Research

Binarly releases Binary Risk Hunt, a free vulnerability scanner with software bill of material generator.

This vulnerability got our attention for many reasons: firstly, the vendor agreed on the critical impact; and secondly, the nature of the vulnerability where an unauthenticated user can remotely trigger the code flow with a simple post request and cause the arbitrary code execution over classical stack overflow (CWE-121).

After discovering PKFail, the Binarly REsearch team went on the hunt for other instances of non-production test keys being used in firmware binaries. In this case, non-production test keys were originally generated by reference implementation vendors sitting at the top of the supply chain and then propagated to downstream vendors which often failed to replace them.

In this blog, we dive deeper into newly discovered data points gathered from our free detection service pk.fail and major vendor acknowledgements and developments since the initial disclosure of PKfail in July.

Binarly Unveils Transparency Platform 2.5 with Advanced Reachability Analysis

PKfail is a zero day disclosure detected by the Binarly REsearch Team. PKfail is a firmware supply-chain issue affecting hundreds of device models in the UEFI ecosystem. The problem arises from the Secure Boot "master key," known as the Platform Key (PK) in UEFI terminology, which is untrusted because it is generated by Independent BIOS Vendors (IBVs) and shared among different vendors.

In this follow-up research 6 months after public disclosure of LogoFAIL, we dive deeper into the shallow waters of the firmware supply chain confusion and the blind trust in the reference code and firmware developers. The Binarly Transparency Platform detects unfixed devices daily.

In this video, Kieran Levin, lead system architect at Framework describes how their partnership with Binarly allows them to audit and validate their firmware and software supply chain across ODM and IBV vendors. 

We've incorporated a year of research and feedback into Binarly Transparency Platform v2

Binarly Research Team shows crucial risks that affect security of BMC firmware supply chain ecosystem. We’ve assigned three Binarly identifiers BRLY-2024-002, BRLY-2024-003, BRLY-2024-004

On March 29, right before Easter weekend, we received notifications about something unusual happening with the open-source project XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux.

From day one, we founded Binarly to truly solve the software supply chain security problem. It’s become quite clear that existing solutions and approaches aren’t working...

Uncover the UEFI's dark side with a groundbreaking study on Cross-Silicon Exploitation. Explore ARM's impact on UEFI security in this technical dive.

BINARLY LogoFAIL: Learn how a firmware parser flaw can jeopardize device security.

Discover how BINARLY revolutionized software supply chain protection in 2023 with groundbreaking discoveries like LogoFAIL

Uncover the underestimated potency of decades-old attacks on BMC Security. Learn how BINARLY exposes critical risks for remote server control.

LogoFAIL by BINARLY: Discover the impact of image parsing vulnerabilities on system boot. Learn about LogoFAIL risks across UEFI firmware systems. Stay informed!

LogoFAIL by BINARLY: Discover how vulnerable image parsing impacts device manufacturers in the UEFI firmware ecosystem. Learn about critical LogoFAIL consequences.

Uncover insights into key misuse in integrated firmware images with BINARLY's analysis of Intel's explanation. Discover the impact on the software supply chain.

Uncover Major Vulnerabilities in Supermicro BMCs. Dive into hidden attack surfaces and exploits found by BINARLY REsearch in Supermicro BMC IPMI firmware.

Protect Your Devices: Uncover the Stealthy BlackTech Firmware Threat - Latest findings from NSA, FBI, CISA & NISC. Stay informed & secure.

Uncover the challenges of lingering vulnerabilities in reference code within a fractured ecosystem. Learn how these issues impact supply chains.

Uncover the impact of leaked MSI source code and Intel OEM keys on the software supply chain. Deep dive by BINARLY security experts. Implications revealed!

Discover How BINARLY Reports High Severity AMD Vulnerabilities with Industry Impact | AMD Client Vulnerabilities Revealed - BINARLY Research Team's Findings.

Discover why scalable vulnerability analysis demands automation. Learn about critical firmware-specific vulnerabilities, like BatonDrop (CVE-2022-21894), affecting Microsoft Windows bootloaders.

Uncover the secrets of the Black Lotus UEFI Bootkit. Explore the history and challenges of detecting and analyzing rootkits and bootkits. Dive into the world of advanced threat analysis.

