Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading). Not everything makes it in, but the best bits do.
Operationally this week the Chinese reporting is of note including the use of signed code in a supply chain attack against South East Asian targets.
In the high-level this week:
Exposed: the Chinese spy using LinkedIn to hunt UK secrets - believed to have initially focused on defence contractors, civil servants and targets in sensitive business areas. He has since switched to targeting think tanks and academics who are still considered vulnerable and do not always realise the value of the information they possess.
First discovery of 'spy chip' in Chinese weather equipment - The National Intelligence Service recently discovered a backdoor that allows wireless eavesdropping or hacking in the weather observation equipment of public institutions in Korea.
UK’s National Cyber Security Center has launched its research problem book along with a suppo…
Keep reading with a 7-day free trial
Subscribe to Cyber Defence Analysis for Blue & Purple Teams to keep reading this post and get 7 days of free access to the full post archives.