Tag Archives: intel

Security flaw in Intel’s AMT lets attackers hack laptops in seconds: Cyber security firm


An attacker can reboot the target’s machine and enter the boot menu. (File Photo)

Finnish cyber security company F-Secure has claimed

Read more at: http://indianexpress.com/article/technology/tech-news-technology/security-flaw-in-intels-amt-lets-attackers-hack-laptops-in-seconds-cyber-security-firm-5025341/

Security flaw in Intel’s AMT lets attackers hack laptops in seconds

Finnish cyber security company F-Secure has claimed it has found a security flaw in Intel’s Active Management Technology (AMT) which can allow a hacker to compromise a work laptop within seconds. AMT is Intel’s proprietary solution for remote access monitoring and maintenance of corporate-grade personal computers, created to allow IT departments or managed service providers to better control their device fleets.

The company said that in July 2017 Harry Sintonen, one of F-Secure’s Senior Security Consultants, discovered unsafe and misleading default behaviour within Intel’s AMT. “AMT is no stranger to security weaknesses, with many other researchers finding multiple flaws within the system, but Sintonen’s discovery surprised even him,” the company said in a blog post.

“The attack is almost deceptively simple to enact, but it has incredible destructive potential. In practice, it can give a local attacker complete control over an individual’s work laptop, despite even the most extensive security measures,” Sintonen

Read more at: http://www.bgr.in/news/security-flaw-in-intels-amt-lets-attackers-hack-laptops-in-seconds/

Gone in 30 seconds: New Intel AMT exploit is scarier than you can ever fathom

Intel had a pretty rough start to 2018 with a slew of security flaws in Intel CPUs rearing their ugly heads. After the whole Meltdown and Spectre debacle, there’s apparently another bitter pill to swallow. F-Secure’s Senior Security Consultant, Harry Sintonen, has discovered a potential security flaw in Intel’s Active Management Technology (AMT) that allows hackers in physical proximity of a laptop to take control full control of the system and gain remote access, all under a minute.

F-Secure says the issue so severe that even the best protections, including BIOS passwords, will fail if the hacker knows his stuff. It is sort of surprising, given that the system cannot be accessed if the hacker cannot get past the BIOS password screen. However, by selecting the Management Engine BIOS Extension (MEBx) at boot, the hacker just simply login using the default ‘admin’ password. It is common that users tend

Read more at: https://www.notebookcheck.net/Gone-in-30-seconds-New-Intel-AMT-exploit-is-scarier-than-you-can-ever-fathom.278216.0.html

Gone in 30 seconds: New Intel AMT exploit is scarier than you can …

Intel had a pretty rough start to 2018 with a slew of security flaws in Intel CPUs rearing their ugly heads. After the whole Meltdown and Spectre debacle, there’s apparently another bitter pill to swallow. F-Secure’s Senior Security Consultant, Harry Sintonen, has discovered a potential security flaw in Intel’s Active Management Technology (AMT) that allows hackers in physical proximity of a laptop to take control full control of the system and gain remote access, all under a minute.

F-Secure says the issue so severe that even the best protections, including BIOS passwords, will fail if the hacker knows his stuff. It is sort of surprising, given that the system cannot be accessed if the hacker cannot get past the BIOS password screen. However, by selecting the Management Engine BIOS Extension (MEBx) at boot, the hacker just simply login using the default ‘admin’ password. It is common that users tend

Read more at: https://www.notebookcheck.net/Gone-in-30-seconds-New-Intel-AMT-exploit-is-scarier-than-you-can-ever-fathom.278216.0.html

Researcher Exploits Intel Remote Management Security In 30 Seconds But It’s Not What You Think

The big news in security (or lack thereof) recently has been the Meltdown and Spectre issues that have plagued Intel, AMD, and Apple. Those aren’t the only security issues that computer users are facing. Security research firm F-Secure has found a new security flaw that it says affects Intel Active Management Technology or AMT. AMT is an Intel proprietary solution that allows remote access or monitoring and management of personal computers in a corporate setting.

8th Gen Intel Core S series Chip8th Gen Intel Core S series Chip

The tech was meant to allow IT departments in these large organizations or managed service providers to control fleets of computers. F-Secure Senior Security Consultant Harry Sintonen found a flaw in AMT in July of 2017 (it has only now been disclosed) that surprised him. He said, “The attack is almost deceptively simple to

Read more at: https://hothardware.com/news/researcher-exploits-intel-remote-management-security

Intel AMT security flaw lets attackers easily bypass laptop passwords

Intel is having a rough start to the year. Following the Meltdown and Spectre fiasco that is ongoing, F-Secure is piling on more bad news, saying Intel’s Active Management Technology (AMT) gives attackers an easily exploitable backdoor into potentially millions of laptops.

