Re: [LUG] Critical Intel Flaw

To: list@xxxxxxxxxxxxx

Subject: Re: [LUG] Critical Intel Flaw

From: Daniel Robinson <manipula@xxxxxxxxx>

Date: Tue, 2 May 2017 00:24:47 +0100

Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx

Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=dclug.org.uk; s=1491642364; h=Sender:Content-Type:Reply-To:List-Subscribe:List-Help:List-Post:List-Unsubscribe:List-Id:Subject:To:Message-ID:Date:From:References:In-Reply-To:MIME-Version; bh=CFeUzf0wLqZP7XnHrjim8rDQzfk0LgaU/ojpzrxhUR4=; b=36bkeCs9hAMWglcL5DTItJ+BUnuxwRzGzwmxl+W3T1+uyzHpNGTyPaJ/sRCrKDukuR8OvGllr9QY2eLJLT+TJsra/Tr1ppslFOHhNDengPCBgLHFRiEMRL1PVy/WlV0ynV840unGSrFhSmH77uA+/AAlr2N8+8/ebtiWJA7lQDM=;

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=u4c5gAzH26KDKWlnzXh6aG0MeGcC9fH4T4pC3Ax9yY0=; b=U5PMb/Nhbbm4jljMOwabksjaTxPKtOsP24um05e4IDHSHVziqU06ElOkGGHxLWzVS1 R6N+5dbJsXJ5qF5tgUThR05pvIR1Tne8p5MMGt1RR+BmP7YhwYt4YuzkQY20xBBVhV7l Dfz7eowHUWg57pnIXW0QZYWsIx7dkUCwrI5GqwilY4kOloW+ZAFZiLxGuhazRny+RB35 JLruAkXyRXMWfJhb547vRs9IRQx8goBAJuF808AOp6mCW5GJvGy6kmZvmTDmQk0qBDnV I3qKVIm4yxSjnFeYRvJ356oH6Omfs8kwWevQ55YObzE3VIU/e0z4VvdI2nsJh/hKR8Cn nsgA==

Pinged that link to my IT department, thank you ;)

On 1 May 2017 at 23:53, mr meowski <mr.meowski@xxxxxxxx> wrote:

Well it was only a matter of time before this happened:

https://www.theregister.co.uk/2017/05/01/intel_amt_me_vulnerability/

It's been there since the dawn of the Core series Intel CPUs... I wonder
how long the three letter agencies have known about this.

Give it a few more days for the Canvas/Metasloit modules to emerge and
I'll take you up on that challenge of compromising at least some of the
bitlocker-protected Windows machines Simon :]

Not that Linux ones would be safe either.

The only good news is that your home PC probably, maybe, perhaps doesn't
have support for this baked into the silicon. The bad news is that all
Intel business class machines (including servers) most definitely do.

This one is really, really bad news.

Cheers
--
The Mailing List for the Devon & Cornwall LUG
https://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq

References:

[LUG] Critical Intel Flaw
- From: mr meowski