Blog | Finite State

Blog

The Finite State Blog

Practical insights and articles from our SMEs to help product security teams cut triage noise, fix what matters faster, and deliver audit-ready proof to customers and regulators.

457 results

Product Updates

AI Unpacking Evaluation Agent: Clearer Extraction Insight & Faster Fixes

Stop guessing if scan results are complete. The AI Unpacking Evaluation Agent shows unpacking quality, identifies root causes, and recommends fixes in...

Zachary O'DellFEBRUARY 17, 2026

Compliance & Regulations

A Unified Path to CRA Compliance: Why Teams Need to Break Silos and Match Velocity

Learn how unified risk assessment and reachability help teams break silos, reduce CRA reporting effort, and focus on real, exploitable risk.

Dario LobozzoJANUARY 27, 2026

Product Security

How Smarter Exploitability Analysis Transforms Product Security: Reachability Expansion

Learn how improved Reachability precision, speed, & coverage help product security teams eliminate false positives, accelerate releases, & reduce back...

Zachary O'DellJANUARY 5, 2026

Product Updates

Reachability Analysis: Expanded for Faster, Smarter, & Broader Threat Intelligence

Reachability gets a major upgrade: faster performance, 15K more CVEs, smarter input vector analysis, and automatic insights into exploitable vulnerabi...

Zachary O'DellJANUARY 5, 2026

Compliance & Regulations

Mistakes to Avoid in Your CRA Readiness Strategy

Learn the most common EU CRA readiness mistakes product security teams make and how to build a repeatable, scalable compliance strategy that works.

Dario LobozzoDECEMBER 11, 2025

Compliance & Regulations

Low-Hanging Fruit: How to Improve CRA Readiness Starting Tomorrow

Explore simple, high-impact steps product manufacturers can take today to reduce risk and begin meeting EU Cyber Resilience Act requirements.

Dario LobozzoDECEMBER 11, 2025

Compliance & Regulations

How Multi-Modal Scanning Simplifies CRA Compliance

Learn how combining binary analysis, source code scanning, and SBOM ingestion enables full-spectrum vulnerability visibility for EU CRA compliance.

Dario LobozzoDECEMBER 11, 2025

Product UpdatesConnected Vehicles

Introducing Expanded AUTOSAR Detection for Deeper ECU Visibility

Finite State now detects more AUTOSAR modules from binaries and configs, giving automotive teams deeper ECU visibility and more complete, accurate SBO...

Zachary O'DellDECEMBER 8, 2025

Case Study

How a Global Manufacturer Cut Compliance Prep by 90% & Reduced Vulnerability Noise by 95%

Learn how Finite State helped a global manufacturer eliminate 95% of false positives, streamline SBOM workflows, & cut audit prep time from weeks to d...

Finite State TeamNOVEMBER 25, 2025

Compliance & Regulations

How a Unified Risk View Simplifies Compliance with EU CRA, FDA 524B, and Beyond

From CRA to FDA 524B, regulators expect traceability and continuous security. Learn how unified risk data reduces compliance overhead & boosts confide...

Mike HatherallNOVEMBER 24, 2025

Penetration Testing

Why Pen Testing Is a Starting Point, Not the Finish Line

Pen testing offers point-in-time insight, but embedded security requires continuous visibility. Learn why lifecycle security beats one-and-done testin...

Larry PesceNOVEMBER 19, 2025

IoT & OT

The Human Element in Embedded Device Security: Insights from a Red Teamer

Embedded device security demands more than scans. Discover how red teaming uncovers real-world vulnerabilities through human ingenuity and adversarial...

Finite State TeamNOVEMBER 19, 2025