Security Conversations

Volexity’s Steven Adair on Russian Wi-Fi hacks, memory forensics, appliance 0days and network inspectability

Nov 30, 2024

Steven Adair, the founder of Volexity and a cybersecurity expert, shares insights on crucial topics in the field. He discusses innovative approaches to memory forensics, emphasizing their importance in incident response. The conversation dives into Volexity's discoveries regarding Wi-Fi hacks and the complexities of EDR systems. Adair also addresses the rise of professional ransomware attacks, highlighting a recent Firefox zero-day and the emergence of a Linux bootkit. His expertise sheds light on significant vulnerabilities and the urgent need for robust network security.

01:18:33

Creator website

Episode guests

Steven Adair

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Volexity emphasizes the critical role of memory analysis in cybersecurity, addressing technical challenges in acquiring volatile data without system disruption.

The podcast highlights gaps in endpoint detection and response capabilities, showcasing how memory analysis can reveal intrusion details often missed by EDR solutions.

Volexity’s competitive edge stems from its specialized focus on memory and incident response, leveraging expertise from the creators of the Volatility project to provide effective tools.

Deep dives

Overview of DEFCAMP Conference

The discussion begins with the introduction of DEFCAMP, Eastern Europe's largest cybersecurity conference, held at the historic Ceausescu Palace in Romania. The conference serves as a significant event for networking and knowledge sharing among cybersecurity professionals. Attendees have the opportunity to learn about the latest trends and developments in the field, as well as to connect with experts and like-minded individuals. The venue itself adds a unique cultural element, being situated in a site of historical significance in Bucharest.

Intro

2min

Memory Forensics in Cybersecurity

16min

Challenges in Memory Dumping During Investigations

3min

Understanding Wi-Fi Hack Vulnerabilities

19min

Navigating Cybersecurity Threats

17min

The Cybercrime Economy

4min

The Duality of Patch Management and Emerging Threats in Cybersecurity

2min

Navigating Cybersecurity Challenges

12min

Celebrating Achievements and Acknowledging Global Events

3min

Three Buddy Problem - Episode 23: Volexity founder Steven Adair joins the show to explore the significance of memory analysis and the technical challenges associated with memory dumping and forensics. We dig into Volexity’s “nearest neighbor” Wi-Fi hack discovery, gaps in EDR detection and telemetry, and some real-talk on the Volt Typhoon intrusions.

We also cover news on a Firefox zero-day exploited on the Tor browser, the professionalization of ransomware, ESET's discovery of a Linux bootkit (we have a scoop on the origins of this!), Binarly research on connections to LogoFAIL, and major visibility gaps in the firmware ecosystem.

Cast: Juan Andres Guerrero-Saade (SentinelLabs), Costin Raiu (Art of Noh) and Ryan Naraine (SecurityWeek).

Honorary buddy: Steven Adair (Volexity)

Links:

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Security Conversations

Volexity’s Steven Adair on Russian Wi-Fi hacks, memory forensics, appliance 0days and network inspectability

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Overview of DEFCAMP Conference

Introduction of Volexity

Challenges in Memory Analysis

Role of EDR Solutions in Cybersecurity

Volexity's Competitive Landscape

Cyber Threat Detection and Response

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Security Conversations

Volexity’s Steven Adair on Russian Wi-Fi hacks, memory forensics, appliance 0days and network inspectability

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Overview of DEFCAMP Conference

Introduction of Volexity

Challenges in Memory Analysis

Role of EDR Solutions in Cybersecurity

Volexity's Competitive Landscape

Cyber Threat Detection and Response

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights