Skip to main content

Researchers Exploit a Secret Feature in Intel Chipsets

https://ift.tt/2HVZukc Security researchers have discovered a previously unknown feature in the Intel chipsets, which could allow an attacker to intercept data from the computer memory. The feature called Intel Visualization of Internal Signals Architecture (Intel VISA) is said to be a utility that is bundled by the chipmaker for testing on the manufacturing lines. Although Intel doesn't publicly disclose the existence of Intel VISA and is extremely secretive about it, the researchers were able to find several ways to enable the feature on the Intel chipsets and capture the data from the CPU. As a per presentation made by the researchers Mark Ermolov and Maxim Goryachy of Positive Technologies at the ongoing Blackhat Asia 2019 conference in Singapore, their exploits of the Intel chipsets don't require any hardware modifications or special equipment. One of the techniques shared by the researchers involved vulnerabilities detailed in Intel-SA-00086 advisory that give access to Intel Management Engine (Intel ME), in turn helping enable VISA. Access to Intel VISA makes the computer's entire data vulnerable and obtainable for the attacker. Intel underplayed the exploit and told ZDNet that the VISA issue requires physical access to the machines and the Intel-SA-00086 vulnerabilities have already been mitigated. The researchers however disagreed with Intel's comments and reportedly said in an online discussion that the patched Intel firmware can be downgraded using Intel ME, making the chipset vulnerable and opening the door for accessing Intel VISA. Mark Ermolov also noted that the vulnerabilities detailed in Intel-SA-00086 are just one of the ways to access VISA, and there are other methods as well, including Orange Mystery and Intel JTAG password. The technical details of these exploits can be found in the presentation slides shared on Blackhat Asia website.
Labels:

Comments

Post a Comment

Popular posts from this blog

Friends in all the wrong places

https://ift.tt/2BVSIXZ Striding past the glistening rows of duty-free liquor, watches and perfume, the two international travellers moved like men who could fight. Richard ''Gelly'' Gelemanovic had broad shoulders and a confident gait, while his companion, convicted heroin trafficker Amad ''Jay'' Malkoun, had a physique honed during his 16-year stint in prison. It was July 3, 2003, and Malkoun was recently out of jail, having gained public notoriety after being charged in 1988 as a key player in the state's biggest drug syndicate, which had been busted with $5.5 million of heroin. Amad 'Jay' Malkoun was described by police as 'a powerful standover man'. The federal police who were secretly watching Malkoun at Melbourne's international airport described him in a report as ''a powerful stand-over man … actively involved in the Melbourne drug trade''. The profession of his travelling companion, the man Jay called ...
5 comments
Read more

Kim Constable – Irish leader of NXIVM – jokes about working out in prison; shows results of badass workouts

http://bit.ly/2WTRg0f Kim Constable, 39 – one of Sara Bronfman’s ‘girls’ – is the leader of NXIVM in Ireland. She lives in Belfast and is also the leader of Rainbow Cultural Garden there. According to a source, she recruited at least one underage teen girl who was almost shipped to the USA with Allison Mack for the branding iron of DOS. Fortunately, the teen girl – with her mother’s help – escaped at the last minute. But not before there was a little violence and the threat of something truly sinister – which frightened the girl. I will tell more of that story later. For now, let us say hello to Kim. In addition to her NXIVM work, she is a vegan body-builder and sells courses on how to look like her. Her husband is a famous ex-athlete, Ulster rugby player Ryan Constable (46) who owns a sports management company. They have four children: Corey (12), Kai (11), Miya (8) and Jack (6). At one time, they all slept in the same 18-foot bed together. I am not clear where the Rainbow nannies sle...
Post a Comment
Read more

The CIA’s Blade-Wielding 'Flying Ginsu' Missile Strikes Again

https://ift.tt/38qz98C The Hellfire R9X missile is a modified Hellfire anti-tank missile. In order to reduce the chances of civilian casualties, it trades an explosive warhead for steel blades. The weapon is used by the CIA in targeted assassinations and was apparently used this past weekend in Syria. A new unique new missile designed by the CIA in targeted killings was reportedly used again, this time in Syria. The Hellfire R9X, also known as the “Flying Ginsu” after the knives advertised in campy infomercials, kills its enemies by flying directly at them, popping out several steel blades at the last moment to slice its targets into bits. The missile is used by the Central Intelligence Agency to target specific individuals without risk to nearby civilians and other noncombatants. The strike took place in Syria, against a minivan traveling between the towns of Azzaz and Afrin. The strike reportedly killed an Al Qaeda leader and two passengers, with a third passenger badly wounded. U.S....
Post a Comment
Read more