News

Researchers Discover Kill Switch for Intel ME

Back in May, we reported the worrying discovery that a technology exclusive to Intel CPUs leaves processors open to remote rootkit attack. In fact, the original story dates back over a year. The problem is with Intel’s Management Engine (ME) technology, which allows administrators remote access key PC functions. Notably, every Intel processor released since 2008 features ME. Thankfully, though, researchers found a method of partially disabling Intel ME.

The Problem with Intel ME

Intel ME allows remote access to a PC’s operating system, hard drive, boot state, and power state. It can even bypass some system encryptions. However, SemiAccurate’s Charlie Demerjian reported in May:

“The problem is quite simple, the ME controls the network ports and has DMA access to the system. It can arbitrarily read and write to any memory or storage on the system, can bypass disk encryption once it is unlocked […] read and write to the screen, and do all of this completely unlogged. Due to the network access abilities, it can also send whatever it finds out to wherever it wants, encrypted or not.”

Though Intel did issue security patches to protect ME, it did not remove the technology.

Intel ME Kill Switch

While ME remains present in Intel processors, it remains a potential point of vulnerability. However, researchers from Moscow-based Positive Technologies found a way to close this particular backdoor, at least partially. An unofficial workaround, dubbed ME Cleaner, disables much of ME’s capabilities, without removing the technology entirely. It works by setting the undocumented HAP bit to 1 in a configuration file. ME Cleaner is available on Github.

Ashley Allen

Disqus Comments Loading...

Recent Posts

Nvidia’s GeForce RTX 5090 Possible Price Revealed

According to a new report, the GeForce RTX 5090 GPU will be very expensive. It…

6 hours ago

AMD Krackan Processor with 6 Zen 5 and Zen 5c Cores for Budget AI Laptops Leaked

A new AMD processor in the form of an engineering model has been leaked in…

6 hours ago

SK Hynix Begins Production of First 321-Layer NAND Chips

SK Hynix has claimed to be the first company to mass-produce 321-layer NAND memory chips.…

6 hours ago

Trust Gaming GXT 609 Zoxa 2.0 PC Speakers

SOUNDS GREAT – Full stereo sound (12W peak power) gives your setup a booming audio…

11 hours ago

PowerA Wired Controller for Nintendo Switch

Special Edition Yoshi design Ergonomic controller shape with Nintendo Switch button layout Detachable 10ft (3m)…

11 hours ago

Logitech G Saitek PRO Flight Rudder Pedals

Fluid Motion: These flight rudder pedals are smooth and accurate that enable precise control over…

11 hours ago