Kristel Faris's Avatar

Kristel Faris

@kristelfaris.bsky.social

Creative. Mom. Loves the outdoors. Plymouth State alum. Marketing @volexity.com

31 Followers  |  152 Following  |  2 Posts  |  Joined: 21.12.2023  |  1.9618

Latest posts by kristelfaris.bsky.social on Bluesky

Preview
Dangerous Invitations: Russian Threat Actor Spoofs European Security Events in Targeted Phishing Attacks In early 2025, Volexity published two blog posts detailing a new trend among Russian threat actors targeting organizations through the abuse of Microsoft 365 OAuth and Device Code authentication workf...

@volexity.com tracks a variety of threat actors abusing Device Code & OAuth authentication workflows to phish credentials, which continue to see success due to creative social engineering. Our latest blog post details Russian threat actor UTA0355’s campaigns impersonating European security events.

04.12.2025 18:36 β€” πŸ‘ 10    πŸ” 8    πŸ’¬ 0    πŸ“Œ 0
Preview
How AI is changing hacking The tech company Anthropic’s AI technology was used by Chinese-backed hackers trying to breach foreign governments and major corporations.

@stevenadair.bsky.social recently spoke with Here & Now’s Scott Tong (@npr.org @wbur.org) about @volexity.com’s discovery of China-aligned threat actor UTA0388 using AI + LLMs in targeted phishing attacks. Listen here: www.wbur.org/hereandnow/2...

03.12.2025 20:04 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
APT Meets GPT: Targeted Operations with Untamed LLMs Starting in June 2025, Volexity detected a series of spear phishing campaigns targeting several customers and their users in North America, Asia, and Europe. The initially observed campaigns were tail...

Check out our recent blog post for more details on how UTA0388 used AI + LLMs in their operations: www.volexity.com/blog/2025/10...

14.11.2025 16:28 β€” πŸ‘ 3    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0

@volexity.com has continued to see nation-state threat actors use AI + LLMs to assist in cyber attacks. Our recent research on a Chinese APT threat actor (UTA0388) using AI in its operation was something @stevenadair.bsky.social recently discussed with the @wsj.com.

14.11.2025 16:28 β€” πŸ‘ 4    πŸ” 4    πŸ’¬ 1    πŸ“Œ 0
Post image Post image Post image Post image

We had a great day yesterday at #FTSCon 2025! FTSCon Week continues with @joegrand.bsky.social's Hardware Hacking Basics + #Volatility Malware & Memory Forensics training with @attrc.bsky.social, Michael Ligh + Dave Lassalle.

21.10.2025 13:37 β€” πŸ‘ 3    πŸ” 5    πŸ’¬ 0    πŸ“Œ 0

With Volcano, security teams can automate the entire workflow of acquisition of memory and select files to deep analysis to automated alerts that directly point to signs of memory only malware and attacker activity throughout RAM and key artifacts sources from disk.

03.10.2025 17:05 β€” πŸ‘ 4    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
From The Source 2025 Learn Directly from the World’s Leading Digital Investigators: On Monday, October 20, 2025, the Volatility Foundation is hosting From The Source, a one-day summit, in Arlington, VA, followed by fou…

The full lineup for our From the Source event is out! The event take places on October 20th in Arlington, VA. Joe Grand will keynote followed by an amazing speaker line up across two tracks. All proceeds will be donated to Connect Our Kids. volatilityfoundation.org/from-the-sou...

06.10.2025 15:49 β€” πŸ‘ 3    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Post image

We would like to thank @volexity.com for sponsoring the #FTSCon 2025 Evening Reception, which will be at VUE Rooftop DC this year! If you haven’t registered for FTSCon yet, there’s still time! Registration closes Sunday Oct 12; learn more + register here: volatilityfoundation.org/from-the-sou...

07.10.2025 16:47 β€” πŸ‘ 3    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Post image

New Release: #volatility3 v2.26.2 - visit github.com/volatilityfo... for details and downloads.

