Anon Archived Security Intel AMT security locks bypassed on corp laptops fresh research (theregister.co.uk)
submitted ago by 2335881?
Posted by: 2335881?
Posting time: 2.9 years ago on
Last edit time: never edited.
Archived on: 4/13/2018 10:00:00 AM
Views: 9
SCP: 3
3 upvotes, 0 downvotes (100% upvoted it)
Anon Archived Security Intel AMT security locks bypassed on corp laptops fresh research (theregister.co.uk)
submitted ago by 2335881?
Sort: Top
[–] derram 0 points 1 point 1 point (+1|-0) ago
https://archive.fo/G5SwC :
'F-Secure recommends enterprises adjust the system provisioning process to include setting a strong AMT password, and disabling AMT if this option is available. ', "F-Secure's research indicates that some system manufacturers were not requiring a BIOS password to access MEBx."
'Setting a BIOS password, which normally prevents an unauthorised user from booting up the device or making low-level changes to it, does not prevent access to the AMT BIOS extension. '
'This allows an attacker access to configure AMT and make remote exploitation possible. ', "Updated Security shortcomings in Intel's Active Management Technology (AMT) can be exploited by miscreants to bypass login prompts on notebook computers."
This has been an automated message.