Researchers have discovered a vulnerability in DDR4 memory modules made by Corsair. By tricking the CPU into accessing nonexistent addresses, a script called BadRAM enables an attacker to read and write to protected memory regions. The attacker can then copy the cryptographic hash and boot a backdoored VM. The flaw stems from the fact that some DIMM models allow software-only modifications.

The NHS needs to tighten its third-party supplier cybersecurity
The NHS should proactively fortify cybersecurity within its third-party software suppliers following recent damaging ransomware attacks, says Jonathan Lee from Trend Micro. He suggests implementing