Cyber Defence Analysis for Blue & Purple Teams

Cyber Defence Analysis for Blue & Purple Teams

Share this post

Cyber Defence Analysis for Blue & Purple Teams
Cyber Defence Analysis for Blue & Purple Teams
Bluepurple Pulse: week ending October 31st ๐ŸŽƒ

Bluepurple Pulse: week ending October 31st ๐ŸŽƒ

Russia is going big and not going home...

Ollie's avatar
Ollie
Oct 29, 2021
โˆ™ Paid
2

Share this post

Cyber Defence Analysis for Blue & Purple Teams
Cyber Defence Analysis for Blue & Purple Teams
Bluepurple Pulse: week ending October 31st ๐ŸŽƒ
Share

Welcome to the weekly highlights and analysis of theย blueteamsecย subreddit.

First a thank you for the feedback - it has been terribly nice.

Operationally the focus has been around two things this week:

  • first, the compromise of the JavaScript package that is ua-parser-js (CISA advisory | technical details). To give some context this package has around 7.8 million downloads a week and was compromised by what looks like a criminal enterprise to deploy a password stealer and a crypto currency miner. Just goes to show you donโ€™t need state level capability to terrify the world just the right pinch point.

  • second was Russia and their continued aggressive supply chain pre-positioning to gain downstream customer access. It appears they have felt emboldened by their SolarWinds successes and later campaigns rather than needing to tone it down and behave like a responsible nation.

In the high-level:

  • Arrests of 12 in the Ukraine and Switzerland suspected of being involved in ransomware attacks against 1,โ€ฆ

Keep reading with a 7-day free trial

Subscribe to Cyber Defence Analysis for Blue & Purple Teams to keep reading this post and get 7 days of free access to the full post archives.

Already a paid subscriber? Sign in
ยฉ 2025 Ollie Whitehouse from BinaryFirefly
Privacy โˆ™ Terms โˆ™ Collection notice
Start writingGet the app
Substack is the home for great culture

Share