|
 |
"...another serious flaw in Intel hardware, which could enable hackers to access
corporate laptops. Standard password of Intels Management Engine BIOS Extension
are rarely changed and can invoke business laptops vulnerable to unauthorized
remote access, claims F-Secure. "
http://www.guru3d.com/news-story/new-security-flaw-hits-intellaptops-this-time.html
Post a reply to this message
|
|
|
|
Am 13.01.2018 um 13:57 schrieb Bald Eagle:
> "...another serious flaw in Intel hardware, which could enable hackers to access
> corporate laptops. Standard password of Intels Management Engine BIOS Extension
> are rarely changed and can invoke business laptops vulnerable to unauthorized
> remote access, claims F-Secure. "
>
>
> http://www.guru3d.com/news-story/new-security-flaw-hits-intellaptops-this-time.html
Rather boring, this one. Too easy to fix.
Post a reply to this message
|
|
|
|
On 13/01/2018 19:32, Bald Eagle wrote:
> "Kenneth" <kdw### [at] gmail com> wrote:
>> "F-Secure said once an attacker had the chance to reconfigure AMT (for which he
>> would initially need physical access to the device in question), the device
>> could be fully controlled remotely..."
>>
>> I have no idea what all of that jargon means... but it looks like the safest way
>> to prevent this oh-so-catastrophic problem is to KEEP THE ATTACKER AWAY FROM
>> YOUR LAPTOP!! Don't let him in the door!
>>
>> That's my profound wisdom for the day. :-P
>
> Sounds like excellent advice for Europe.
>
Advice taken in respect to a very stable genius. From this small corner
of Europe.
--
Regards
Stephen
Post a reply to this message
|
|
|
|
> Am 13.01.2018 um 13:57 schrieb Bald Eagle:
>> "...another serious flaw in Intel hardware, which could enable hackers to access
>> corporate laptops. Standard password of Intels Management Engine BIOS Extension
>> are rarely changed and can invoke business laptops vulnerable to unauthorized
>> remote access, claims F-Secure. "
>>
>>
>> http://www.guru3d.com/news-story/new-security-flaw-hits-intellaptops-this-time.html
>
> Rather boring, this one. Too easy to fix.
Easy, but time and resource consuming.
1. Send an e-mail to all the company's users asking them to do something
scary and complicated. Which they will ignore. So you move to the next
step.
2. Force everyone to bring their laptop in the office so that the
technician can do it for them and check them off the list. Travelling
sales staff and telecommuters will complain about lost productivity and
ask for travel expenses. And you still have to hunt people on vacation,
maternity leave, and those who ignore e-mails from IT.
Meanwhile, someone will leave their laptop in their bedroom, while
visiting the in-laws at the cottage, and their nephew will enable remote
management for the lulz. And boom! Anonymous is IN UR BASE KILLIN UR
DUDEZ!
--
/*Francois Labreque*/#local a=x+y;#local b=x+a;#local c=a+b;#macro P(F//
/* flabreque */L)polygon{5,F,F+z,L+z,L,F pigment{rgb 9}}#end union
/* @ */{P(0,a)P(a,b)P(b,c)P(2*a,2*b)P(2*b,b+c)P(b+c,<2,3>)
/* gmail.com */}camera{orthographic location<6,1.25,-6>look_at a }
---
This email has been checked for viruses by AVG.
http://www.avg.com
Post a reply to this message
|
|
