AGL 38.23 Increased By ▲ 0.08 (0.21%)
AIRLINK 128.79 Increased By ▲ 3.72 (2.97%)
BOP 7.85 Increased By ▲ 1.00 (14.6%)
CNERGY 4.66 Increased By ▲ 0.21 (4.72%)
DCL 8.35 Increased By ▲ 0.44 (5.56%)
DFML 38.90 Increased By ▲ 1.56 (4.18%)
DGKC 82.10 Increased By ▲ 4.33 (5.57%)
FCCL 33.64 Increased By ▲ 3.06 (10.01%)
FFBL 75.75 Increased By ▲ 6.89 (10.01%)
FFL 12.80 Increased By ▲ 0.94 (7.93%)
HUBC 110.55 Increased By ▲ 6.05 (5.79%)
HUMNL 13.99 Increased By ▲ 0.50 (3.71%)
KEL 5.19 Increased By ▲ 0.54 (11.61%)
KOSM 7.67 Increased By ▲ 0.50 (6.97%)
MLCF 39.88 Increased By ▲ 3.44 (9.44%)
NBP 72.35 Increased By ▲ 6.43 (9.75%)
OGDC 189.00 Increased By ▲ 9.47 (5.27%)
PAEL 25.72 Increased By ▲ 1.29 (5.28%)
PIBTL 7.38 Increased By ▲ 0.23 (3.22%)
PPL 153.50 Increased By ▲ 9.80 (6.82%)
PRL 25.36 Increased By ▲ 1.04 (4.28%)
PTC 17.90 Increased By ▲ 1.50 (9.15%)
SEARL 82.50 Increased By ▲ 3.93 (5%)
TELE 7.60 Increased By ▲ 0.38 (5.26%)
TOMCL 32.59 Increased By ▲ 0.62 (1.94%)
TPLP 8.48 Increased By ▲ 0.35 (4.31%)
TREET 16.80 Increased By ▲ 0.67 (4.15%)
TRG 56.17 Increased By ▲ 1.51 (2.76%)
UNITY 28.75 Increased By ▲ 1.25 (4.55%)
WTL 1.35 Increased By ▲ 0.06 (4.65%)
BR100 10,649 Increased By 559.8 (5.55%)
BR30 31,293 Increased By 1784.3 (6.05%)
KSE100 99,321 Increased By 4747 (5.02%)
KSE30 31,035 Increased By 1590.4 (5.4%)

A new security flaw has been found in Intel hardware which could enable hackers to access corporate laptops remotely, Finnish cybersecurity specialist F-Secure said on Friday. F-Secure said in a statement that the flaw had nothing to do with the "Spectre" and "Meltdown" vulnerabilities recently found in the micro-chips that are used in almost all computers, tablets and smartphones today.
Rather, it was an issue within Intel Active Management Technology (AMT), "which is commonly found in most corporate laptops, (and) allows an attacker to take complete control over a user's device in a matter of seconds," the cybersecurity firm said. "The issue potentially affects millions of laptops globally."
The flaw was of "an almost shocking simplicity, but its destructive potential is unbelievable," said F-Secure consultant Harry Sintonen, who discovered it. "In practice, this flaw could give a hacker complete control over the affected laptop, despite the best security measures." An attacker would initially need physical access to the device in question.
But once they had re-configured AMT, they could effectively "backdoor" the machine and then access the device remotely, by connecting to the same wireless or wired network as the user, F-Secure said. In certain cases, the assailant could also programme AMT to connect to their own server, which would eliminate the need to be in the same network segment as the victim.
"No other security measures - full disk encryption, local firewall, anti-malware software or VPN - are able to prevent exploitation of this issue." A successful attack would lead to complete loss of confidentiality, integrity and availability, F-Secure said.
The assailant would be able to read and modify all of the data and applications a user may have access to on their computer. And they could also install malware on the device, even at the firmware level. F-Secure expert Sintonen said that organizations needed set a strong AMT password or perhaps disable AMT completely if possible.

Copyright Agence France-Presse, 2018

Comments

Comments are closed.