Steven Adair
@stevenadair
President @Volexity | Malware Analyst's Cookbook | Not easily rattled 😂
ID:45092292
06-06-2009 08:03:31
518 Tweets
2,9K Followers
417 Following
🧵Last week we (Volexity) identified and reported in-the wild (ITW) exploitation of CVE-2024-3400 affecting Palo Alto GlobalProtect 👇
volexity.com/blog/2024/04/1…
#dfir #ThreatIntel #infosecurity
Hmm search results on SoundCloud don’t show the numbers of plays or favorites anymore? 👎 😢 SoundCloud Support
Following Volexity's initial discovery & reporting on recent Ivanti Connect Secure vulnerabilities, Cybersecurity and Infrastructure Security Agency released a joint advisory that warns #threatactors continue to exploit these vulnerabilities. More details + mitigations here: cisa.gov/news-events/cy…
#dfir #threatintel
.Volexity consistently observes Iranian #apt group CharmingCypress innovate ways to persistently pursue targets. This blog reviews the group's phishing tactics & malware + investigates an attack with Volexity Volcano: volexity.com/blog/2024/02/1…
#dfir #threatintel #memoryforensics
In this blog post, Michael Ligh (MHL) + Andrew Case break down how Volexity used #memoryforensics to discover two #0days being chained together to achieve unauthenticated remote code execution in Ivanti Connect Secure VPN devices. More details here: volexity.com/blog/2024/02/0…
#dfir #threatintel
Don't miss tlansec's talk at 12:00 BST tomorrow, Oct 5, at #VB2023 in London! He will share Volexity's research + observations of a North Korean #apt using unique, persistent #socialengineering techniques to target victims. More here: virusbulletin.com/conference/vb2…
#threatintel #dfir