Tilly Kottmann (kuv.), tus tsim tawm rau Android platform los ntawm Switzerland, ua Telegram channel hais txog cov ntaub ntawv xau, 20 GB ntawm cov ntaub ntawv kev kawm sab hauv thiab qhov chaws tau txais los ntawm cov ntaub ntawv tseem ceeb los ntawm Intel tau tshaj tawm rau pej xeem. Qhov no tau hais tias yog thawj qhov teeb tsa los ntawm kev sau pub dawb los ntawm qhov chaw tsis qhia npe. Ntau cov ntaub ntawv raug cim tias tsis pub lwm tus paub, koom nrog kev zais cia, lossis muab faib tsuas yog raws li daim ntawv cog lus tsis qhia tawm.
Cov ntaub ntawv tsis ntev los no tshaj tawm hnub tim thaum lub Tsib Hlis thiab suav nrog cov ntaub ntawv hais txog Cedar Island (Whitley) server platform tshiab. Kuj tseem muaj cov ntaub ntawv los ntawm 2019, piv txwv li piav qhia txog Tiger Lake platform, tab sis feem ntau ntawm cov ntaub ntawv yog hnub tim 2014. Ntxiv nrog rau cov ntaub ntawv, cov txheej txheem tseem muaj cov lej, cov cuab yeej siv debugging, daim duab qhia, tsav tsheb, thiab cov yeeb yaj kiab qhia.
Ib txhia los ntawm set:
- Intel ME (Kev Tswj Xyuas Lub Cav) phau ntawv, cov khoom siv hluav taws xob thiab cov piv txwv rau ntau lub platform.
- Kev siv BIOS siv rau Kabylake (Purley) platform, piv txwv thiab pib code (nrog hloov keeb kwm los ntawm git).
- Cov ntawv nyeem ntawm Intel CEFDK (Consumer Electronics Firmware Development Kit).
- Code ntawm FSP tej pob khoom (Firmware Support Package) thiab ntau lawm schemes ntawm ntau lub platforms.
- Ntau yam khoom siv rau kev debugging thiab kev txhim kho.
- -simulator ntawm Rocket Lake S platform.
- Ntau yam kev npaj thiab cov ntaub ntawv.
- Binary tsav tsheb rau Intel lub koob yees duab ua rau SpaceX.
- Schematics, cov ntaub ntawv, firmware thiab cov cuab yeej rau qhov tseem tsis tau tso tawm Tiger Lake platform.
- Kabylake FDK kev cob qhia cov yeeb yaj kiab.
- Intel Trace Hub thiab cov ntaub ntawv nrog cov decoders rau ntau hom Intel ME.
- Ib qho kev siv ntawm Elkhart Lake platform thiab code piv txwv los txhawb lub platform.
- Cov lus piav qhia ntawm cov cuab yeej kho vajtse hauv Verilog lus rau Xeon platforms sib txawv.
- Debug BIOS/TXE tsim rau ntau lub platforms.
- Bootguard SDK.
- Txheej txheem simulator rau Intel Snowridge thiab Snowfish.
- Ntau yam schemes.
- Cov khoom lag luam templates.
Intel tau hais tias nws tau qhib kev tshawb nrhiav qhov xwm txheej. Raws li cov ntaub ntawv ua ntej, cov ntaub ntawv tau txais los ntawm cov ntaub ntawv system "", uas muaj cov ntaub ntawv nkag tau txwv rau cov neeg siv khoom, cov koom tes thiab lwm lub tuam txhab uas Intel cuam tshuam. Feem ntau yuav, cov ntaub ntawv raug xa tawm thiab luam tawm los ntawm ib tus neeg uas nkag mus rau cov ntaub ntawv no. Ib tus qub Intel cov neeg ua haujlwm thaum tham txog nws version ntawm Reddit, qhia tias qhov xau tuaj yeem yog qhov tshwm sim ntawm kev puas tsuaj los ntawm ib tus neeg ua haujlwm lossis nyiag khoom ntawm ib qho ntawm OEM motherboard manufacturers.
