banner
LightNews
gleeda.bsky.social
Jamie Levy 🦉
@gleeda.bsky.social
2.7K followers 780 following 140 posts
@volatilityfoundation.org Core Dev | Art of Memory Forensics co-author | DFIR trainer and enthusiast | Director of Adversary Tactics @huntress.com
Posts Media Videos Starter Packs
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · Aug 1
We are excited to announce that we are hosting a second training course for #FTSCon week! Join @joegrand.bsky.social as he leads his popular 2-day Hardware Hacking Basics course on Oct. 21-22 in Arlington VA! Registration is now OPEN!
Joe Grand's Hardware Hacking Basics [FTSCon 2025]
This two-day comprehensive course teaches fundamental hardware hacking concepts and techniques used to explore, manipulate, and exploit electronic devices.
events.humanitix.com
1 5 4
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 24d
We are so excited to have @joegrand.bsky.social keynoting at #FTSCon 2025! Come join us on October 20th!
volatilityfoundation.org
Volatility @volatilityfoundation.org · Aug 6
We are thrilled to announce that @joegrand.bsky.social is this year’s #FTSCon Keynote speaker! Joe will be sharing stories & technical details about his wallet hacking adventures to kickoff our full-day event on Monday, Oct 20, 2025. You don’t want to miss this!
3 2
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 21d
We are counting down to #FTSCon 2025! We have a slate of great speakers—you don't want to miss this event!


If you haven't registered yet, register here: events.humanitix.com/from-the-sou....

Stay tuned for speaker spotlights!
From The Source 2025
Learn Directly from the World’s Leading Digital Investigators: On Monday, October 20, 2025, the Volatility Foundation is hosting From The Source, a one-day summit, in Arlington, VA, followed by fou…
volatilityfoundation.org
3
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 21d
#FTSCon Speaker Spotlight: Juan Andrés Guerrero-Saade is presenting “From Threat Hunting to Threat Gathering” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
4 1
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 21d
#FTSCon Speaker Spotlight: Toni de la Fuente is presenting “Open Cloud Security, lessons learned building Prowler” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
3
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 21d
#FTSCon Speaker Spotlight: Wesley Shields (@wxs.bsky.social) is presenting “COLDRIVER: NOROBOT/YESROBOT/MAYBEROBOT” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
6 4
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 21d
#FTSCon Speaker Spotlight: Aleksandra Doniec (@hasherezade.bsky.social) is presenting “Uncovering Malware's Secrets with TinyTracer” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
6 2
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 21d
#FTSCon Speaker Spotlight: Joseph Edwards (@eflags.bsky.social) is presenting “The Forensics of Zoom's Remote Control” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
4 1
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 21d
#FTSCon Speaker Spotlight: Andrew Case (@attrc.bsky.social) is presenting “Detection and Analysis of Memory-Only Linux Rootkits” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
4 2
Reposted by Jamie Levy 🦉
eflags.bsky.social
Joseph @eflags.bsky.social · 21d
Excited to speak at FTSCon next month!
volatilityfoundation.org
Volatility @volatilityfoundation.org · 21d
#FTSCon Speaker Spotlight: Joseph Edwards (@eflags.bsky.social) is presenting “The Forensics of Zoom's Remote Control” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
2 4
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 20d
#FTSCon Speaker Spotlight: Joe FitzPatrick (@securelyfitz.bsky.social) is presenting “Rethinking DMA Attacks with Erebus” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
5 1
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 20d
#FTSCon Speaker Spotlight: Daniel Gordon (@validhorizon.bsky.social) is presenting “When the AppleJeus GitHub is Worth the Squeeze: Citrine Sleet Investigation” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
3 6
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 20d
#FTSCon Speaker Spotlight: Denis Bueno is presenting “CTADL: Customizable Static Taint Analysis” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
4
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · 20d
#FTSCon Speaker Spotlight: Michael Horka is presenting “Lilac Typhoon aboard the Indigo Train - The Current State of Chinese Obfuscation Networks” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...
5 6
Reposted by Jamie Levy 🦉
taggart-tech.com
Taggart @taggart-tech.com · Sep 9
An incredible firsthand glimpse into threat actor operations from Huntress:
An Attacker’s Blunder Gave Us a Look Into Their Operations | Huntress
An attacker installed Huntress onto their operating machine, giving us a detailed look at how they’re using AI to build workflows, searching for tools like Evilginx, and researching targets like software development companies.
www.huntress.com
2 5
Reposted by Jamie Levy 🦉
cyberwarcon.bsky.social
CYBERWARCON @cyberwarcon.bsky.social · Aug 18
CYBERWARCON is back.

🗓️ Wednesday, Nov 19, 2025 | Crystal City + virtual
🔗 cyberwarcon.com
1 5 13
Reposted by Jamie Levy 🦉
bsidesnova.bsky.social
BSidesNoVA @bsidesnova.bsky.social · Aug 16
Last chance to be a part of *THE* premier #InfoSec event in Northern Virginia, #BSidesNoVA!

