Hackers may be able to use Intel’s Active Management Technology (AMT) to bypass Windows’ built-in firewall rendering it completely useless in detection of malware and ransomware.
AMT allows remote access to networks or computers enabling administrators to easily install programs like an operating system on a remote computer. A hacking group known as PLATINUM has reportedly figured how to use AMT’s low-level firmware for injecting potential malware into Windows systems.
Reacting to the discovery Microsoft said: “We have shared information with Intel, and the two companies collaborated to analyse and better understand the purpose and implementation of the tool. The tool did not expose vulnerabilities in the management technology itself, but rather misused AMT SOL within target networks… to keep communication stealthy and evade security applications.”
Source: IBM Times