Inlay

Profile

🇺🇦 Xorhex 🇺🇦

@volexity.com has published details from an incident response engagement in September 2025 involving multiple #BRICKSTORM variants deployed by a threat actor that Volexity tracks as VerdantBamboo. [1/4]

14d

Its been two weeks since (my workshop at) @botconf.infosec.exchange.ap.brid.gy 2026, and last weekend I found some time to write about my experience: maxkersten.nl/2026/04/27/m...

1mo

See you at RustConf! :D

Very excited to present at RustConf this year! :D

In September 2025, Volexity conducted an incident response engagement that began after suspicious network traffic was observed from a Linux-based virtual machine appliance on a customer’s network. The...

www.volexity.com

VerdantBamboo: Just Another BRICKSTORM in the Firewall

My name is Daniel Gordon and I am writing to let you know that you have a serious problem. Next week I will be speaking at FirstCon about The Art of Notification. Distilled lessons learned from hundreds of victim notifications I’ve done over the years. www.first.org/conference/2...

17d

1mo

#PIVOTcon26 edition is over! Time to #pivot to #PIVOTcon27 Big thanks to our sponsors for making this happen! @silentpush.bsky.social @vertexproject.bsky.social @censys.bsky.social @urlscan-bot.bsky.social #validin @talosintelligence.com (continued...) 🔽 1/3

Operation Dragon Weave: Uncovering a China-Linked Campaign Targeting Czech Republic and Taiwan Using Azure Cloud C2 Seqrite APT Team www.seqrite.com/blog/operati... @seqrite.bsky.social

Iranian and Russian shadow fleet vessels, along with multiple sanctions evasion networks (SENs), are using online infrastructure likely designed to facilitate sanctions evasion. Recorded Future www.recordedfuture.com/research/cyb... @recorded-future.bsky.social

1mo

17d

The debugger got some real love in our latest update. Hardware breakpoints and conditional breakpoints have both landed, and the new debug adapters make things faster and more reliable across a range of workflows. Read more from the latest blog: binary.ninja/2026/04/13/b...

CertGraveyard's PKI Lab is available now. Want to better understand code-signing certificates? The site allows you to extract and view certificates. The Cert Inspection tool parses out all of the bits and flags anomalies. 1/2

Volexity

38th Annual FIRST Conference - Denver (US), June 14-19, 2026.

www.first.org

38th Annual FIRST Conference: DENVER (US), June 14-19, 2026

1mo

Cindʎ Xiao 🍉

1mo

Discover how Iranian and Russian shadow fleets use a vast network of fake maritime websites and fraudulent documents to evade international sanctions

www.recordedfuture.com

Cyber-Enabled Maritime Sanctions Evasion

Max 'Libra' Kersten

maxkersten.nl

My impression of Botconf 2026 – Max Kersten

780th Military Intelligence Brigade (Cyber)

PIVOTcon

Daniel Gordon

Binary Ninja

Squiblydoo

Operation Dragon Weave : Uncovering a China-Linked Campaign Targeting Czech Republic and Taiwan Using Azure Cloud C2 | Seqrite

Contents Introduction Key Targets Industries Affected Geographical focus Infection Chain Initial Findings Looking into the Decoy Document Technical Analysis Stage 1 - Initial Delivery Path A: LNK-Base...

www.seqrite.com

Speaker Spotlight: Cindy Xiao, Security Researcher @ DecoderLoop Rust malware is rising & reverse engineers are scrambling. On Sept 9, Cindy surveys the '26 landscape: techniques, tooling gaps, & how to teach RE in a Rust world. Schedule: sched.co/2KHt7 Register: bit.ly/4eUTQ1g #rustconf

The growth of Rust has led to an increase in legit software targets to examine for vulnerabilities AND an explosion in malware written in Rust. @cxiao.net will be exploring this in “Reverse Engineering Rust Malware in 2026” @ #rustconf. View on schedule: sched.co/2KHt7 Register: bit.ly/4uB95Ru

25d

1mo

RustConf