Large Enterprise Vulnerability

[Ed P]

Intel have just patched a 10 years old vulnerability in their micr-code. Ars Link If GCHQ/NSA want a sneaky place to put zero days then micro code is THE place, as no scan will ever find it. Mind you, the Chinese have similar opportunities in all the chip sets they produce!

No Forumite need panic as realistically this exploit only directly affects large enterprises with AMT or LMS installed..

[Ed P]

Apparently the flaw is MUCH worse than thought, and may have allowed people other than GCHQ/NSA to go trawling through major Enterprise servers. I guess the problem could have been passed on to any PC/laptop that logged on to one of these large Enterprises.

As no such accesses are logged it is impossible to separate commercial white hat spying from black hat stealing. I suspect that black-hat usage was not insignificant as Intel micro code flaws/backdoors have been talked about for years. Normally I will admit discussion of such flaws has been in the  Edward Snowdon ‘brick any computer’ category, so any Black Hat hacks/exploits will have been very strictly sub-rosa and in the ‘very expensive/valuable’ categories. Probably only targeted laptops belonging to Governments Banks and organizations like SWIFT will have been affected. (e.g. divert money from any financial account to multitudes of your accounts based in Caymen Islands etc.)

[Author]

Posts