Leaked communications from throughout the Conti menace group reveal the Moscow-backed cybercrime group has honed its firmware assault abilities and is actively focusing on Intel Administration Engine (ME), a microcontroller inside many iterations of the fashionable Intel chipset, based on a brand new report.
The evaluation, from Eclypsium, notes that Intel chipsets aren’t being focused by Conti as a result of they’ve susceptible code, however reasonably the group assumes firmware patching is spotty at finest. As well as, firmware assaults can evade most safety instruments, the analysts added.
“This will depart a number of the strongest and privileged code on a tool prone to assault,” the report detailing the Conti firmware assaults mentioned. “The latest Conti leaks mark a vital section within the quickly evolving function of firmware in fashionable assaults.”
