Microsoft Unveils the Surface Laptop, a Traditional Notebook That Is 'Better' Than MacBook Pro

On the sidelines of Windows 10 S and affordable Chromebook-like laptops announcements, Microsoft also announced the newest addition to its Surface computing lineup. Dubbed the Surface Laptop, the laptop starts at $999, and is for everyone, the company claims, though the focus is on students and professionals. From a report: The Surface Laptop includes a 13.5-inch PixelSense display (Microsoft's branding for its unique screen technology) and a keyboard draped in Alcantara, a smooth cloth-like material. It's powered by Intel's most recent Core i5 and Core i7 CPUs, and it can pack in an SSD up to 1TB (that's notably integrated directly onto the motherboard). Performance-wise, Microsoft's Surface head, Panos Panay, claims the Laptop is 50 percent faster than the Core i7 MacBook Air while also being lighter. (Editor's note: Panos added that the Surface Laptop also outpaces the MacBook Pro on performance.) You can also expect up to 14.5 hours of battery life, thanks to Windows 10 S's battery savings and more efficient hardware. One thing you won't see on the Surface Laptop: Speaker holes or grills. Microsoft managed to fit the speakers behind the keys, which Panay claims delivers a more enveloping sound. Microsoft says it has also improved the standby time -- so much so that "you could go away on spring break and still have the same battery life when you returned."

Obligatory:Intel CPU Backdoor Report (May 1 2017)

Aka I FUCKING TOLD YOU SO.

Newest update: On May 1st 2017, under pressure from the Vault 7 leak, Intel released a "Critical" security bulletin INTEL-SA-00075, admitting Intel Core CPU from 1st gen to 7th gen (2006-2017) all share the same critical vulnerability.

The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.

What we know about Intel CPU backdoors so far:

TL;DR version

Your Intel CPU and Chipset is running a backdoor as we speak.

The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.

30C3 Intel ME live hack:
@21m43s, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.
[Video Link] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
[Quotes] Vortrag:
"DAGGER exploits Intel's Manageability Engine (ME), that executes firmware code such as Intel's Active Management Technology (iAMT), as well as its OOB network channel."

"the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker. Our presentation consists of three parts. The first part addresses how to find valuable data in the main memory of the host. The second part exploits the ME's OOB network channel to exfiltrate captured data to an external platform and to inject new attack code to target other interesting data structures available in the host runtime memory. The last part deals with the implementation of a covert network channel based on JitterBug."

"We have recently improved DAGGER's capabilites to include support for 64-bit operating systems and a stealthy update mechanism to download new attack code."

"To be more precise, we show how to conduct a DMA attack using Intel's Manageability Engine (ME)."

"We can permanently monitor the keyboard buffer on both operating system targets."

Backdoor removal:
The backdoor firmware can be removed by following this guide using the me_cleaner script.
Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.

Decoding Intel backdoors:
The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.

If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).

Useful links:
The Intel ME subsystem can take over your machine, can't be audited
REcon 2014 - Intel Management Engine Secrets
Untrusting the CPU (33c3)
Towards (reasonably) trustworthy x86 laptops
30C3 To Protect And Infect - The militarization of the Internet
30c3: To Protect And Infect Part 2 - Mass Surveillance Tools & Software

1. Introduction, what is Intel ME