Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading).

Operationally this week we have seen an uptick in cases involving Black Basta and Bozon3 in clients and CISA issued an emergency directive related VMware Vulnerabilities (technical details covered later).

In the high-level this week:

• Pushing back on Beijing in the EU-U.S. Trade and Technology Council - hypothesis on Trade and Technology Council between the EU-U.S. being used to address risks emanating from China.

• Strengthening EU-wide cybersecurity and resilience – provisional agreement by the Council and the European Parliament - NIS2 gets ratified and the 21 month clock starts ticking - we should see some sector improvements and more war gaming around large scale incidents as a results (continent scale).

• UK Civil nuclear cyber security strategy 2022 - After the UK’s National Strategy (2021) and then the Government Strategy (2022) the UK released its Civil Nuclear - it is interesting to se…