Volexity
LightNews LightNews
volexity.com
Volexity
@volexity.com
1.2K followers 7 following 31 posts
A security firm providing Incident Response, Proactive Threat Assessments, Trusted Advisory, and Threat Intelligence // volexity.com
Posts Replies Media Videos
Pinned
volexity.com
Volexity @volexity.com · Oct 8
APT meets GPT: @volexity.com #threatintel is tracking #threatactor UTA0388's spear phishing campaigns against targets in North America, Europe & Asia, appearing to use LLMs to assist their ops. Letting #AI run your espionage operations? What could go wrong?
APT Meets GPT: Targeted Operations with Untamed LLMs
Starting in June 2025, Volexity detected a series of spear phishing campaigns targeting several customers and their users in North America, Asia, and Europe. The initial observed campaigns were tailor...
www.volexity.com
volexity.com
@volexity.com has continued to see nation-state threat actors use AI + LLMs to assist in cyber attacks. Our recent research on a Chinese APT threat actor (UTA0388) using AI in its operation was something @stevenadair.bsky.social recently discussed with the @wsj.com.
wsj.com The Wall Street Journal @wsj.com · 1d
Exclusive: China’s state-sponsored hackers used Anthropic’s AI model to automate break-ins of major corporations and foreign governments.
Chinese Hackers Used Anthropic’s AI to Automate Cyberattacks
The use of AI automation in hacks is a growing trend that gives hackers additional scale and speed
on.wsj.com
November 14, 2025 at 4:28 PM
Reposted by Volexity
volatilityfoundation.org
The 13th annual @volatility #PluginContest is OPEN for submissions until 31 Dec 2025!

This contest is designed to encourage research & development in the field of #memoryanalysis. Every year, contributions from all around the world continue to help build the next generation of #memoryforensics.
The 13th Annual Volatility Plugin Contest is Open!
We are excited to announce that the Volatility Plugin Contest is officially open for submissions! The annual Plugin Contest is your opportunity to: Directly contribute to the open source forensics …
volatilityfoundation.org
October 29, 2025 at 3:37 PM
Reposted by Volexity
volatilityfoundation.org
We had a great day yesterday at #FTSCon 2025! FTSCon Week continues with @joegrand.bsky.social's Hardware Hacking Basics + #Volatility Malware & Memory Forensics training with @attrc.bsky.social, Michael Ligh + Dave Lassalle.
October 21, 2025 at 1:37 PM
Reposted by Volexity
cyberwarcon.bsky.social
@stevenadair.bsky.social is back again!

Founder + President of Volexity leading a team of experts that deal w/ complex cyber intrusions from nation-state level intruders. His talk will cover a Chinese APT actor that Volexity tracks as UTA0388.

Check out the official agenda:
cyberwarcon.com
October 15, 2025 at 3:11 PM
Reposted by Volexity
volatilityfoundation.org
Registration for #FTSCon 2025 closes tomorrow! We are really excited to see everyone on Monday, October 20th!
volatilityfoundation.org Volatility @volatilityfoundation.org · Oct 6
If you plan to attend the #FTSCon 2025 conference or training sessions, make sure to register before seats sell out! Registration closes this Sunday, October 12!
volatilityfoundation.org Volatility @volatilityfoundation.org · Sep 29
Coming up the week of October 20th: #FTSCon + TWO in-person #training opportunities!

Learn more here: volatilityfoundation.org/from-the-sou...

#dfir #memoryforensics #hardwarehacking
October 10, 2025 at 12:03 PM
volexity.com
APT meets GPT: @volexity.com #threatintel is tracking #threatactor UTA0388's spear phishing campaigns against targets in North America, Europe & Asia, appearing to use LLMs to assist their ops. Letting #AI run your espionage operations? What could go wrong?
APT Meets GPT: Targeted Operations with Untamed LLMs
Starting in June 2025, Volexity detected a series of spear phishing campaigns targeting several customers and their users in North America, Asia, and Europe. The initial observed campaigns were tailor...
www.volexity.com
October 8, 2025 at 12:35 PM
Reposted by Volexity
volatilityfoundation.org
We would like to thank @volexity.com for sponsoring the #FTSCon 2025 Evening Reception, which will be at VUE Rooftop DC this year! If you haven’t registered for FTSCon yet, there’s still time! Registration closes Sunday Oct 12; learn more + register here: volatilityfoundation.org/from-the-sou...
October 7, 2025 at 4:47 PM
Reposted by Volexity
attrc.bsky.social
The full lineup for our From the Source event is out! The event take places on October 20th in Arlington, VA. Joe Grand will keynote followed by an amazing speaker line up across two tracks. All proceeds will be donated to Connect Our Kids. volatilityfoundation.org/from-the-sou...
From The Source 2025
Learn Directly from the World’s Leading Digital Investigators: On Monday, October 20, 2025, the Volatility Foundation is hosting From The Source, a one-day summit, in Arlington, VA, followed by fou…
volatilityfoundation.org
October 6, 2025 at 3:49 PM
Reposted by Volexity
volatilityfoundation.org
If you plan to attend the #FTSCon 2025 conference or training sessions, make sure to register before seats sell out! Registration closes this Sunday, October 12!
volatilityfoundation.org Volatility @volatilityfoundation.org · Sep 29
Coming up the week of October 20th: #FTSCon + TWO in-person #training opportunities!

