New
#80
Hi @dwarfer66
The Intel detection tool is for the Intel ME issue.
Flaws found in Intel Management Engine (ME), TXE and SPS
Hi @dwarfer66
The Intel detection tool is for the Intel ME issue.
Flaws found in Intel Management Engine (ME), TXE and SPS
I wonder if this mess will lead to Intel resurrecting the IA-64 architecture.
I mean the chipset and ME driver primarily, if they are vulnerable that is. But it doesn't matter because I contacted both Intel and MSI this morning and both told me that a "microcode" update is required to be "fully" secured, so a BIOS update is indeed needed on top of the KB update from Microsoft. This creates a very concerned future because updating the BIOS aren't something normal PC users do often, or at all. I can also see that not even half of the PC's I use have gotten a BIOS update through the board manufacturer. And OEM's that's more than 5 years old probably won't even get a BIOS update.
What if a user doesn’t update their BIOS. Most wouldn’t I’d imagine. I mean most of my family no nothing of a BIOS and trust windows update. I’d wager this goes for majority of windows users
intel and MS needs a better solution than relying on people to update a BIOS ontop of windows update
There’s no evidence that bad actors have yet exploited the bugs, but companies from Microsoft to Mozilla said this week they have worked to patch up vulnerabilities to their operating systems and browsers to protect against one of the bugs. Researchers say the other is harder to fix and “will haunt us for quite some time.”
Here’s a look at what’s affected, what’s being done about it and whether you should worry.
___
INTEL INSIDE
Intel is at the center of the problem because it supplies the processors used in many of the world’s PCs. Researchers say one of the bugs, called Meltdown, affects nearly every processor it’s made since the mid-1990s.
While security flaws are typically limited to a specific company or product, Intel says the problem is “not a bug or a flaw in Intel products” but rather a broader problem affecting processing techniques common to modern computing platforms.
Both the chipmaker and Google, which informed Intel about the vulnerability in June, said they were planning to disclose the issue next week when fixes will be available. Tech companies typically withhold details about security problems until fixes are available so that hackers wouldn’t have a roadmap to exploit the flaws. But in this case, Intel was forced to disclose the problem Wednesday after British technology site The Register reported it, causing Intel’s stock to fall.
Most of the immediate fixes will be limited to the Meltdown bug. The other, Spectre, is harder to fix, but also harder to exploit, making it less of an immediate threat to consumer devices.
Source AP and Intel