Tus neeg tsis qhia npe uas xa cov ntaub ntawv rau kev tshaj tawm tias cov ntaub ntawv tau rub tawm los ntawm ib tus neeg rau zaub mov tsis muaj kev ruaj ntseg tuav ntawm Akamai CDN thiab tsis yog los ntawm Intel Resource thiab Design Center. Cov neeg rau zaub mov tau pom los ntawm kev sib tsoo thaum lub sijhawm scan loj ntawm cov tswv siv nmap thiab raug nyiag los ntawm kev pabcuam tsis zoo.
Qee cov ntawv tshaj tawm tau hais txog qhov muaj peev xwm nrhiav tau ntawm backdoors hauv Intel code, tab sis cov nqe lus no tsis muaj tseeb thiab tsuas yog ua raws li.
cov kab lus "Txuag RAS backdoor thov pointer rau IOH SR 17" hauv cov lus hauv ib qho ntawm cov ntaub ntawv code. Hauv cov ntsiab lus ntawm ACPI RAS "Reliability, Availability, Serviceability". Txoj cai nws tus kheej ua cov txheej txheem rau kev txheeb xyuas thiab kho cov cim xeeb yuam kev, khaws cov txiaj ntsig hauv kev sau npe 17 ntawm I / O hub, thiab tsis muaj "rov qab" hauv kev nkag siab ntawm cov ntaub ntawv kev ruaj ntseg.
Cov txheej txheem twb tau muab faib thoob plaws BitTorrent tes hauj lwm thiab muaj los ntawm . Lub zip archive loj yog hais txog 17 GB (xa lo lus zais "Intel123" thiab "intel123").
Tsis tas li ntawd, nws tuaj yeem raug sau tseg tias thaum kawg ntawm Lub Xya Hli Tilly Kottmann nyob rau hauv pej xeem domain repositories tau txais los ntawm cov ntaub ntawv xau los ntawm kwv yees li 50 lub tuam txhab. Cov npe muaj cov tuam txhab xws li
Microsoft, Adobe, Johnson Controls, GE, AMD, Lenovo, Motorola, Qualcomm, Mediatek, Disney, Daimler, Roblox thiab Nintendo, nrog rau ntau lub tsev txhab nyiaj, kev pabcuam nyiaj txiag, tsheb thiab cov tuam txhab mus ncig.
Lub hauv paus tseem ceeb ntawm kev xau yog qhov tsis raug teeb tsa ntawm DevOps infrastructure thiab tawm hauv cov yuam sij nkag hauv cov chaw khaws ntaub ntawv pej xeem.
Feem ntau ntawm cov chaw khaws cia tau theej los ntawm DevOps hauv zos raws li SonarQube, GitLab thiab Jenkins platforms, nkag mus rau qhov twg txwv kom raug (hauv Web-mus siv tau hauv zos piv txwv ntawm DevOps platforms default settings, implying muaj peev xwm ntawm pej xeem nkag mus rau tej yaam num).
Tsis tas li ntawd, nyob rau hauv thaum ntxov Lub Xya Hli, raws li qhov tshwm sim Qhov kev pabcuam Waydev, siv los tsim cov ntaub ntawv txheeb xyuas txog kev ua haujlwm hauv Git repositories, muaj cov ntaub ntawv xau, suav nrog ib qho uas suav nrog OAuth tokens rau kev nkag mus rau cov chaw khaws cia ntawm GitHub thiab GitLab. Xws li tokens tuaj yeem siv los clone cov chaw khaws khoom ntiag tug ntawm Waydev cov neeg siv khoom. Cov tokens raug ntes tau tom qab siv los cuam tshuam kev tsim kho vaj tse ΠΈ .
Tau qhov twg los: opennet.ru