TechLetters ☕️ Hacking organisation to use its proximity to hack another via guest wi-fi. Migration to post-quantum cryptography is going to cost dearly.
Hello!
Please note that I’ve (finally…) set up an option to subscribe to a paid plan in this Techletters sub stack. I’m not yet sure how I am going to proceed, the weekly letter with curated content stays. I’ll see about additional analysis pieces which perhaps will be for subscribers-only (this is to be decided still). In the meantime, you if you wish to support me or my work, you may simply turn to a paid plan (or one-time issuance, called here ‘Founding plan name’, which may be a sum of your choice).
Security
Russian cyber operators hacked one organisation to break into systems of another. Via wi-fi that was assumed to be 'safe' due to needs of physical proximity to connect to the wi-fi. "the attacker had been connecting to Organization B’s Wi-Fi from another network that belonged to nearby organization (“Organization C”). The attacker had gone to great lengths to breach multiple organizations so they could ultimately reach the network of Organization A."
NIS2 implementation guidelines. How to be compliant with EU's cybersecurity law. here
Cost of migration to post-quantum cryptography. It will take $7.1 billion (an estimate with a high margin of error) to migrate priority U.S. federal agency systems to post-quantum cryptography between 2025 and 2035. There are no such estimates for the EU.
Other
OpenAI wants to get to 1 billion users fast. That would mean they want to enter the exclusive club of big digital platforms that can build any thing in IT/tech. That is, something Europe has failed to do. They recently hired a great cyber security expert (Dave Aitel). They seem to be focused on the goal, though it’s unclear whether they would count-in the users from other tech platforms that would use OpenAI systems (Microsoft, Apple) or would that bring comparable meaning for the significance of OpenAI as a Big Tech platform.
If you’d like to share: