Even signed firmware can’t be trusted.
Relying on traditional integrity checks is simply not enough.