Intel ME – WindowsTechs.com

Enabling Intel AMT For BIOS-over-WiFi

Posted on January 5, 2024 by Arya Voronova

Two pictures of the mobo side by side, both with kapton tape covering everything other than the flash chip. On the left, the flash chip is populated, whereas on the right it's not

Intel ME, AMT, SMT, V-Pro… All of these acronyms are kind of intimidating, all we know about them is that they are tied to remote control technologies rooted deep in …read more Continue reading Enabling Intel AMT For BIOS-over-WiFi→

Intel releases firmware update for ME flaw

Posted on September 18, 2018 by John E Dunn

It’s only September and yet 2018 is well on its way to being remembered as the year of fixing flaws we didn’t realise were possible in hardware we’d never heard of. Continue reading Intel releases firmware update for ME flaw→

Dangerous Intel Chip Flaw Patches Becoming Available

Posted on November 24, 2017 by Lucian Constantin

Some computer manufacturers have started releasing patches for eight serious vulnerabilities in Intel processors or they have outlined firmware update plans for vulnerable models. Acer, Dell, Fujitsu, Hewlett Packard Enterprise (HPE), Lenovo, Panasonic… Continue reading Dangerous Intel Chip Flaw Patches Becoming Available→

Is Intel’s Management Engine Broken?

Posted on May 2, 2017 by Brian Benchoff

Betteridge’s Law of Headlines states, “Any headline that ends in a question mark can be answered by the word no.” This law remains unassailable. However, recent claims have called into question a black box hidden deep inside every Intel chipset produced in the last decade.

Yesterday, on the Semiaccurate blog, [Charlie Demerjian] announced a remote exploit for the Intel Management Engine (ME). This exploit covers every Intel platform with Active Management Technology (AMT) shipped since 2008. This is a small percentage of all systems running Intel chipsets, and even then the remote exploit will only work if AMT is enabled. …read more

Continue reading Is Intel’s Management Engine Broken?→

Neutralizing Intel’s Management Engine

Posted on November 28, 2016 by Brian Benchoff

Five or so years ago, Intel rolled out something horrible. Intel’s Management Engine (ME) is a completely separate computing environment running on Intel chipsets that has access to everything. The ME has network access, access to the host operating system, memory, and cryptography engine. The ME can be used remotely even if the PC is powered off. If that sounds scary, it gets even worse: no one knows what the ME is doing, and we can’t even look at the code. When — not ‘if’ — the ME is finally cracked open, every computer running on a recent Intel chip …read more

Continue reading Neutralizing Intel’s Management Engine→

New Part Day: A Truly Secure Workstation

Posted on September 19, 2016 by Brian Benchoff

There is a chain of trust in every modern computing device that starts with the code you write yourself, and extends backwards through whatever frameworks you’re using, whatever OS you’re using, whatever drivers you’re using, and ultimately whatever BIOS, UEFI, Secure Boot, or firmware you’re running. With an Intel processor, this chain of trust extends to the Intel Management Engine, a system running independent of the CPU that has access to the network, USB ports, and everything else in the computer.

Needless to say, this chain of trust is untenable. Any attempt to audit every line of code running in …read more

Continue reading New Part Day: A Truly Secure Workstation→