Simple Attack Allows Full Remote Access to Most Corporate Laptops
Security Week | January 12, 2018
Researchers have discovered a flaw in Intel's Advanced Management Technology (AMT) implementation that can be abused with less than a minute of physical access to the device. An Evil Maid attack could ultimately give an adversary full remote access to a corporate network without having to write a single line of code. The flaw was discovered by F-Secure senior security consultant Harry Sintonen, and disclosed today. It is unrelated to the "Apocalyptic AMT firmware vulnerability" disclosed in May 2017, or the current Meltdown and Spectre issues.