This is *old* news.
Truecrypt mitigated this "attack" as does using a BIOS (BIOS!!, FFS it's all UEFI now) boot up password or BIOS setting password. And physically turning the machine off also dealt with this.
Or is this some new kind attack based on these old principles?