A hacker has published 20GB of confidential chip engineering data stolen from Intel. The data could potentially lead to new zero-day threats for users on multiple computing platforms.
Intel exconfidential Lake Platform Release 😉
This is the first 20gb release in a series of large Intel leaks.
Most of the things here have NOT been published ANYWHERE before and are classified as confidential, under NDA or Intel Restricted Secret. pic.twitter.com/KE708HCIqu
— Tillie 1312 Kottmann #BLM 💛🤍💜🖤 (@deletescape) August 6, 2020
The hacker linked to a post on private messaging platform, Telegram, providing details of the contents of the leak as well as a file attached to the bottom. The BIOS information and source code of proprietary Intel technology could be used in creating malware and other nastiness.
The hacker claims the “Intel exconfidential Lake” data hasn’t been published anywhere and much of the information is under strict NDA. The data was allegedly acquired as the result of a 2020 Intel data breach by an anonymous source.
The following list was provided as a partial overview of the 20GB file and shared by AppleInsider:
- Intel ME Bringup guides + (flash) tooling + samples for various platforms
- Kabylake (Purley Platform) BIOS Reference Code and Sample Code + Initialization code (some of it as exported git repos with full history)
- Intel CEFDK (Consumer Electronics Firmware Development Kit (Bootloader stuff)) SOURCES
- Silicon / FSP source code packages for various platforms
- Various Intel Development and Debugging Tools
- Simics Simulation for Rocket Lake S and potentially other platforms
- Various roadmaps and other documents
- Binaries for Camera drivers Intel made for SpaceX
- Schematics, Docs, Tools + Firmware for the unreleased Tiger Lake platform
- (very horrible) Kabylake FDK training videos
- Intel Trace Hub + decoder files for various Intel ME versions
- Elkhart Lake Silicon Reference and Platform Sample Code
- Some Verilog stuff for various Xeon Platforms, unsure what it is exactly.
- Debug BIOS/TXE builds for various Platforms
- Bootguard SDK (encrypted zip)
- Intel Snowridge / Snowfish Process Simulator ADK
- Various schematics
- Intel Marketing Material Templates (InDesign)
While these leaked documents are harmless on their own, the bad guys will assuredly be digging through the treasure pile in search of vulnerabilities to attack. For now, there is no evidence of any exploits actively in the wild as a result of the database leak.
While this payload of information may cause issues for Mac users down the line, owners of Macs that purchase them in a few years will be immune from the attacks, as Apple is moving its entire Mac lineup over to Apple Silicon.