Researchers have discovered a vulnerability in DDR4 memory modules made by Corsair. By tricking the CPU into accessing nonexistent addresses, a script called BadRAM enables an attacker to read and write to protected memory regions. The attacker can then copy the cryptographic hash and boot a backdoored VM. The flaw stems from the fact that some DIMM models allow software-only modifications.

New Triada comes preinstalled on Android devices
A new variant of the Triada Trojan has been discovered pre-installed on Android devices, enabling data theft from the moment the device is set up,