Cyber Defence Analysis for Blue & Purple Teams

Cyber Defence Analysis for Blue & Purple Teams

Share this post

Cyber Defence Analysis for Blue & Purple Teams
Cyber Defence Analysis for Blue & Purple Teams
Bluepurple Pulse: week ending April 3rd
Copy link
Facebook
Email
Notes
More

Bluepurple Pulse: week ending April 3rd

Ukraine is the Chuck Norris of Cyber

Ollie's avatar
Ollie
Apr 01, 2022
∙ Paid
3

Share this post

Cyber Defence Analysis for Blue & Purple Teams
Cyber Defence Analysis for Blue & Purple Teams
Bluepurple Pulse: week ending April 3rd
Copy link
Facebook
Email
Notes
More
Share

Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading).

Operationally this week there were a couple of vulnerabilities in the Spring web framework (we ran live posts on the sub reddit) that distracted but otherwise the usual volume of criminal incident response cases. We also continue to research and work on investigations related to the Chinese intrusions mentioned a couple of weeks back. There was also some work around organised crime with good results around infrastructure discovery. Finally we got to see some North Korean Lazarus targeting used for an initial compromise via social media in a victim org.

In the high-level this week:

  • UK Cyber Security Breaches Survey 2022 - in the last 12 months, 39% of UK businesses identified a cyber attack (those that responded) - biggest highlight here is the ‘haves’ vs ‘have nots’ in relation to cyber incident response capabilities.

  • The UK’s National Cyber Security Technical Director put out advice on the

Keep reading with a 7-day free trial

Subscribe to Cyber Defence Analysis for Blue & Purple Teams to keep reading this post and get 7 days of free access to the full post archives.

Already a paid subscriber? Sign in
© 2025 Ollie Whitehouse from BinaryFirefly
Privacy ∙ Terms ∙ Collection notice
Start writingGet the app
Substack is the home for great culture

Share

Copy link
Facebook
Email
Notes
More