Omdia Analysis; Q4 2024

Hidden Risks in Software Supply Chains.

The report highlights how modern software ecosystems depend on increasingly complex supply chains, often obscuring vulnerabilities within binary code and firmware. Traditional source code analysis alone is insufficient—organizations must go deeper to uncover risks embedded in compiled binaries.

NetRise’s Revolutionary Approach

NetRise introduces a Shift Right methodology, analyzing binaries instead of source code, offering critical advantages:

• Comprehensive Coverage: Addresses vulnerabilities across IoT, industrial devices, and enterprise software.
• Binary-Level Insights: Detects issues in compiled code where source analysis fails.
• Broad Application: Enables security for all software binaries, from firmware in XIoT devices to off-the-shelf applications
  
  

Key Findings from Omdia Firmware

• Vulnerabilities: XIoT devices, such as medical equipment, industrial OT, and connected cars, often feature embedded software with undocumented risks.
• Supply Chain Transparency: Businesses require detailed Software Bills of Materials (SBOMs) to assess software integrity and compliance.
• Evolving Security Demands: Increasing regulations like the EU Cyber Resilience Act and Executive Order 14028 emphasize the need for robust supply chain security measures.
  
  

Why This Matters

In an era where software is foundational to business operations, understanding vulnerabilities across the software lifecycle is critical. Omdia recognizes NetRise's platform as a leader in addressing this challenge by enabling organizations to take control of their supply chain security.