Finite State is launching Finite State for Asset Owners. The purpose-built solution automates and solves the complex challenges asset owners face in maintaining device software supply chain visibility, including collecting and managing large repositories of Software Bills of Materials (SBOMs).
According to The Wall Street Journal and Akamai Technologies, the Log4j vulnerability affected hundreds of millions of U.S. devices and saw an exploit attempt rate of 10 million devices an hour. Log4j remains a stark, ongoing reminder of the criticality of managing supply chain risk as organizations that are unable to pinpoint instances of Log4j continue to face attacks. Asset owners unable to identify and track software components in their connected devices are exposed to unknown supply chain risk, and this is the gap in the cybersecurity market that Finite State is addressing.
In attempts to gain at least partial visibility into their supply chains, and without access to a purpose-built solution, asset owners have been resigned to using the heavily manual options of third-party risk assessments and penetration testing. Vendor risk assessments rely on vendor attestation, which…
