banner



Some consumer PCs also appear to have dangerous Intel exploit - gamblerabliand

If you think you'atomic number 75 immune from a scary overwork found in Intel's Active Management Technology just because you'ray a consumer, think over again.

The exploit, revealed on Whitethorn 1, lets bad actors bypass certification in Intel's remote management ironware to take over your PC. This hardware, built into enterprise-class PCs, lets IT administrators remotely manage fleets of computers—establis patches and software, and even update the BIOS A though they were session in front of it. IT is, au fond, a God-modality.

Hither's the fine photographic print: Many young news reports said "consumer PCs are uncontrived." But what Intel actually said was, "consumer PCs with consumer firmware" are unaffected.

The problem is, plenty of consumers use business-family hardware—and not just the outer boundary who'll buy or come into mercenary-course of study laptops and workstations. Many budget PCs use chipsets, firmware, and motherboards that were fashioned for miniature business concern machines. These machines English hawthorn be exposed to the deed through Intel's Small Business Advantage applied science, which is is a scaley-down version of AMT.

For example, around of Intel's NUC computers have Small Business Advantage support. Users testing their systems for the exploit have reported on forums such arsenic Reddit that their consumer-focused H97-based boards have the exploit.

gigabyte h97 Gigabyte

One Reddit exploiter reported that this Gigabyte H97M-D3H with a Core i5-4590 has the AMT feat.

How to find out whether your PC is safe

While the vast legal age of consumer PCs probably don't deliver the overwork, it wouldn't wound to take fivesome minutes to check your system.

First, download Intel's creature to check for the exposure. You can too flick this tie to download IT from Intel directly. It's listed as supporting Windows 10 and Windows 7, but we had zero issues running information technology on Windows 8.1.

Once you've downloaded information technology, decompress the zip file to a folder. Open the folder, then overt its Windows subfolder. Inside you'll find several files. Launch Intel-SA-00075-GUI.exe.

Intel-SA-00075-GUI IDG

You can quickly determine for a critical security defect on many corporate and small business organization PCs.

After a minute or less, the utility will cough out the results of the risk on your machine. Obviously, many bodied boxes take in this dangerous exploit, much every bit this older Sandy Bridge corporate box we checked.

businessspc IDG

Many business PCs are exposed to the Intel AMT work, as well as some PCs assembled using line of work-class components.

This new Dingle XPS 15 consumer laptop, but then, seems rectify as rain.

xps15 IDG

A consumer Dell XPS 15 seems safe from the dangerous AMT exploit.

What to ut if your PC has the exploit

If the utility results in a Assailable result, the next footfall is to check with your PC maker. Dell, HP, Lenovo, Fujitsu, and probably most major OEMs are already working along firmware fixes. If you run a DIY Personal computer operating theater a machine built by your local computer store, check with the motherboard marketer itself for firmware updates.

G officials told PCWorld they are taking it seriously, and a fix is inbound.

"We were made aware of the issue from Intel and we are on cut through to update BIOS in 2 weeks," said GB's Alan Szeto. "Newer boards equal Q270/Q170 are in first priority for the fixes with the older Q and B chipsets following. We know that aged affected boards are still in habit, so we will address the issue accordingly."

If your PC is so familiar that you'ray unlikely to get a firmware patch soon Beaver State at all, Intel has a "mitigation guide" that you can download. The guide has several detailed steps to help reduce your risk.

businesspc2 IDG

Even view this PC has the Intel AMT exploit exposure, some researchers call up it would require the machine to follow provisioned for remote support before an attack would win.

Is it really that dangerous?

A vulnerability that lets someone boot up your PC and instal software at will, and even bypass logging in, sounds about American Samoa bad as IT can get. Noneffervescent, it's not clear just how easy this is to deed. Security reporter Dan Goodin of Arstechnica reported last workweek that some researchers believe the overwork would have to be present and the simple machine would have to be install operating theater provisioned for remote management for information technology to agaze to the attack. Goodin, all the same, followed up with a report along Saturday that researchers had bypassed the AMT without equal entering a password.

In the terminate, the first footstep in repair a problem is recognizing that you throw one. If you think you might have the overwork on your motorcar, run the check.

Source: https://www.pcworld.com/article/406707/how-to-check-for-the-intel-active-management-exploit-that-lets-hackers-take-over-your-pc.html

Posted by: gamblerabliand.blogspot.com

0 Response to "Some consumer PCs also appear to have dangerous Intel exploit - gamblerabliand"

Post a Comment

Iklan Atas Artikel

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel