I've personally never understood why the Intel's ME and AMD's PSP have to be on the CPU silicon itself. Couldn't they just be on the motherboard so that hardware vendors get to decide if they want to have those things on their boards and consumers could chose between boards with them and without them? When you have something that has access to literally everything on your machine and which the OS can't fight or detect if it's being exploited, then it's an issue even if exploiting it is merely a theoretic possibility. You don't have to be a security researcher to understand the danger of a single point of failure like this.
Honestly, the only surprise here is that it took this long for someone to find and disclose a vulnerability in the ME. I'm not even surprised by the fact that Intel is trying to downplay this and claim it's only an enterprise thing when they know full well that the ME doesn't shut down after boot, it continues running and monitoring data coming and going in via ethernet regardless of you trying to shut it down.
Honestly, the only surprise here is that it took this long for someone to find and disclose a vulnerability in the ME. I'm not even surprised by the fact that Intel is trying to downplay this and claim it's only an enterprise thing when they know full well that the ME doesn't shut down after boot, it continues running and monitoring data coming and going in via ethernet regardless of you trying to shut it down.
Comment