Welcome to the substack from the blueteamsec subreddit.

Busy week and we are back to the intended single edition - not everything from the subreddit would fit so curation happened.

The high-level news is the US Department of Justice’s creation of a three year ‘cyber fellows’ programme. Upskilling other professions in cyber has clear value - lets hope other countries/professions replicate.

A piece in the New York Times titled Spies for Hire: China’s New Breed of Hackers Blends Espionage and Entrepreneurship is an interesting short read when you factor in Chinese scale and the clear evolution. For context this is the Chinese capture-the-flag team which won at Defcon - makes other 6 person teams look somewhat underpowered.

Changing gears to the technical - observability and monitoring are strategies that make the operating environment far more hostile and costly for threat actors.

The bed fellows we have in this pursuit are Site Reliability Engineering (SRE) and Application Performance Man…