[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
|
Under Linux, if lspci doesn't show a communication controller with "MEI" or "HECI" in the description, AMT isn't running and you're safe. If it does show an MEI controller, that still doesn't necessarily mean that you're vulnerable - AMT may still not be provisioned. If you reboot you should see a brief firmware splash mentioning the ME. Hitting ctrl+p at this point should get you into a menu which should let you disable AMT. General information and guides:-ÂÂ https://downloadcenter.intel.com/download/26755 On 01/05/17 23:53, mr meowski wrote:
Well it was only a matter of time before this happened: https://www.theregister.co.uk/2017/05/01/intel_amt_me_vulnerability/ It's been there since the dawn of the Core series Intel CPUs... I wonder how long the three letter agencies have known about this. Give it a few more days for the Canvas/Metasloit modules to emerge and I'll take you up on that challenge of compromising at least some of the bitlocker-protected Windows machines Simon :] Not that Linux ones would be safe either. The only good news is that your home PC probably, maybe, perhaps doesn't have support for this baked into the silicon. The bad news is that all Intel business class machines (including servers) most definitely do. This one is really, really bad news. Cheers |
-- The Mailing List for the Devon & Cornwall LUG https://mailman.dclug.org.uk/listinfo/list FAQ: http://www.dcglug.org.uk/listfaq