Welcome to the weekly highlights and analysis of the blueteamsec subreddit (and my wider reading). Not everything makes it in, but the best bits do.

Operationally this week spill over from the MSI BIOS and other leaked code signing keys continues. In addition the previous Microsoft Outlook password hash leakage patch was found wanting and re-exploited - requiring another. Outside of that the new normal continues - which is a lot!

In the high-level this week:

• Conversation with Sami Khoury: How Canada has built a single unified cybersecurity center for its citizens - The Canadian government has been increasing its investment in cybersecurity, allocating an additional 850 million dollars to the digital safety budget last year

• Why more transparency around cyber attacks is a good thing for everyone - from the UK’s National Cyber Security Centre - we are increasingly concerned about what happens behind the scenes of the attacks we don’t hear about, particularly the ransomware ones.

• Risk managers…