve Component Summit Exemplifies ‘Cyber Is a Team Sport’

/in


Senior leaders from around the U.S. Cyber Command enterprise attended a summit on April 19 at the command’s headquarters to discuss the future of cyber operations, evolving capabilities, and deeper integration.

The gathering was conducted both in-person and virtually, bringing together Reserve Component leadership and Service Cyber Component commanders to highlight current contributions, challenges, and strategies within the cyber environment, while focusing on increased integration and collaboration.

During the event, leaders engaged in a roundtable discussion covering three topics: increasing Reserve Component cyber capacity/capabilities, operations in the information environment, and intelligence operations relating to cyber.

Gen. Paul Nakasone, CYBERCOM commander and National Security Agency/Central Security Service director, discussed the value of the Total Force during his opening remarks at the event. He said that protecting the nation against malicious cyber activity is a whole-of-nation effort involving partners from industry, academia, interagency, and the Guard and Reserve.

While each component brings a unique aspect to the cyber fight, it is the partnerships of the Total Force that gives America’s cyber warriors an advantage.

The benefit of Guard and Reserve teammates is they often bring skillsets from their civilian careers, which can boost innovation. This expertise, coupled with their ability to easily support their home states and work within existing partnership programs, brings a valuable dynamic to the cyber defense of the nation.

“Cyber warfare is not just our future—it is our contemporary reality,” said Gen. Hokanson, Chief, National Guard Bureau. “The National Guard is positioned to be leaders in the digital domain, and continues to enhance our nation’s cyber capabilities in combat and in the homeland.

“With 4,000 National Guard cyber operators across 40 states, many working for leading tech companies, the National Guard has the knowledge, skills, and abilities to play a critical role in the DoD’s cyber enterprise,” he added.

This joint partnership between CYBERCOM components has already proved successful. In the 2020 Elections, the…

Source…