What is Firmware Security?
The security of low-level software embedded in hardware devices, which runs before the operating system and can be compromised to create persistent, undetectable backdoors.
Firmware occupies the most privileged position in any computing system — it controls the hardware directly.
Why Firmware Matters
- Runs before the OS loads
- Has full hardware access
- Often not scanned by antivirus
- Updates are infrequent
- Compromise persists through OS reinstalls
Attack Vectors
- BIOS/UEFI rootkits: Survive OS reinstallation and disk formatting
- Baseband exploits: Compromise the cellular modem
- USB firmware: BadUSB attacks reprogram USB device firmware
- SSD firmware: Malware in storage controller firmware
Protection
- Enable Secure Boot (verifies firmware integrity)
- Keep firmware updated (BIOS, SSD, router)
- Use hardware with open-source firmware when possible (Coreboot)
- Physical security — firmware attacks often require physical access
Related Terms
Baseband Processor
A separate processor in your phone that handles all cellular communication, runs its own proprietary firmware, and has direct access to the microphone and GPS.
Supply Chain Attack
An attack that compromises a target by infiltrating a trusted supplier, vendor, or software dependency in their supply chain.
Trusted Platform Module (TPM)
A specialized security chip built into most modern computers that provides hardware-based cryptographic functions and secure key storage.
Have more questions?
Use our guided flow to get the right next privacy step for Firmware Security.
Open Guided Flow