06-05-2017 12:45 AM - edited 06-05-2017 12:59 AM
I was pretty shocked to see this update. Apparently, intel management engine is a backdoor which allows full control of the machine, even if the power is off. It is something on intel motherboards. It has been noted that a backdoor can be used by a) legitimate corporate administrators, b) hackers c) gov. organisations.
Firstly, why would any user want to install a back door which allows undetectable access to the machine without the users knowlege or inteveition?
Secondly, why is this installed by Lenovo as standard, if it is only used by some large organisations?
Or am I wrong?
I have seen many articales about it saying "Intels management engine is the single most dangerous piece of computer hardward ever created", mainly because it has access to everything and noone knows exactly what it can do.
Now I am trying to find a way to remove this major security back door.
It seems that noone knows if disabling it in the bios is actaully disabling it, or not. It seems not, as you can still get a response from AMT if you hit: http://127.0.0.1:16992/logon.htm, and if you open the "intel management and security status" application, it says that AMT is enabled.
It seems ifyou connect to a public wifi, the machnes AMT is avaible to everyone on the network.
I have also seen that there are exploits allowing hackers to gain full access to your machine with trivial exploits such as sending null password.
Very very bad.
Solved! Go to Solution.
06-05-2017 12:57 AM
06-05-2017 01:01 AM
06-05-2017 01:05 AM
Would installing a firewall on the laptop and blocking 16992 help, or is this intercepted by AMT before the OS is given the connection? Obviously this would not work if the laptop is switched off.
06-05-2017 07:08 AM
06-21-2017 01:02 AM
I am trying to update the Intel Management engine 8.1 firmware but my Lenovo ThinkPad X1 Carbon is just hanging. I have run the Intel Unprovision tool but it does not seem to improve the situation. Anybody have any ideas how to resolve.
05-18-2018 12:02 PM
Looks like the Lenovo forum is totally adrift.
First of all, this is not "solved" but more embarrassingly, I just received an email post notification this morning for the post made by BAAM on 06-21-2017
05-18-2018 02:45 PM
This can't be. This is like sleeping at night with your house's main door open and with a huge sign that says come have all you want. There has to be a way to get around this
05-19-2018 08:10 AM - edited 05-19-2018 09:49 AM