Cyber Defence News for Blue & Purple Teams

NCC Group
Summarised cyber defence technical content to help operational blue and purple teams be informed and protect their estates.
Created 14 Aug 2021
11
Posts
16
Likes
1
Comment
1
Mention
  • Bluepurple Pulse: week ending October 3rd
    02 Oct 2021 • 12 min read • 1 0
    Welcome to the substack highlights from the blueteamsec subreddit. Operationally nothing is standout this week other than having too much fun surging against a commercial red team to develop understan...
  • Bluepurple Pulse: week ending September 26th
    25 Sep 2021 • 10 min read • 1 0
    Welcome to the substack highlights from the blueteamsec subreddit. Operationally a big focus was trying to work out who had been impacted by Autodiscover which allowed Amit Serper to between April 16t...
  • Bluepurple Pulse: week ending September 19th
    17 Sep 2021 • 10 min read • 1 0
    Welcome to the substack highlights from the blueteamsec subreddit. Operationally the week has been the long tale of CVE-2021-40444 (we have patches, exploits and mass exploitation) and then CVE-2021-3...
  • Bluepurple Pulse: week ending September 12th
    11 Sep 2021 • 10 min read • 2 0
    Welcome to the substack from the blueteamsec subreddit. Not everything makes it in, just the highlights for you discerning readers. Operationally the week has all been about CVE-2021-40444, a Microsof...
  • Bluepurple Pulse: week ending September 5th
    04 Sep 2021 • 12 min read • 2 0
    Welcome to the substack from the blueteamsec subreddit. Busy week and we are back to the intended single edition - not everything from the subreddit would fit so curation happened. The high-level news...
  • Bluepurple Pulse: week ending August 29th
    29 Aug 2021 • 12 min read • 2 0
    Welcome to the substack from the blueteamsec subreddit. This week saw an OpEd I wrote on Darkreading around commercial spyware accountability (don’t worry, not advocating it). We do need to hold corpo...
  • Bluepurple - Mid-week for week ending August 29th
    25 Aug 2021 • 11 min read • 1 0
    Welcome to the substack from the blueteamsec subreddit. Busy week thus far on the subreddit causing curation consternation. As a result I’ve gone for another mid-week release due to a growing pipeline...
  • Bluepurple - Week ending August 22nd
    22 Aug 2021 • 7 min read • 1 0
    Welcome to the substack from the blueteamsec subreddit. This week operationally it is all about the continued carnage that is the mass Microsoft Exchange exploitation via ProxyShell. We saw similar in...
  • Bluepurple - Mid-week for week ending August 22nd
    18 Aug 2021 • 9 min read • 1 0
    Welcome to the substack from the blueteamsec subreddit. What a few days, firstly there are now over 200 of you - so hello! Secondly the subreddit has been busy which means a broad set of topics to ana...
  • Bluepurple - Week ending August 15th
    15 Aug 2021 • 7 min read • 2 1
    Firstly welcome to the inaugural substack from the blueteamsec subreddit. So why is this happening? In short it is another way to provide value to the community. Some people live on Reddit others floa...
  • View More on Substack »