News

Researchers Discover Kill Switch for Intel ME

Back in May, we reported the worrying discovery that a technology exclusive to Intel CPUs leaves processors open to remote rootkit attack. In fact, the original story dates back over a year. The problem is with Intel’s Management Engine (ME) technology, which allows administrators remote access key PC functions. Notably, every Intel processor released since 2008 features ME. Thankfully, though, researchers found a method of partially disabling Intel ME.

The Problem with Intel ME

Intel ME allows remote access to a PC’s operating system, hard drive, boot state, and power state. It can even bypass some system encryptions. However, SemiAccurate’s Charlie Demerjian reported in May:

“The problem is quite simple, the ME controls the network ports and has DMA access to the system. It can arbitrarily read and write to any memory or storage on the system, can bypass disk encryption once it is unlocked […] read and write to the screen, and do all of this completely unlogged. Due to the network access abilities, it can also send whatever it finds out to wherever it wants, encrypted or not.”

Though Intel did issue security patches to protect ME, it did not remove the technology.

Intel ME Kill Switch

While ME remains present in Intel processors, it remains a potential point of vulnerability. However, researchers from Moscow-based Positive Technologies found a way to close this particular backdoor, at least partially. An unofficial workaround, dubbed ME Cleaner, disables much of ME’s capabilities, without removing the technology entirely. It works by setting the undocumented HAP bit to 1 in a configuration file. ME Cleaner is available on Github.

Ashley Allen

Disqus Comments Loading...

Recent Posts

Electronic Arts Titles Played for Over 11 Billion Hours in 2024

Electronic Arts (EA) announced today that its games were played for over 11 billion hours…

2 days ago

Just 15% of Steam Gaming Time in 2024 Was Spent on New Releases

Steam's annual end-of-year recap, Steam Replay, provides fascinating insights into gamer habits by comparing individual…

2 days ago

STALKER 2 Gets Massive 110GB Patch With 1800+ Fixes

GSC GameWorld released a major title update for STALKER 2 this seeking, bringing the game…

2 days ago

Intel Unveils Core 200H Processors Based on the Previous Raptor Lake Refresh

Without any formal announcement, Intel appears to have revealed its new Core 200H series processors…

3 days ago

Ubisoft Reportedly Developing a New Quadruple A Game

Ubisoft is not having the best of times, but despite recent flops, the company still…

3 days ago

STALKER 2: Heart of Chornobyl Update 1.1 Fixes 1,800 Issues and Revamps A-Life 2.0

If you haven’t started playing STALKER 2: Heart of Chornobyl yet, now might be the…

3 days ago