Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading).

Operationally this week you will see there is significant reporting in all guises. Significant amounts of North Korean (6 discrete reports) as well as numerous annual, bi-annual, quarterly and monthly aggregate reporting etc. Outside of that the usual operational tempo…

In the high-level this week:

• Cost of a Data Breach Report 2022 - as one of the subreddit readers Melesee noted “There was a specifically interesting data point in there on how companies with an IR team and an IR plan spent about 2.2 million less per breach on average.”

• US’s Transportation Security Administration revises and reissues cybersecurity requirements for pipeline owners and operators - segmentation, detection & response and patching are a focus to save you wading through it.

• US’s Office of the National Cyber Director Announces Camille Stewart Gloster as Deputy National Cyber Director for Technology and Ecosystem Secur…