#memoryforensics #dfir

29.09.2025 22:19 β€” πŸ‘ 4    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
The stylized blue, orange and black Volexity Volcano logo is centered, with the Volcano wordmark below it. The words β€œby Volexity” appear below the Volcano logo. There is a dark blue banner in the upper left with white letters that read β€œNew Release”. The background is a faded gray abstract illustration evoking smoke.

The stylized blue, orange and black Volexity Volcano logo is centered, with the Volcano wordmark below it. The words β€œby Volexity” appear below the Volcano logo. There is a dark blue banner in the upper left with white letters that read β€œNew Release”. The background is a faded gray abstract illustration evoking smoke.

@volexity.com Volcano Server & Volcano One v25.09.21 adds memory analysis support for ARM64 Linux, macOS 26 (Tahoe) & Windows 25H2, plus 75+ new YARA rules, 10+ new IOCs, analysis of udev rules & rolling upgrades for managed endpoints.

For more information, contact us: volexity.com/company/cont...

01.10.2025 18:06 β€” πŸ‘ 5    πŸ” 2    πŸ’¬ 0    πŸ“Œ 1

Coming up the week of October 20th: #FTSCon + TWO in-person #training opportunities!

Learn more here: volatilityfoundation.org/from-the-sou...

#dfir #memoryforensics #hardwarehacking

29.09.2025 17:16 β€” πŸ‘ 3    πŸ” 4    πŸ’¬ 0    πŸ“Œ 1
Post image

#FTSCon Speaker Spotlight: Michael Carson is presenting β€œThorium” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

19.09.2025 19:46 β€” πŸ‘ 1    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Post image

#FTSCon Speaker Spotlight: Tom Lancaster (@tlansec.bsky.social) & Josh Duke are presenting β€œMission Auth Possible: Passwordless Phishing” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

19.09.2025 18:43 β€” πŸ‘ 3    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Post image

#FTSCon Speaker Spotlight: Denis Bueno is presenting β€œCTADL: Customizable Static Taint Analysis” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

19.09.2025 17:06 β€” πŸ‘ 0    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Post image

#FTSCon Speaker Spotlight: Daniel Gordon (@validhorizon.bsky.social) is presenting β€œWhen the AppleJeus GitHub is Worth the Squeeze: Citrine Sleet Investigation” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

19.09.2025 15:34 β€” πŸ‘ 6    πŸ” 3    πŸ’¬ 0    πŸ“Œ 1
Post image

#FTSCon Speaker Spotlight: Joe FitzPatrick (@securelyfitz.bsky.social) is presenting β€œRethinking DMA Attacks with Erebus” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

19.09.2025 13:23 β€” πŸ‘ 1    πŸ” 5    πŸ’¬ 0    πŸ“Œ 0
Post image

#FTSCon Speaker Spotlight: Michael Horka is presenting β€œLilac Typhoon aboard the Indigo Train - The Current State of Chinese Obfuscation Networks” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

19.09.2025 11:23 β€” πŸ‘ 6    πŸ” 5    πŸ’¬ 0    πŸ“Œ 0
Post image

#FTSCon Speaker Spotlight: Andrew Case (@attrc.bsky.social) is presenting β€œDetection and Analysis of Memory-Only Linux Rootkits” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

18.09.2025 21:34 β€” πŸ‘ 2    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Post image

#FTSCon Speaker Spotlight: Joseph Edwards (@eflags.bsky.social) is presenting β€œThe Forensics of Zoom's Remote Control” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

18.09.2025 19:56 β€” πŸ‘ 1    πŸ” 4    πŸ’¬ 0    πŸ“Œ 1
Post image

#FTSCon Speaker Spotlight: Aleksandra Doniec (@hasherezade.bsky.social) is presenting β€œUncovering Malware's Secrets with TinyTracer” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

