Worrying security issue

[Skybird03]

A general warning that I currently set up on the three or four forums I frequently read and use. We all may have heard of the possibility to install malware and snoops already in factory, in ROM-stored drivers for HDDs and so forth. Any scanner you later install , would not be able to detect it.

This scenario here, that seems to have turned real now, is a privacy and security nightmare. Worse it cannot get. Say hello to Minix.

https://www.networkworld.com/article/3236064/servers/minix-the-most-popular-os-in-the-world-thanks-to-intel.html

One may be tempted to assume that one is safe if buying AMD instead. But who said that those who set this up for Intel, have forgotten that there is AMD as well...? ;) ;) ;)

But they want to kill cash money and force us all to set up our wealth and "money" in digital format. Yeah, they want that. Think about that next time you get your plastic card out. And learn to get some doubt on that you really act so clever when doing it. You compromise much more than just cash money.

Edited November 10, 2017 by Skybird03

[Sean]

This is nothing new.  Since you don't really explain in detail what the problem is in your post, here is the summary:  

 

Intel vpro enabled chipsets expose remote management functionality.  Think of it as a remote desktop.  It's intended for businesses to easily remote control computers.  There was some vulnerabilities recently patched for this, but it is difficult/impossible to totally disable.  Contact your computer vendor for bios updates.  

 

There is a utility to tell you if you have this vulnerability, it is located here: https://downloadcenter.intel.com/download/26755/INTEL-SA-00075-Detection-and-Mitigation-Tool

 

Before you blow a fuse, Intel states that only business machines are affected by this and not consumer level machines/chipsets.  

 

If you truly want to be safe, just disconnect your machine from the internet, and remove all media access.  It will run virus/malware free, guaranteed!

 

 

[12Alfa]

Is this a issue for AMD systems?

[Ssnake]

The specific problem of the Intel Management Engine is definitely not a problem with AMD machines. But the question is whether AMD has implemented something similar, but not disclosed it yet. Or there may be other security implications. The problem is, how much can you trust

... the operating system? (most people think about that level when discussing security vulnerabilities)

... the hardware? (think of router chips with a remote backdoor functionality, for example)

... any software that you haven't written/verified yourself?

... the compiler, with which you convert your verified source into binary code?

 

You have to draw the line somewhere. How precious are your secrets, and how easily can they be obtained by those who want to harm you. Not putting secrets on a computer is a great way to protect yourself against hackers, but then you have to write them down where a burglar (or a police raid) can get them. Writing down your porn collection in binary into a notebook ... well, I don't know, this may be some fetish thing for a really tiny minority, and I'm not saying that they are perverts, but for most it's probably not a very appealing option. The next best option is not to have a porn collection at all, but then again, that's kinda missing the point. So people store their smut on computers and hope for the best. 

[CalAB]

*tinfoil hat ? mounted*

It’s the Asians dood. We started noticing all of this computer security stuff round’ about the same time Asian porn started gaining ground. Advertisers started making a crap ton of money off of Asian porn and computer chips are mostly made in Asian countries so you do the math. 

*tinfoil hat ? removed*