That can access your hardware as well... makes you think what is the definition of a computer nowadays
-
-
Replying to @x0rz
Well, this is a long story… we’ve been talking about it since the early 2000s when ME & AMT came out (see
@AndreaBarisani’s work).1 reply 0 retweets 5 likes -
Remote management has always been an issue: even serial consoles had their risks when you could Ctrl-P into the firmware and do whatever…
1 reply 0 retweets 2 likes -
the “novelty” was moving the serial terminal directly into the system and then reaching it via the network. What was a DEC 90M became AMT…
1 reply 0 retweets 1 like -
There has been plenty of ignored research on the dangers of firmware embedded in systems, even as far as microcode. Then someone shouts and…
1 reply 0 retweets 4 likes -
everyone goes “Oh My God, AMT/ME/IPMI/iLO/the cat/whatever” as if it was never discussed before. “Stunt Hacking: Another Chapter”.
1 reply 1 retweet 4 likes -
Replying to @cynicalsecurity @AndreaBarisani
I'm not saying it wasn't discussed before though
2 replies 0 retweets 0 likes -
It was discussed before many, many times, what is new is an actual exploit, proving the most paranoid arguments right, as usual.
2 replies 1 retweet 3 likes -
The exploit is relevant, particularly in highlighting difficulties in the patching process. Bugs are expected, easy patching too though ;(
1 reply 0 retweets 2 likes -
Now *that* is a discussion to be had: while we all agree that firmware has issues fixing it is not like “Windows Update” at all…
2 replies 0 retweets 1 like
Try and follow the Intel advisory to see how abysmal it is, the detection tool is awful and you have to wait for OEM update anyway...
-
-
I did… now we all miss serial consoles.
0 replies 0 retweets 0 likesThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.