Eclypsium, which specializes in firmware and hardware security, followed up with a post Thursday calling BlackLotus “the first in-the-wild bootkit that can bypass Secure Boot.”
“The impact of exploiting these vulnerabilities include remote control of compromised servers, remote deployment of malware, ransomware and firmware implants, and server physical damage (bricking),” Eclypsium noted.
“As operating systems like Windows, Mac, and Linux are becoming more secure and hardened, attackers have started looking for other areas to attack. And firmware becomes a perfect choice for them because its protections basically live below the operating systems,” Nate Warfield, director of threat research and intelligence at Eclypsium, told SC Media in an interview. “Our team even found ransomware groups like Conti start to research into getting firmware level persistence on devices.”
Podcasts and Videos
In the News
Portland, OR – February 7, 2023 – Eclypsium® today announced that its digital supply chain security platform is now available on Google Cloud Marketplace, the premier platform for enabling businesses to easily find, deploy, and manage pre-configured software solutions and tools in the cloud. With this partnership, customers of Google Cloud now have access to […]
Portland, OR – January 26, 2023 – Eclypsium® today announced the launch of its new podcast series, Below the Surface: The Supply Chain Security Podcast. Hosted by cybersecurity veteran Paul Asadoorian, the podcast will be a lively discussion of the threats affecting supply chain, specifically focused on the firmware and low-level code that is a […]
Award given to companies that demonstrate incredible potential in cybersecurity market
The new round highlights market demand to protect global businesses from soaring breaches through supply chains of critical hardware, devices, firmware and software
New research report reveals financial organizations are failing to act despite majority experiencing a firmware-related breach
Eclypsium selected as the first company to help fortify the supply chain of hardware and firmware in government networks and systems
Company acknowledged for compliance, security health and technical excellence with SOC2 Type II certification and Global Infosec award win
New Fortune 500 customers, strategic partnerships and expansion in new global markets and industries propel company as supply chain attacks intensify.
Partnership aims to capture growing market opportunity around cybersecurity and help develop new revenue streams in Japan.
Eclypsium®, the enterprise firmware security company, today announced the appointment of Jarrod Bogue as Chief Revenue Officer and welcomed Arif Kareem to Eclypsium’s Board of Advisors.
Eclypsium, the enterprise firmware security company, today announced the availability of Eclypsium for Network Devices, which allows organizations full visibility and control over their network device fleets, their networking infrastructure, and their device supply chains without installing agents on the devices themselves.
Leading enterprise firmware security company recognized as Baby Black Unicorn, having potential of being valued at $1b in near future
Eclypsium, the enterprise device integrity company, announced it has partnered with Securecraft PTE. Ltd, an authorized Singapore-based IT distributor.
Portland, OR – May 17, 2021 – Eclypsium® today announced a major new extension to their enterprise device integrity platform, which lets organizations easily extend visibility and security beyond their traditional endpoints to now include network and unmanaged devices that can impact overall security posture. These include traditional network gear like switches, routers, VPNs, application […]
Portland, OR – May 7, 2021 –Eclypsium®, the enterprise device security company, today announced it has been awarded a U.S. Air Force, AFWERX Small Business Innovation Research (SBIR) Phase 1 contract. The contract will allow Eclypsium to conduct feasibility studies with the Department of Defense (DoD) to demonstrate how the company’s enterprise device security platform supports unprecedented […]
Organizations Apply Risk-Based Vulnerability Management to Firmware and Hardware Infrastructure
Financing Accelerates Company Growth to Address Massive Device Security Gap
Eclypsium has been recognized as the Emerging Technology Company of the Year by the Technology Association or Oregon.
Eclypsium today announced its selection by TAG Cyber as a Distinguished Vendor in the 2021 Security Annual.
Eclypsium, an innovator in enterprise device security, has been recognized as one of four vendors in Gartner’s recent report Cool Vendors in Security Operations and Threat Intelligence.
Enterprise firmware security leader also receives Info Security PG’s Global Excellence Award and multiple Cybersecurity Excellence Awards
Enterprise Firmware Security Leader Recognized as One of The Most Promising Startups to Watch
Eclypsium Platform Now Generally Available; Joint Demos Available at RSA Conference
Eclypsium recognized for pioneering security that defends the firmware layer of the enterprise from vulnerabilities and threats
Madrona Venture Group, Andreessen Horowitz and Intel Capital Invest in Eclypsium’s Oversubscribed Series A Round.
ZAG Communications for Eclypsium
+1 (703) 928-9996