Bluepurple Pulse: week ending July 24th
Busy week of Russia/Ukraine reporting..
Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading).
Operationally this week reporting around two campaigns (one historic) using web browser zero-days should be of concern - technical details are below - including on one “North East Asian” threat actor. The other one originated from a commercial outfit so was available to potentially numerous customers.
In the high-level this week:
Announcement of White House National Cyber Workforce and Education Summit - US held a high-level summit on what they are going to do about their 700,000 open cybersecurity positions. Whilst here in the UK the government released its Mapping informal cyber security initiatives for young people aged 5-19.
China’s new spy army has invaded — and we’re not fighting back - warnings from the US’s FBI and UK’s MI5, includes a high-level analysis of cyber operations including these killer stats - FBI believes that China has about 30,000 military cyberspies and 150,000 info…