Firmware Corruption

Description

Adversaries may overwrite or corrupt the flash memory contents of system BIOS or other firmware in devices attached to a system in order to render them inoperable or unable to boot, thus denying the availability to use the devices and/or the system.[1] Firmware is software that is loaded and executed from non-volatile memory on hardware devices in order to initialize and manage device functionality. These devices may include the motherboard, hard drive, or video cards.

Products, Sensors, and Dependencies

ProductDependenciesData sourceAccess requiredProtocolData CollectedNotes
Tenable.ioAdvanced Network ScanWindows machinesAuthenticated ScanWMIEncryptable VolumePlugin ID: 51187

References

WMI Encryptable Volume Enumeration

Attack Path Technique Details

Framework: MITRE ATT&CK

Family: Impact

Platform: Windows

Products Required: Tenable.io

Tenable Release Date: 2022 Q2