Cyber Defence Analysis for Blue & Purple Teams

Cyber Defence Analysis for Blue & Purple Teams

Share this post

Cyber Defence Analysis for Blue & Purple Teams
Cyber Defence Analysis for Blue & Purple Teams
Bluepurple Pulse: week ending April 17th 🐰🥚🐤
Copy link
Facebook
Email
Notes
More

Bluepurple Pulse: week ending April 17th 🐰🥚🐤

Happy Easter

Ollie's avatar
Ollie
Apr 16, 2022
∙ Paid
3

Share this post

Cyber Defence Analysis for Blue & Purple Teams
Cyber Defence Analysis for Blue & Purple Teams
Bluepurple Pulse: week ending April 17th 🐰🥚🐤
Copy link
Facebook
Email
Notes
More
Share

Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading).

Operationally this week we continued to work with a number of CERTs globally to mop up the Chinese intrusions. It is interesting to see the variances in capability around being able to take IoCs and victims and then follow-up, confirm intrusion and remediate. Beyond that the headlines have driven the tactical responses (ICS intrusions and North Korea etc.) .

In the high-level this week:

  • US launched its full arsenal of legal tools against North Korea in response to the $620 million dollar Ronin Bridge crypto asset heist.

    • US Dept of Treasury added Lazarus to its sanctions list - interestingly they include the ETH address to try and stem crypto flows through US exchanges or anyone else supporting USD.

    • FBI put out a statement in a ‘we are watching you’ manner.

    • Then the analysis of the crypto currency movement in an article titled North Korea’s Lazarus Group Identified as Exploiters Behind $540 M…

Keep reading with a 7-day free trial

Subscribe to Cyber Defence Analysis for Blue & Purple Teams to keep reading this post and get 7 days of free access to the full post archives.

Already a paid subscriber? Sign in
© 2025 Ollie Whitehouse from BinaryFirefly
Privacy ∙ Terms ∙ Collection notice
Start writingGet the app
Substack is the home for great culture

Share

Copy link
Facebook
Email
Notes
More