Intel x86s hide another CPU that can take over your machine (you can’t audit it) / Boing Boing

http://boingboing.net/2016/06/15/intel-x86-processors-ship-with.html

Most modern x86 CPUs have a separate management processor in them, and it can potentially damage your system security.

3 Comments

  1. Tomi Engdahl says:

    Neutralizing Intel’s Management Engine
    http://hackaday.com/2016/11/28/neutralizing-intels-management-engine/

    Five or so years ago, Intel rolled out something horrible. Intel’s Management Engine (ME) is a completely separate computing environment running on Intel chipsets that has access to everything. The ME has network access, access to the host operating system, memory, and cryptography engine. The ME can be used remotely even if the PC is powered off. If that sounds scary, it gets even worse: no one knows what the ME is doing, and we can’t even look at the code. When — not ‘if’ — the ME is finally cracked open, every computer running on a recent Intel chip will have a huge security and privacy issue. Intel’s Management Engine is the single most dangerous piece of computer hardware ever created.

    Researchers are continuing work on deciphering the inner workings of the ME, and we sincerely hope this Pandora’s Box remains closed. Until then, there’s now a new way to disable Intel’s Management Engine.

    Previously, the first iteration of the ME found in GM45 chipsets could be removed. This technique was due to the fact the ME was located on a chip separate from the northbridge. For Core i3/i5/i7 processors, the ME is integrated to the northbridge. Until now, efforts to disable an ME this closely coupled to the CPU have failed.

    With a BeagleBone, an SOIC-8 chip clip, and a few breakout wires, this script will run and effectively disable the ME. This exploit has only been confirmed to work on Sandy Bridge and Ivy Bridge processors.

    Neutralize ME firmware on SandyBridge and IvyBridge platforms
    http://hardenedlinux.org/firmware/2016/11/17/neutralize_ME_firmware_on_sandybridge_and_ivybridge.html

    Reply

Leave a Comment

Your email address will not be published. Required fields are marked *

*

*