Discovery of the leak

The contents of the leak

• Kabylake BIOS reference code and sample code, initialization code 
• Intel Consumer Electronics Firmware Development Kit sources
• Silicon/ FSP source code packages for various platforms
• Various Intel development and debugging tools
• Simics simulation for Rocket Lake S and potentially other platforms
• Various roadmaps and other documents
• Intel’s binaries for SpaceX camera drivers
• Schematics, documents, tools, and firmware data related to the unreleased Tiger Lake platform
• Kabylake FDK training videos
• Intel Trace Hub and decoder files for various Intel ME versions
• Sample code for Elkhart Lake Silicon Reference and Platform 
• Debug BIOS/TXE builds for various platforms
• Bootguard SDK 
• Intel Snowridge/ Snowfish process simulator ADK
• Intel marketing material templates (InDesign)
• Apollo Lake Intel(R) TXE 3.1.75.2351_MR
• APS Software
• Certificates
• Lakefield Pets
• tigerisland-rev1

Data verification and validation 

Impact

1. Threat actors use internal tools to debug the existing hardware systems and codes.
2. The disclosure of schematics could allow attackers to target the hardware. 
3. Threat actors will be able to conduct further analysis using the published firmware details.

Next steps

1. Pay attention to the vendor’s response for updates.
2. Don’t open unsolicited email attachments and links, claiming to be from the vendor.
3. Use strong passwords wherever necessary and avoid password reuse.
4. Verify access/ permission granted to applications.