9 Jun
2017
9 Jun
'17
11:03 p.m.
Further to this <https://arstechnica.com/security/2017/06/sneaky-hackers-use-intel-management-tools-to-bypass-windows-firewall/>: ...the group's malware requires AMT to be enabled and serial-over-LAN turned on before it can work. This isn't exploiting any flaw in AMT; the malware just uses the AMT as it's designed in order to do something undesirable. The article also mentions a known flaw that has been discovered in AMT; but this seems to be separate to how PLATINUM actually works.