Talk to an expert
Talk to an expert

IoT & Connected Devices

IIoT, smart building, IoMT, Edge

21 billion devices. An attack surface beyond control.

Non-patchable firmware, protocols with no authentication, an opaque supply chain — and a Cyber Resilience Act coming into force in 2026. Manufacturers and industrial operators no longer have the luxury of waiting.

1 K
IoT attacks per day
+ 1 %
IIoT attacks in 2 years
Sept. 2026 1
CRA reporting deadline
1 M
Maximum CRA non-compliance fine

WHY THE IOT IS THE MOST EXPOSED BORDER

Non-patchable firmware by design
Most IoT devices carry firmware developed under cost/time pressure, with no structured security process — deployed for 10 to 30 years. Default passwords, obsolete libraries, manufacturer backdoors: a fleet impossible to fix after deployment.
Supply chain of embedded components
A compromised library in Net-SNMP or OpenSSL ends up in thousands of product references simultaneously. Schneider Electric alone exposes 150,000 ICS systems on the internet. A single critical CVE can affect an entire ecosystem.
Edge & IIoT: the convergence that multiplies vectors
Edge gateways interconnect IoT, OT and the cloud. Each poorly secured gateway becomes a pivot point. The attack surface keeps growing as devices proliferate.
CRA: the countdown has begun
The Cyber Resilience Act mandates a complete SBOM, reporting within 24h from Sept. 2026, and full compliance by end of 2027. Manufacturers who haven't started their security-by-design effort are already behind — audits take 4 to 16 weeks.

OUR SERVICES

QREDTEAM

ADVERSARY SIMULATION

  • Red Team on IIoT/OT infrastructure — factories, smart buildings, utilities
  • Pentest of IoT devices before CRA certification or market release
  • Simulation of the IT→OT pivot from the corporate network to the controllers
  • Testing of OTA mechanisms — a major unauthenticated attack vector
  • Red Team on industrial protocols Modbus, BACnet, OPC-UA.
Discover QRedTeam

QLAB

DEEP SECURITY RESEARCH

  • Reverse engineering of IoT/IIoT firmware without source access
  • Hardware analysis: JTAG, UART, flash extraction, SCA/FIA on MCUs
  • 0-day research on PLCs — Modicon, SIMATIC, FactoryTalk
  • Supply-chain audit of third-party components in firmware
  • SBOM evaluation and CRA 2027 compliance roadmap.
Discover QLab

QSHIELD

SOFTWARE PROTECTION

  • Protection of firmware against reverse engineering and competitor cloning
  • Anti-counterfeiting for manufacturers exporting to risky markets
  • Obfuscation of proprietary libraries in connected equipment
  • IP protection of embedded algorithms against side-channel analysis
  • Code-level attack-surface reduction — CRA Art. 13 compliance.
Discover QShield

QUARKSLAB DIFFERENTIATOR

Quarkslab is one of the few players to master the entire offensive IoT chain: from the hardware component — SCA/FIA, JTAG — through network exploitation to the protection of embedded code. Defensive competitors (Dragos, Claroty, Armis) do detection and monitoring; they don’t find the vulnerabilities. Generalist consultancies (Wavestone, Atos) lack the hardware and firmware depth. QShield is the market’s unique offering for protecting manufacturers’ embedded code against competitor or nation-state cloning.

WHAT WOULD WE SAY TO EACH OTHER, FACE TO FACE

Is your firmware really secure — or simply never audited?

The Cyber Resilience Act changes everything: for the first time, a manufacturer can be held liable for its firmware’s vulnerabilities after market release. The question is no longer “do we need an audit?” — it’s “will we have time to do one before September 2026?” Quarkslab delivers a complete firmware audit with SBOM and CRA roadmap in 4 to 8 weeks depending on product complexity.

We find before your adversaries
Our engineers think like attackers. We use the same techniques as those documented in the CVEs we publish.
From silicon to network
SCA, FIA, JTAG, flash extraction, binary firmware RE. The complete chain, in-house, with no subcontracting of the hardware part.
Your code, tamper-proof
QShield is the market's only solution for protecting embedded code against cloning and reverse engineering — competitor or nation-state.
Zero conflict of interest
Quarkslab sells no SIEM, MDR or defensive solution. Our only interest is finding the real vulnerabilities in your product.
Our publications & CVEs
Assess your IoT exposure