AMT is Intel’s proprietary solution to allow IT admins remote access monitoring and maintenance of corporate-grade systems. It is commonly found on business laptops, particularly those with Intel vPro processors. AMT has had its share of security issues in the past, but this new one is arguably the most concerning issue yet.

“The attack is almost deceptively simple to enact, but it has incredible destructive potential. In practice, it can give a local attacker complete control over an individual’s work laptop, despite even the most extensive security measures,” said Harry Sintonen, senior security consultant at F-Secure.

It doesn’t take long to exploit the vulnerability, which is

Read more at: http://www.pcgamer.com/intel-amt-security-flaw-lets-attackers-easily-bypass-laptop-passwords/

McAfee Labs highlights critical challenges to threat intel sharing

McAfee Labs highlights critical challenges to threat intel sharing

McAfee has released its McAfee Labs Threats Report: April 2017, which details the challenges facing threat intelligence sharing efforts, probes the architecture and inner workings of Mirai botnets, assesses reported attacks across industries, and reveals growth trends in malware, ransomware, mobile malware and other threats in Q4 2016.

“The security industry faces critical challenges in our efforts to share threat intelligence between entities, among vendor solutions, and even within vendor portfolios,” said Vincent Weafer, vice president of McAfee Labs. “Working together is power. Addressing these challenges will determine the effectiveness of cyber-security teams to automate detection and orchestrate responses, and ultimately tip the cyber-security balance in favour of defenders.”

The report reviews the background and drivers of threat intelligence sharing; various threat intelligence components, sources, and sharing models; how mature security operations can use shared data;

Read more at: https://www.scmagazineuk.com/mcafee-labs-highlights-critical-challenges-to-threat-intel-sharing/article/649035/

VMware joins Intel to offer complementary healthcare security readiness programme to reduce health IT risk, improve …

VMware today announced a collaboration with Intel Health and Life Sciences to help global healthcare organisations better understand the current state of their security readiness.

Joining Intel’s Healthcare Security Readiness Program, VMware now offers a new complementary service that enables healthcare IT teams to gain valuable insight into their security posture compared to the industry when it comes to breach risk mitigation. The new initiative also enables organisations to identify and safeguard solutions that can be implemented to further reduce risk and improve their security posture.

VMware and Intel will showcase this programme in VMware booth #3661 at the 2017 HIMSS Annual Conference Exhibition, 19-23 February 2017 in Orlando, Florida.

VMware, Intel collaborate on healthcare security

The two companies say the new initiative also enables organisations to identify safeguard solutions that can be implemented to further reduce risk and improve their security posture.

Under the deal, VMware is offering a new complimentary service that it says enables healthcare IT teams to gain valuable insight into their security posture, compared to the industry, when it comes to breach risk mitigation.

To support the launch of the initiative, VMware cites the Ponemon Institute’s May 2016 Sixth Annual Benchmark Study on Privacy Security of Healthcare Data which reveals that data breaches in healthcare were “consistently high in terms of volume, frequency, impact, and cost over the past six years”.

VMware says the report noted that upwards of 90% of healthcare organisations experienced a data breach in the past two years, and nearly half had more than five data breaches in the same period.

“The

Read more at: http://www.itwire.com/security/76950-vmware,-intel-collaborate-on-healthcare-security.html

VMware, Intel collaborate on healthcare security

The two companies say the new initiative also enables organisations to identify safeguard solutions that can be implemented to further reduce risk and improve their security posture.

Under the deal, VMware is offering a new complimentary service that it says enables healthcare IT teams to gain valuable insight into their security posture, compared to the industry, when it comes to breach risk mitigation.

To support the launch of the initiative, VMware cites the Ponemon Institute’s May 2016 Sixth Annual Benchmark Study on Privacy Security of Healthcare Data which reveals that data breaches in healthcare were “consistently high in terms of volume, frequency, impact, and cost over the past six years”.

VMware says the report noted that upwards of 90% of healthcare organisations experienced a data breach in the past two years, and nearly half had more than five data breaches in the same period.

“The

Read more at: http://www.itwire.com/security/76950-vmware,-intel-collaborate-on-healthcare-security.html