Updated:03:22 PM EST Jan 22


this is ggmania.com subsite

NEWS
rss feed 
 
top 100
archive
submit news

FREE eBooks

REVIEWS
 
SOFTWARE
CD/DVD tools
Free Antivir
Security
Drivers
Utilities
 
FORUMS
comments
hardware
software
off-topic
 
LINKS
 
SPONSORS:

Forex Brokers Reviewed



Booty Bingo

New Look Bingo

Mummies Bingo

M Jackpots

Check out https://casinopiloten.se/basta-casinon-online for the best online casino sites with highest bonuses in Sweden.

Bästa mobilcasino means the best mobile casino in Swedish. Visit NyaMobilCasinon.se and play at top smartphone casinos.

Looking for free spins? https://nyacasinonsverige.se/nya-free-spins/ Visit and claim 10, 20, 50 or more extra spins to play your favourite slots.

(C) 2006-2017 TechAmok
All Rights Reserved.


CONTACT
 
Experts can hack most CPUs since 2008 over USB - TechAmok

Experts can hack most CPUs since 2008 over USB - [security]
08:20 AM EST - Nov,11 2017 - post a comment

Positive Technologies, which in September said it has a way to drill into Intel's secretive Management Engine technology buried deep in its chipsets, has dropped more details on how it pulled off the infiltration. The biz has already promised to demonstrate a so-called God-mode hack this December, saying they've found a way for "an attacker of the machine to run unsigned code in the Platform Controller Hub on any motherboard."

For those who don't know, for various processor chipset lines, Intel's Management Engine sits inside the Platform Controller Hub, and acts as a computer within your computer. It runs its own OS, on its own CPU, and allows sysadmins to remotely control, configure and wipe machines over a network. This is useful when you're managing large numbers of computers, especially when an endpoint's main operating system breaks down and the thing won't even boot properly. Getting into and hijacking the Management Engine means you can take full control of a box, underneath and out of sight of whatever OS, hypervisor or antivirus is installed. This powerful God-mode technology is barely documented and supposedly locked down to prevent miscreants from hijacking and exploiting the engine to silently spy on users or steal corporate data. Positive says it's found a way to commandeer the Management Engine, which is bad news for organizations with the technology deployed.

For some details, we'll have to wait, but what's known now is bad enough: Positive has confirmed that recent revisions of Intel's Management Engine (IME) feature Joint Test Action Group (JTAG) debugging ports that can be reached over USB. JTAG grants you pretty low-level access to code running on a chip, and thus we can now delve into the firmware driving the Management Engine.

With knowledge of the firmware internals, security vulnerabilities can be found and potentially remotely exploited at a later date. Alternatively, an attacker can slip into the USB port and meddle the engine as required right there and then. There have been long-running fears IME is insecure, which is not great as it's built right into the chipset: it's a black box of exploitable bugs, as was confirmed in May when researchers noticed you could administer the Active Management Technology software suite running on the microcontroller with an empty credential string over a network.


Add your comment (free registrationrequired)

Short overview of recent news articles

Jan,22 2018 Microsoft Releases $189 Laptops For Schools
Jan,20 2018 The best pics on the Internet #247
Jan,20 2018 Calculating a Car Crash - Numberphile
Jan,19 2018 Google Rolling Out Fix For Wi-Fi Killing Bug
Jan,19 2018 NASA Is Testing Small Nuclear Reactors To Power Mars Colonies
Jan,19 2018 iOS Update to Let iPhone Owners Keep Phones Running Fast
Jan,19 2018 Google Sends Security Patch to Pixel Phones
Jan,19 2018 OnePlus Confirms 40,000 Customers' Data at Risk
Jan,19 2018 AMD Radeon Adrenalin 18.1.1 Beta Drivers
Jan,18 2018 Tomb Raider - Official Movie Trailer #2
Jan,18 2018 Carmageddon TDR 2000 is free
Jan,18 2018 Dell XPS 15 2-In-1 W/ Intel 8th Gen & AMD Radeon RX Vega
Jan,18 2018 Intel Random Restart Bug & Data Center Performance After Patches
Jan,17 2018 Monster Hunter World Commercial By Sony Is Hilarious
Jan,17 2018 World's most powerful mobile spyware can read WhatsApp messages
Jan,17 2018 YouTube Announces Stricter Criteria For Monetization
Jan,17 2018 Why Is Modern Pop Music So Terrible?
Jan,16 2018 Chromecast, Google Home linked to potential Wi-Fi issues
>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs