How bad was Intel’s chip vulnerability last year?Can not be repaired so far, only Apple’s latest version of Mac survived

On March 9th, the inherent vulnerabilities of Intel chips have always been a common theme of concern in the industry. Security vulnerabilities such as Meltdown, Specter, and ZombieLoad, these important flaws affect almost all Intel chips and devices installed with these chips.

It is understood that security researchers discovered another security vulnerability in Intel chips in 2019, affecting Intel’s Converged Security Management Engine (Converged Security Management Engine), which runs on Intel hardware and is an important part of Intel’s technology and firmware. Features.

As BIOS and power management firmware are loaded and changed, Intel’s Converged Security Management Engine also provides a “cryptographic basis” for functions such as Digital Rights Management (DRM) technology, firmware-based Trusted Platform Modules (TPMs) or Intel Your own enhanced privacy ID, etc.

Later, Intel issued a patch to try to solve this problem. But the researchers found that Intel’s move was much worse than the industry initially expected. The new research report shows that the vulnerability can be used to recover the root password key, which may allow an attacker to access all data content on the device.

This security breach will be a major issue for the DRM protection function. If this flaw is used by an unscrupulous hacker, the flaw can be used to decrypt the port access from the affected device. An even more serious situation is that hackers can take advantage of this flaw to control Intel’s servers.

It is reported that this Intel chip vulnerability does not affect Apple’s recently launched Mac equipped with T1 or T2 chips. Since these chips are based on first-party technology, the user’s encryption key is safe. Of course, old Macs without T series chips or current iMac series (not including iMac Pro) may be vulnerable to exploitation and may have security vulnerabilities that affect FileVault encryption.

This defect has not been repaired. Intel recommends that users be alert and do not click on unsolicited advertisements or links. If users use their own devices with such vigilance, there is no way for malicious attackers to attack the user’s devices.

However, Intel said that the company’s tenth-generation chips are safe. This defect in Intel chips and other similar security vulnerabilities in the company’s chips may also be one of the many potential reasons why Apple Macs and other devices will soon be equipped with ARM-based processors.

The Links:   LM170E03-TLG4 LQ057V3DG02

Related Posts