[0x0]

It turns out all(?) Intel CPUs in the last decade has a co-CPU that is always running as long as there is electricity available - even when shut down - that is continuously executing a "management engine" bios program, which your main CPU or OS cannot prevent (in fact, if the ME fails to "check in", the main CPU will automatically shutdown in 30 minutes). And, of course, it turns out there is a remote exploit for it. (The co-CPU intercepts network packets on its own, too, apparently)

[lclarkmichalek]

Not all Intel CPUs have AMT. Most consumer machines won't have it enabled, it's an enterprise targeted feature.

  > Does this mean every Intel system built since 2008 can be taken over by hackers?
  
  No. Most Intel systems don't ship with AMT. Most Intel systems with AMT don't have it turned on.

From an FAQ by MJG, the author of the tool we are discussing: https://mjg59.dreamwidth.org/48429.html

[pritambaral]

Your parent is correct. They aren't talking about AMT. They're talking about ME, which IS present in every Intel chip (since 2008-ish)

[lclarkmichalek]

My grandparent was talking about AMT. That's why the question was 'What is AMT?' I'll edit for clarity though.

[ue_]

This sounds horrible, even though I knew about it before. What are the viable options for other manufacturers or architectures which don't come with this sort of thing, either for desktops or for laptops?

[chx]

So the mainstream is Intel and AMD. Both are out.

https://libreboot.org/faq.html#intel https://libreboot.org/faq.html#amd

See https://libreboot.org/faq.html#whatcaniuse -- your best bet is older Intel / AMD.

There are some laptops https://www.crowdsupply.com/sutajio-kosagi/novena which are open.