Learn more here: volatilityfoundation.org/from-the-sou...

#dfir #memoryforensics #hardwarehacking
October 6, 2025 at 4:45 PM
Reposted by Volexity
attrc.bsky.social
With Volcano, security teams can automate the entire workflow of acquisition of memory and select files to deep analysis to automated alerts that directly point to signs of memory only malware and attacker activity throughout RAM and key artifacts sources from disk.
volexity.com Volexity @volexity.com · Oct 1
@volexity.com Volcano Server & Volcano One v25.09.21 adds memory analysis support for ARM64 Linux, macOS 26 (Tahoe) & Windows 25H2, plus 75+ new YARA rules, 10+ new IOCs, analysis of udev rules & rolling upgrades for managed endpoints.

For more information, contact us: volexity.com/company/cont...
The stylized blue, orange and black Volexity Volcano logo is centered, with the Volcano wordmark below it. The words “by Volexity” appear below the Volcano logo. There is a dark blue banner in the upper left with white letters that read “New Release”. The background is a faded gray abstract illustration evoking smoke.
October 3, 2025 at 5:05 PM
volexity.com
@volexity.com Volcano Server & Volcano One v25.09.21 adds memory analysis support for ARM64 Linux, macOS 26 (Tahoe) & Windows 25H2, plus 75+ new YARA rules, 10+ new IOCs, analysis of udev rules & rolling upgrades for managed endpoints.

For more information, contact us: volexity.com/company/cont...
The stylized blue, orange and black Volexity Volcano logo is centered, with the Volcano wordmark below it. The words “by Volexity” appear below the Volcano logo. There is a dark blue banner in the upper left with white letters that read “New Release”. The background is a faded gray abstract illustration evoking smoke.
October 1, 2025 at 6:06 PM
Reposted by Volexity
volatilityfoundation.org
New Release: #volatility3 v2.26.2 - visit github.com/volatilityfo... for details and downloads.

#memoryforensics #dfir
September 29, 2025 at 10:19 PM
Reposted by Volexity
volatilityfoundation.org
Coming up the week of October 20th: #FTSCon + TWO in-person #training opportunities!

Learn more here: volatilityfoundation.org/from-the-sou...

#dfir #memoryforensics #hardwarehacking
September 29, 2025 at 5:16 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Michael Carson is presenting “Thorium” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 19, 2025 at 7:46 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Tom Lancaster (@tlansec.bsky.social) & Josh Duke are presenting “Mission Auth Possible: Passwordless Phishing” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 19, 2025 at 6:43 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Denis Bueno is presenting “CTADL: Customizable Static Taint Analysis” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 19, 2025 at 5:06 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Daniel Gordon (@validhorizon.bsky.social) is presenting “When the AppleJeus GitHub is Worth the Squeeze: Citrine Sleet Investigation” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 19, 2025 at 3:34 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Joe FitzPatrick (@securelyfitz.bsky.social) is presenting “Rethinking DMA Attacks with Erebus” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 19, 2025 at 1:23 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Michael Horka is presenting “Lilac Typhoon aboard the Indigo Train - The Current State of Chinese Obfuscation Networks” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 19, 2025 at 11:23 AM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Andrew Case (@attrc.bsky.social) is presenting “Detection and Analysis of Memory-Only Linux Rootkits” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 18, 2025 at 9:34 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Joseph Edwards (@eflags.bsky.social) is presenting “The Forensics of Zoom's Remote Control” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 18, 2025 at 7:56 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Aleksandra Doniec (@hasherezade.bsky.social) is presenting “Uncovering Malware's Secrets with TinyTracer” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 18, 2025 at 6:10 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Wesley Shields (@wxs.bsky.social) is presenting “COLDRIVER: NOROBOT/YESROBOT/MAYBEROBOT” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 18, 2025 at 4:29 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Toni de la Fuente is presenting “Open Cloud Security, lessons learned building Prowler” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 18, 2025 at 2:46 PM
Reposted by Volexity
volatilityfoundation.org
#FTSCon Speaker Spotlight: Juan Andrés Guerrero-Saade is presenting “From Threat Hunting to Threat Gathering” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
September 18, 2025 at 1:15 PM