Explore UEFI firmware vulnerabilities with efiXplorer v5.2 [Xmas Edition]. Enhance your code analysis and SMM call-out detection capabilities. Upgrade now!

Uncover the ongoing security risks in Lenovo's firmware patches. Explore why CVE-2022-3430 and CVE-2022-3431 remain unaddressed despite official disclosure.

Uncover vulnerabilities in UEFI firmware with insights on OpenSSL updates & SBOMs. Discover the impact on supply chain security. Stay informed.

Understand the repercussions of leaked Intel Boot Guard keys. Discover how it can impact the software supply chain. Stay informed with our insightful analysis.

Elevate enterprise firmware security with BINARLY's expert leadership team. Industry veterans from BlackBerry and Dragos join forces for enhanced protection.

Discover new attacks to bypass and disable Windows Management Instrumentation in the LABSCon Edition. Learn about the 'one-bit change attack' and its impact on endpoint security solutions.

Discover high-impact firmware vulnerabilities in Insyde-based devices in the 2022 LABScon report. Learn more about these critical findings today.

Explore ARM-Based Firmware Support in efiXplorer v5.0 LABScon Edition. Upgrade your UEFI analysis with BINARLY's latest tool for in-depth research.

Unlocking the Secrets: BINARLY Reveals High Severity Vulnerabilities in AMI Based Devices. Explore our eye-opening research findings now!

Discover how BINARLY uncovered 6 critical firmware vulnerabilities in HP Enterprise devices. Insights on the latest security findings await you.

Discover how symbolic execution uncovers UEFI firmware vulnerabilities with BINARLY's expert efiXplorer team. Elevate your bug detection game today!

Uncover cutting-edge insights into firmware vulnerabilities and persistence methods at the Black Hat 2022 Blasting Event - WMI edition. Dive in now!

Discover the dark world of firmware vulnerabilities and persistent cyber threats with Black Hat 2022. Unveiling the Intel PPAM attack story and more!

Discover why the industry lags in implementing Return Stack Buffer mitigations in SMM firmware. Learn how to enhance security measures effectively.

Empower your firmware security with BINARLY - Innovating the supply chain with cutting-edge binary code analysis. Learn how we're reshaping cybersecurity!

Transform firmware threat detection with BINARLY's scalable solution. Discover advanced binary code inspection for effective threat hunting.

Discover how BINARLY's Research Team is boosting enterprise device security with coordinated disclosures. Stay informed on patching Dell BIOS vulnerabilities.

Discover 16 high-impact firmware vulnerabilities in HP devices. Learn how BINARLY's security lab uncovered critical UEFI flaws affecting HP products today.

Discover 23 High-Impact Vulnerabilities in Independent BIOS Developer Software. Explore the critical security flaws affecting multiple vendors.

Unlock the depths of UEFI with Kaspersky Lab's new discovery, MoonBounce. Explore this intriguing UEFI firmware threat and the world of APT malware.

Uncover how the firmware supply chain security is at risk and explore solutions with BINARLY CEO's insights. Dive into the evolving threats.

Enhance firmware security with insights on modern EDR design flaws bypassing ETW-based solutions. Learn more from BINARLY experts at Black Hat Europe 2021.

Discover how Intel efficiently detects firmware vulnerabilities at scale in this insightful BSSA DFT case study. Uncover key findings and strategies.

Uncover critical findings on UEFI ecosystem vulnerabilities from Black Hat USA 2021. Discover key insights and solutions in safeguarding firmware supply chains.

Safeguarding UEFI Ecosystem: Discover why the Firmware Supply Chain is Hard(coded)! Dive into high-severity vulnerabilities & key findings presented at Black Hat USA 2021.

Discover the top-rated books for Malware Analysts focusing on Rootkits and Bootkits. Learn from the experts on modern malware threats today!

Enhance threat detection with more than just firmware integrity. Learn why relying solely on integrity checking may not suffice for effective security measures.

Unlock secrets of firmware security bypass with this BlackHat 2019 research on embedded controller vulnerabilities in Lenovo Thinkpad BIOS. Learn more!

Discover how BIOS Watchers safeguard against vulnerabilities in Intel Boot Guard implementation. Unveil key insights from recent research at Black Hat Vegas.