Aggregator

BadRAM: $10 hack unlocks AMD encrypted memory(link is external)

Help Net Security
4 months 1 week ago

Cybersecurity researchers have identified a vulnerability (CVE-2024-21944, aka BadRAM) affecting ADM processors that can be triggered by rogue memory modules to unlock the chips’ encrypted memory. The SPD chip can be modified using an off-the-shelf microcontroller. The researchers used a Raspberry Pi Pico, for a cost of around $10 “We found that tampering with the embedded SPD chip on commercial DRAM modules allows attackers to bypass AMD’s Secure Encrypted Virtualization (SEV) protections — including AMD’s … More →

The post BadRAM: $10 hack unlocks AMD encrypted memory appeared first on Help Net Security.

Mirko Zorz

What is Nudge Security and How Does it Work?(link is external)

The Hackers News
4 months 1 week ago
Regain control of SaaS sprawl with Day One discovery of all SaaS and GenAI accounts along with workflows to help you mitigate security risks, curb rogue app usage, and manage SaaS spend. In today’s highly distributed workplace, every employee has the ability to act as their own CIO, adopting new cloud and SaaS technologies whenever and wherever they need. While this has been a critical boon to
The Hacker News

Chinese EagleMsgSpy Spyware Found Exploiting Mobile Devices Since 2017(link is external)

The Hackers News
4 months 1 week ago
Cybersecurity researchers have discovered a novel surveillance program that's suspected to be used by Chinese police departments as a lawful intercept tool to gather a wide range of information from mobile devices. The Android tool, codenamed EagleMsgSpy by Lookout, has been operational since at least 2017, with artifacts uploaded to the VirusTotal malware scanning platform as recently as
The Hacker News

Managed ad