Company's data and networks security made irrelevant by new Intel security flaw
Our cybersecurity team discovered a significant security flaw, in which an attacker can hack every corporate laptop within a minute of physical access to that device. Combine this weakness with an Evil Maid physical exploit, and you will have unrestricted access to all corporate network, our cybersecurity analyst say.
The flaw is affecting Intel's Advanced Management Technology (AMT) and is surprisingly simple to abuse. Many corporates protect their data and devices with multiple security measures starting with password protection from BIOS. The flaw lays in the way the AMT BIOS extension uses this passwords; AMT BIOS doesn't use the BIOS password; instead, it uses the default password: admin that in more than 99% of the cases is not changed.
Accessing AMT BIOS extension gives an attacker access to AMT which can exploit afterward.
Windows users can download free antivirus solution CyberByte by clicking the links from end of the page. The free antivirus will help you to know if your PC is infected. Windows free antivirus of CyberByte is an awarded software for malware detection.
Mac / MacOS / OS X users can download free Mac antivirus solution CyberByte by clicking the links from end of the page. The free antivirus will help you to know if your Mac is infected. MacOS / OS X free antivirus of CyberByte is an awarded software for malware detection. The free antivirus for Mac is available for new MacOS and older OS X versions.
Companies must continuously contract penetration testing services to keep their devices and networks safe and secure from hackers.
The AMT technology can be found in systems running with Intel vPro-enabled processors and workstation platforms based on specific Intel Xeon processors. The AMT is a chip-based technology which doesn't require any software or OSs running only power and connection. IT engineers use this technology for remote access and control of the corporate devices. This means that if a hacker stole or has access even for a minute or two to one of the corporate devices that have the AMT technology, all it has to do is boot up the device and keep pressing CTRL-P then type "admin" password.
Then all it takes for full remote access is to change the default password to a desired one and enabling the remote access with AMT user option set to NONE. After this all the BIOS passwords, BitLocker, Login Credentials, TPM Pin and many other security options that a company uses become irrelevant, giving to hacker unrestricted remote access to all the targeted company network.
Our top cybersecurity analyst explains that this type of attack can be done anywhere (bars, hotel rooms, coffee shopsetc.) in under a minute if the attacker is skilled enough and the device has been left unattended. To avoid this kind of security flaw which can lead to enormous costs in both money and images for targeted companies, all they have to do is disable this option if it is not needed or changing the default password used for AMT.
Always remember this is just one of the ways a hacker can do damage, it is essential for everyone to stay secure and protected, the thing which can be accomplished with a top antivirus solution and other security software.
CyberByte Antivirus comes in two flavors:
MacOS Version - the free download Mac antivirus available on our website (https://mac.cyberbyte.org)
Windows Version - the free download Windows antivirus available on our website (https://pc.cyberbyte.org)
The free antivirus is with limited features.
The procedure is simple:
Just free download antivirus from CyberByte website either for Mac or Windows.
Install it using the antivirus installer package.
Windows and Mac users will free malware scan their devices. The scan duration depends on how many files the end user has.
CyberByte antivirus will show if any files are infected after the scan is finished.