Submit a talk or workshop by 11:59PM ET tonight, August 15th.
sessionize.com/bsidesnova-2...
Call for Presentations. Deadline is 11:59PM ET Friday, August 15th. October 10-11 Arlington, Virginia. sessionize.com/bsidesnova-2025. #BSidesNoVA
3 2
gleeda.bsky.social
Jamie Levy 🦉 @gleeda.bsky.social · Aug 4
We've seen quite a lot of intrusions involving SonicWall devices here at @huntress.com

We decided to write a bit about what attacker tradecraft we've seen on the other end of these intrusions:

🔎 www.huntress.com/blog/exploit...
Active Exploitation of SonicWall VPNs | Huntress
A likely zero-day vulnerability in SonicWall VPNs is being actively exploited to bypass MFA and deploy ransomware. Huntress advises disabling the VPN service immediately or severely restricting access...
www.huntress.com
1 3
Reposted by Jamie Levy 🦉
bsidesnyc.org
BSidesNYC @bsidesnyc.org · Jul 31
BSidesNYC thanks @gleeda.bsky.social and the rest of the 0x05 Technical CFP Committee, @cyb3rkitties.bsky.social, Cesar Vargas, Jase English, Jamie Williams, Jessica Hyde, @rmettig.com, and Stephanie Aceves for volunteering their time to review talks. Many thanks for curating our programming.
2 2
Reposted by Jamie Levy 🦉
bsidesnyc.org
BSidesNYC @bsidesnyc.org · Jun 27
The BSidesNYC call for papers is still open. Submit your topic today! bsidesnyc.org
4 3
Reposted by Jamie Levy 🦉
moyix.net
Brendan Dolan-Gavitt @moyix.net · Jun 24
This is the first of a series of posts we're doing on some of the vulns found as part of the HackerOne work – we have lots more fun ones coming up about some great SSRF, SQLi, and RCE vulns it discovered, with very clever exploit techniques :)
xbow.com
XBOW @xbow.com · Jun 24
Real security is POC || GTFO – and XBOW agrees.

We’re releasing technical deep-dives on cool findings from our journey to the top of the HackerOne US leaderboard.

The first is a zero-day XSS in Palo Alto Networks GlobalProtect by @pwntester.bsky.social.

xbow.com/blog/xbow-gl...
XBOW – Breaking the Shield: How XBOW Discovered Multiple XSS Vulnerabilities in Palo Alto’s GlobalProtect VPN
XBOW discovered multiple cross-site scripting (XSS) vulnerabilities in Palo Alto Networks’ GlobalProtect VPN web application
xbow.com
3 8
Reposted by Jamie Levy 🦉
re.wtf
alden @re.wtf · Jun 18
excited bc today @huntress.com is releasing our analysis of a gnarly intrusion into a web3 company by the DPRK's BlueNoroff!! 🤠

we've observed 8 new pieces of macOS malware from implants to infostealers! and they're actually good (for once)!

www.huntress.com/blog/inside-...
Inside the BlueNoroff Web3 macOS Intrusion Analysis | Huntress
Learn how DPRK's BlueNoroff group executed a Web3 macOS intrusion. Explore the attack chain, malware, and techniques in our detailed technical report.
www.huntress.com
1 19 29
Reposted by Jamie Levy 🦉
volexity.com
Volexity @volexity.com · Apr 22
@volexity.com #threatintel: Multiple Russian threat actors are using Signal, WhatsApp & a compromised Ukrainian gov email address to impersonate EU officials. These phishing attacks abuse 1st-party Microsoft Entra apps + OAuth to compromise targets.

www.volexity.com/blog/2025/04...

#dfir
Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows
Since early March 2025, Volexity has observed multiple suspected Russian threat actors conducting highly targeted social engineering operations aimed at gaining access to the Microsoft 365 (M365) acco...
www.volexity.com
12 18
Reposted by Jamie Levy 🦉
volexity.com
Volexity @volexity.com · May 16
Congratulations to all of the Volatility contributors - this was no small feat! We are proud to be a sustaining sponsor of this important open-source project that remains the world’s most widely used memory forensics platform. #dfir
volatilityfoundation.org
Volatility @volatilityfoundation.org · May 16
We are very excited to announce that Volatility 3 has reached parity with Volatility 2! With this achievement, Volatility 2 is now deprecated. See the full details in our blog post: volatilityfoundation.org/announcing-t...
Announcing the Official Parity Release of Volatility 3!
Visit the post for more.
volatilityfoundation.org
7 10
Reposted by Jamie Levy 🦉
volatilityfoundation.org
Volatility @volatilityfoundation.org · May 23
We are excited to announce FTSCon 2025 on October 20, 2025, in Arlington VA! Registration is now OPEN + we have a Call for Speakers.

Following FTSCon will be a 4-day Malware & Memory Forensics Training course with Volatility 3.

See the full details here: volatilityfoundation.org/announcing-f...
Announcing FTSCon 2025 & In-person Malware and Memory Forensics Training!
Mark your calendars for Monday, October 20, 2025! We will again be hosting FTSCon in Arlington, Virginia.You can read more event details here. Registration is now open!
volatilityfoundation.org
9 7