cybersecurity-Trusted-VPN-Client-news.jpg

SYSTEM-INDEPENDENT SECURITY ARCHITECTURE PROTECTS AGAINST UEFI MALWARE

After Trojans and ransomware targeting data theft and extortion, attackers have been developing new "persistent" methods to inject malware for some time. Already in 2018, the first successful UEFI malware attacks (Lojax) became public. However, the lucrative attack method is very complex to program. Accordingly, these attacks were highly selective and not carried out on a broad scale. This is different now: the well-known malware "TrickBot", which was often delivered with Emotet, has found new ways to permanently store itself in the UEFI (Unified Extensible Firmware Interface). This form of malware remains invisible to regular antivirus programs. Software updates and new installations have no effect - malware nested in the UEFI even survives a new installation or hard disk replacement. For the attackers themselves, the possibilities are endless: corrupting the firmware, locking the computer, even taking over the entire system are easy.

Only fully comprehensive security solutions offer users appropriate protection against this growing range of attack scenarios. At the same time, employees today expect to be able to access the corporate or government network at any time and from anywhere, and not to be tied to a fixed workstation. This expectation and the high security requirements are met by solutions that protect all end devices, enable a secure connection to the corporate network and guarantee the protection of sensitive data even in the event of theft or loss. Particularly in the case of remote access solutions that enable secure connection to the corporate network, it is essential that users ensure the necessary independence from the security architecture of the operating system. An additional security gain is offered by solutions that act like a UEFI firewall through strong separation. In this way, an outflow of data is prevented even in the event of vulnerabilities and security holes in the operating system.

IT security expert Rohde & Schwarz Cybersecurity offers such a solution with its VPN Client, approved up to classification level VS-NfD (RESTRICTED) by the Federal Office for Information Security (BSI). R&S®Trusted VPN Client acts like a UEFI firewall and blocks potential attacks from the Windows operating system on the basic firmware. Changes to the UEFI instance noticed by the operating system are also eliminated after each reboot - making permanent malware nesting impossible. "We are convinced that security can only be achieved independently of the operating system," said Dr. Falk Herrmann, CEO of Rohde & Schwarz Cybersecurity. "With the R&S®Trusted VPN Client, we guarantee security while ensuring the digital sovereignty of the users, and in combination with R&S®Trusted Disk hard disk encryption – approved up to classification level VS-NfD (RESTRICTED) by the BSI -, we offer a comprehensively protected and approved workplace for public institutions and companies."

Demander des informations

Vous avez des questions ou besoin d'informations supplémentaires ? Remplissez simplement ce formulaire et nous vous recontacterons rapidement.

Je souhaite recevoir des informations de Rohde & Schwarz via

Marketing de permission

Qu'est ce que cela signifie en détail ?

Je reconnais que les entités ROHDE & SCHWARZ GmbH & Co. KG et ROHDE & SCHWARZ ou toute autre société subsidiaire mentionnée au sein de ce site Internet, peuvent me contacter par le moyen de leur choix (email ou courrier) pour des raisons marketing et publicitaires (par exemple pour des informations sur des offres spéciales et des promotions) en relation avec, mais pas uniquement, des produits et des solutions dans les domaines du test et mesure, des communications sécurisées, de la surveillance et test des réseaux, des broadcasts et médias, ainsi que de cybersécurité.

Vos droits

Cette déclaration de consentement peut être révoquée à tout moment par l'envoi d'un courriel portant, dans son objet, la mention "Unsubscribe" (désinscription) à news@rohde-schwarz.com. En outre, chaque courriel envoyé contient un lien vers une fonction de désinscription de publicités ultérieures adressées par courrier électronique. La "Déclaration de confidentialité" expose plus en détail l'utilisation des données personnelles, ainsi que la procédure de révocation de consentement.

Votre demande a bien été envoyée ! Nous vous contacterons dans les plus brefs délais.
An error is occurred, please try it again later.