Hello everyone!
Welcome back to the New Age Informers where we believe in sharing knowledge. It's been a long time we are not in touch with our readers, so we owe an apology for that. But, from today our readers will be having fun daily with new and different articles from our team. As you all know that I writes articles in the cyber security section, today I am here with another amazing and a little bit shocking news in this article.
Yes, today we are going to talk about "Intel" the company which makes processors for the computers, laptops and more. According to the recent research carried out by some of the cyber security researchers, there are few issues related to the security has been discovered. These issues have been found in the Management Engine of Intel remote administration feature,and this will let the attackers who are working remotely to gain full control on the system by installing some of the rootkits remotely. Attackers can retrieve data which was processed in the CPUs and even sometimes it may cause crashes of computer.
What is Intel Management Engine or Management Engine?
-> Intel Management Engine (IME) is an embedded micro controller or it may be integrated on some Intel chip sets, which runs on a lightweight micro kernel operating system that offers a collection of features and services as well for Intel processor-based computer systems. It has many different striking features in it. some of them are as follows:
-> Low-power consumption, provides out-of-bound(OOB) management services
-> Capability Licensing Service(CLS)
-> Anti-Theft Protection
-> Protected Audio Video Path (PAVP)
When the system initialises, the Intel Management Engine loads its code from system flash memory. This allows thee ME to be up before the main operating system is started. For run-time data storage, the IME has access to a protected area of system memory.
After knowing this security risk, an advisory has been published by the Intel on last Monday supporting the ME, hardware authentication tool Trusted Execution Engine (TXE) and remote service management tools Server Platform Services(SPS), these all have vulnerabilities and are vulnerable by the remote attackers. This can led to the risk of putting millions of users and their data into danger. In this research, it has came out that following versions of the Intel firmware are affected:
Firmware versions 11.0/11.5/11.6/11.7/11.10/11.20 of ME
SPS firmware version 4.0
TXE version 3.0
As per the information given by the Intel:
"Based on the items identified through the comprehensive security review, an attackers could gain unauthorised access to platform, Intel ME feature, and 3rd party secrets protected by the Intel Management Engine(ME), Intel Server Platform Service(SPS), or Intel Trusted Execution Engine(TXE). A tool has been announced by the Intel, for the users to check whether their machine is vulnerable or not.
Thanks for joining us and stay connected for more interesting articles by following us here:
facebook: CLICK HERE!!!!!!!!!!
Twitter: @NewAgeInformers
Instagram: @new_age_informers_
Welcome back to the New Age Informers where we believe in sharing knowledge. It's been a long time we are not in touch with our readers, so we owe an apology for that. But, from today our readers will be having fun daily with new and different articles from our team. As you all know that I writes articles in the cyber security section, today I am here with another amazing and a little bit shocking news in this article.
Yes, today we are going to talk about "Intel" the company which makes processors for the computers, laptops and more. According to the recent research carried out by some of the cyber security researchers, there are few issues related to the security has been discovered. These issues have been found in the Management Engine of Intel remote administration feature,and this will let the attackers who are working remotely to gain full control on the system by installing some of the rootkits remotely. Attackers can retrieve data which was processed in the CPUs and even sometimes it may cause crashes of computer.
What is Intel Management Engine or Management Engine?
-> Intel Management Engine (IME) is an embedded micro controller or it may be integrated on some Intel chip sets, which runs on a lightweight micro kernel operating system that offers a collection of features and services as well for Intel processor-based computer systems. It has many different striking features in it. some of them are as follows:
-> Low-power consumption, provides out-of-bound(OOB) management services
-> Capability Licensing Service(CLS)
-> Anti-Theft Protection
-> Protected Audio Video Path (PAVP)
When the system initialises, the Intel Management Engine loads its code from system flash memory. This allows thee ME to be up before the main operating system is started. For run-time data storage, the IME has access to a protected area of system memory.
After knowing this security risk, an advisory has been published by the Intel on last Monday supporting the ME, hardware authentication tool Trusted Execution Engine (TXE) and remote service management tools Server Platform Services(SPS), these all have vulnerabilities and are vulnerable by the remote attackers. This can led to the risk of putting millions of users and their data into danger. In this research, it has came out that following versions of the Intel firmware are affected:
Firmware versions 11.0/11.5/11.6/11.7/11.10/11.20 of ME
SPS firmware version 4.0
TXE version 3.0
As per the information given by the Intel:
"Based on the items identified through the comprehensive security review, an attackers could gain unauthorised access to platform, Intel ME feature, and 3rd party secrets protected by the Intel Management Engine(ME), Intel Server Platform Service(SPS), or Intel Trusted Execution Engine(TXE). A tool has been announced by the Intel, for the users to check whether their machine is vulnerable or not.
Thanks for joining us and stay connected for more interesting articles by following us here:
facebook: CLICK HERE!!!!!!!!!!
Twitter: @NewAgeInformers
Instagram: @new_age_informers_
AtapoOquan_a Kathy Evans https://wakelet.com/wake/lO_DyVemh9LOj8mLzXGHd
ReplyDeleteunoritlac