Cyber Defence Analysis for Blue & Purple Teams

Cyber Defence Analysis for Blue & Purple Teams

Share this post

Cyber Defence Analysis for Blue & Purple Teams
Cyber Defence Analysis for Blue & Purple Teams
Bluepurple Pulse: week ending June 12th
Copy link
Facebook
Email
Notes
More

Bluepurple Pulse: week ending June 12th

Vulnerabilities get quick flipped..

Ollie's avatar
Ollie
Jun 10, 2022
∙ Paid
4

Share this post

Cyber Defence Analysis for Blue & Purple Teams
Cyber Defence Analysis for Blue & Purple Teams
Bluepurple Pulse: week ending June 12th
Copy link
Facebook
Email
Notes
More
Share

Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading).

Operationally this week it has been around Confluence exploitation (the subreddit ran one of our live threads collating open source). Interestingly this is the first time the Dutch government used some of their new powers to notify the owners of 15,000 vulnerable instances. Then there was the ongoing surge of interest in URI and default file handlers on Microsoft Windows (detailed reporting below). Then there was the disclosure that Click Studios had their code signing certificate for PasswordState misused because they shipped it in an installation bundle.

In the high-level this week:

  • Washington Post article - Opinion The U.S.-Russia conflict is heating up - in cyberspace - seems like grey zone is going to be the cause of much study.

    • Russia also retorted with Russia says West risks 'direct military clash' over cyber attacks

  • Royal Hansen from Google (an ex manager of mine several lifetimes a…

Keep reading with a 7-day free trial

Subscribe to Cyber Defence Analysis for Blue & Purple Teams to keep reading this post and get 7 days of free access to the full post archives.

Already a paid subscriber? Sign in
© 2025 Ollie Whitehouse from BinaryFirefly
Privacy ∙ Terms ∙ Collection notice
Start writingGet the app
Substack is the home for great culture

Share

Copy link
Facebook
Email
Notes
More