18.09.2025 18:10 β€” πŸ‘ 2    πŸ” 6    πŸ’¬ 0    πŸ“Œ 0
Post image

#FTSCon Speaker Spotlight: Wesley Shields (@wxs.bsky.social) is presenting β€œCOLDRIVER: NOROBOT/YESROBOT/MAYBEROBOT” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

18.09.2025 16:29 β€” πŸ‘ 4    πŸ” 6    πŸ’¬ 0    πŸ“Œ 1
Post image

#FTSCon Speaker Spotlight: Toni de la Fuente is presenting β€œOpen Cloud Security, lessons learned building Prowler” in the MAKER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

18.09.2025 14:46 β€” πŸ‘ 0    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Post image

#FTSCon Speaker Spotlight: Juan AndrΓ©s Guerrero-Saade is presenting β€œFrom Threat Hunting to Threat Gathering” in the HUNTER track.

See the full list of speakers + event info, including how to register, here: volatilityfoundation.org/from-the-sou...

18.09.2025 13:15 β€” πŸ‘ 1    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Preview
From The Source 2025 Learn Directly from the World’s Leading Digital Investigators: On Monday, October 20, 2025, the Volatility Foundation is hosting From The Source, a one-day summit, in Arlington, VA, followed by fou…

We are counting down to #FTSCon 2025! We have a slate of great speakersβ€”you don't want to miss this event!


If you haven't registered yet, register here: events.humanitix.com/from-the-sou....

Stay tuned for speaker spotlights!

18.09.2025 12:02 β€” πŸ‘ 0    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0

We are so excited to have @joegrand.bsky.social keynoting at #FTSCon 2025! Come join us on October 20th!

15.09.2025 16:30 β€” πŸ‘ 2    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Preview
Malware and Memory Forensics Training - Memory Analysis Malware and memory forensics training courses offered by the Memory Analysis Team.

The next in-person offering of our Malware and Memory Forensics Training will be held in Arlington, VA from Oct 21st-24th. This course has converted to Volatility 3, and all the material and labs are updated to cover the latest threats & analysis techniques

memoryanalysis.net/courses-malw...

03.09.2025 17:11 β€” πŸ‘ 7    πŸ” 6    πŸ’¬ 0    πŸ“Œ 0
Event Schedule BSides NYC is an Information / Security conference that’s different. We’re a 100% volunteer organized event put on by and for the community, and we truly strive to keep information free.

I am very happy to announce that @volexity.com will be well represented at @bsidesnyc.org! David McDonald will be speaking on his latest automated Powershell Deobfuscation research & I will present the latest Volatility 3 advancements against sophisticated Windows malware:

bsidesnyc.org/schedule/

08.09.2025 15:19 β€” πŸ‘ 3    πŸ” 4    πŸ’¬ 1    πŸ“Œ 0
Post image Post image

And that’s a wrap for our 2025 #summerinternship program! This was a great summer of challenging impactful projects & fun team-building excursions. We wish our students all the best as they settle back into their Dept of Computer Science programs at University of Notre Dame & University of Maryland!

22.08.2025 15:45 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Post image

Oct 21–24: Join the Volatility core development team for Malware & Memory Forensics Training! This 4-day training course is your opportunity to learn about new capabilities in Volatility 3 and what motivated recent design changes. memoryanalysis.net/courses-malw...

13.08.2025 14:43 β€” πŸ‘ 2    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Post image

Oct 21–22: Join @joegrand.bsky.social for Hardware Hacking Basics! This 2-day course teaches fundamental hardware hacking concepts & techniques used to reverse engineer + defeat the security of electronic systems. No prior hardware experience is required. events.humanitix.com/joe-grands-h...

13.08.2025 14:43 β€” πŸ‘ 2    πŸ” 3    πŸ’¬ 1    πŸ“Œ 0

@kristelfaris is following 20 prominent accounts