US cybersecurity agencies CISA And NSA stated in their recent joint leadership that the baseboard control controllers (BMC) is a weak link in critical infrastructure systems that can be exploited by attackers to gain access to networks and data.

BMC makes it possible to remotely manage and control computers and servers even when the system is turned off. However, due to their high level of privilege and accessibility from the network, these devices often attract the attention of attackers who can use them as an entry point for various cyber attacks.

The CISA and NSA guidance contains recommendations and mitigations for vulnerabilities in the BMC, such as credential protection, firmware upgrades, VLAN separation, and integrity monitoring. In addition, agencies advise moving highly sensitive production data to secure devices, as well as periodically using firmware scanning tools and considering unused BMCs as potential security risks.

“By following these guidelines, organizations can significantly improve the security of their BMCs and reduce the risk of potential cyber threats,” the document says.

The new guidelines come weeks after the UK’s National Cyber ​​Security Center (NCSC) and other international security agencies released new warning warning the public against Chinese cyber activity targeting critical national infrastructure networks in the United States.

“We encourage all server management organizations to implement the recommended actions in this guide,” said Jennifer Esterly, director of CISA.