Intel AMT security locks bypassed on corp laptops – fresh research • The Register
'F-Secure recommends enterprises adjust the system provisioning process to include setting a strong AMT password, and disabling AMT if this option is available. ', "F-Secure's research indicates that some system manufacturers were not requiring a BIOS password to access MEBx."
'Setting a BIOS password, which normally prevents an unauthorised user from booting up the device or making low-level changes to it, does not prevent access to the AMT BIOS extension. '
'This allows an attacker access to configure AMT and make remote exploitation possible. ', "Updated Security shortcomings in Intel's Active Management Technology (AMT) can be exploited by miscreants to bypass login prompts on notebook computers."
[–] derram 0 points 1 point 1 point (+1|-0) ago
https://archive.fo/G5SwC :
'F-Secure recommends enterprises adjust the system provisioning process to include setting a strong AMT password, and disabling AMT if this option is available. ', "F-Secure's research indicates that some system manufacturers were not requiring a BIOS password to access MEBx."
'Setting a BIOS password, which normally prevents an unauthorised user from booting up the device or making low-level changes to it, does not prevent access to the AMT BIOS extension. '
'This allows an attacker access to configure AMT and make remote exploitation possible. ', "Updated Security shortcomings in Intel's Active Management Technology (AMT) can be exploited by miscreants to bypass login prompts on notebook computers."
This has been an automated message.