-
16 votes
-
Signal ignores proxy censorship vulnerability, bans researchers
11 votes -
A hardware mute button for Alexa
6 votes -
Privacy and digital ethics after the pandemic
3 votes -
Why you should delete social media: Say hello to a better life!
8 votes -
New Spotify patent involves monitoring users’ speech to recommend music
25 votes -
Firefox 85 cracks down on supercookies
18 votes -
The battle inside Signal - The fast-growing encrypted messaging app is developing features that would make it more vulnerable to abuse. Current and former employees are sounding the alarm.
31 votes -
ADT employee covertly accessed about 200 security cameras he installed to spy on people having sex
9 votes -
Windscribe: We're not paying for #1
9 votes -
To guarantee privacy, focus on the algorithms, not the data
6 votes -
Nearly 1.6 million Illinois Facebook users to get about $350 each in privacy settlement
7 votes -
TikTok makes major updates to privacy and features available to teenagers, including setting accounts to private by default, and disabling public comments and video-downloading
8 votes -
Email: How about doing it right?
In light of the seemingly increasing rate of data breaches and privacy violations in general, I've decided to take some steps further regarding my online presence. Among other things, I decided to...
In light of the seemingly increasing rate of data breaches and privacy violations in general, I've decided to take some steps further regarding my online presence.
Among other things, I decided to switch all my online accounts to custom domain email addresses, so I grabbed two domain names (with WhoisGuard enabled): one for use with stuff related to my real identity (think
@firstlast.com
), and the other for all else (think@randomword.com
). Then, I changed the email address of each one of my existing online accounts, taking advantage of the catch-all feature. To make things short, it goes like this:Accounts not related to my real identity:
tildes.net.187462@randomword.com
-> tildes.netreddit.com.178334@randomword.com
-> reddit.com- ...
Accounts related to my real identity:
amazon.com.113908@firstlast.com
-> amazon.combankofamerica.com.175512@firstlast.com
-> bankofamerica.com- ...
As you might have guessed, the 6 digits ending the local part of email addresses are meant to be randomly generated, in order to mitigate easy guesses by spammers due to catch-all (though I've also created a specific sieve filter to mark incoming emails with "unknown" recipient as spam).
Before you ask, I don't intend to start a discussion about threat modelling here. I just want—as anyone who is not a complete tech-illiterate—to have a reasonable weapon against spam caused by recurrent data breaches, so that if an email address is leaked, I can toss it and replace it with a new one without much effort.
Also, I value owning my email addresses, in the sense that if I decide to change email provider in the future, I won't have to change my addresses too as a consequence. For communicating with real humans (e.g., my doctor), I could use a non catch-all address like
first@firstlast.com
.I wonder what do you think of this approach... Is it overkill? Do you see any major concern from a privacy or security standpoint? Are you doing something similar and are happy with it? I would very much like to hear your experiences with email, especially about the approach you settled with.
18 votes -
Solid web sharing tools
9 votes -
WhatsApp gives users an ultimatum: Share data with Facebook or stop using the app
28 votes -
I'm thinking of getting a password manager. How does it work and any advice on transitioning to one?
The reason why is to make more accounts for reddit, YouTube (one for entertainment and Portuguese content each) news sites where signing up is an alternative to pass a paywall and other sites with...
The reason why is to make more accounts for reddit, YouTube (one for entertainment and Portuguese content each) news sites where signing up is an alternative to pass a paywall and other sites with comment sections.
Bad euphemism bro.Also some sense of "praxis" in order to gain privacy.Edit: And also getting anxious at the idea of remembering all my passwords, and putting them in a note in my old phone, which I am not bringing into my new phone and want to use this to delete.
According to these two articles, I can save my old passwords I had before and maybe even still make new ones after, and put them in a folder behind one true (master) password, which is the one you will truly care about, and they will be saved in a way in which the managing company won't know your password?
There's also figuring out which provider to use (and probably a similar post for alt-mail providers.) This is overwhelmingly for mobile (Android). No real space constraints for apps, only price, because I'm not working age.
27 votes -
Standard Notes completes penetration test and cryptography audit
14 votes -
FBI found Ghislaine Maxwell using mobile phone data
15 votes -
I spent a year deleting my address online, then it popped up on Bing
20 votes -
Is Firefox still a good (enough) browser for privacy?
Someone posted this on the privacy subreddit. I also ended up finding this and this after doing a bit of searching. As someone who isn’t in the CS/IT spheres (chemical engineering is my...
Someone posted this on the privacy subreddit. I also ended up finding this and this after doing a bit of searching. As someone who isn’t in the CS/IT spheres (chemical engineering is my background), Firefox has been my go-to browser for awhile, although I’m being made aware of the flaws of Firefox (most of which go over my head) and behavior of Mozilla. What can be done to fix this, especially considering that Firefox is the only FOSS browser with a significant user base?
22 votes -
Privacy is a collective concern
4 votes -
Tim Cook responds to Facebook on Twitter: "[..] Facebook can continue to track users across apps and websites as before, [..] we just require that they ask for your permission first."
@Tim Cook: We believe users should have the choice over the data that is being collected about them and how it's used. Facebook can continue to track users across apps and websites as before, App Tracking Transparency in iOS 14 will just require that they ask for your permission first. pic.twitter.com/UnnAONZ61I
13 votes -
Doxxing: Tips to protect yourself online and how to minimize harm
14 votes -
Privacy considerations in large language models
3 votes -
FTC issues orders to Amazon, TikTok, Discord, Facebook, Reddit, Snap, Twitter, WhatsApp, and YouTube seeking data about practices related to personal information, advertising, and user engagement
29 votes -
Privacy matters even if “you have nothing to hide”
12 votes -
Apple launches new App Store privacy labels so you can see how iOS apps use your data
6 votes -
Privacy is power
8 votes -
Brave Today - A privacy-preserving news reader integrated into the Brave browser and using their new "private CDN" to prevent tracking what users are reading
10 votes -
Activists sound alarm over African biometric ID projects
4 votes -
Google illegally spied on workers before firing them, US labor board alleges
18 votes -
Teddit: A privacy-friendly Reddit frontend similar to Invidious/Bibliogram/Nitter
18 votes -
Invid - iOS app for Invidious (sideloaded, no jailbreak necessary)
8 votes -
Visa wants to buy Plaid, and with it, transaction data for millions of people
12 votes -
YouTube Vanced: A privacy-friendly YouTube app for Android with ads and telemetry stripped out
38 votes -
Cover Your Tracks - A new EFF project designed to better uncover the tools and techniques of online trackers and test the efficacy of privacy add-ons (successor to Panopticlick)
19 votes -
Google should rotate their email DKIM keys periodically and publish past secret keys, in order to remove the unintended capability for authenticating years-old emails
16 votes -
Canada's GDPR moment: Why the Consumer Privacy Protection Act is Canada's biggest privacy overhaul in decades
10 votes -
Scientific publishers consider installing spyware in university libraries to protect copyrights
9 votes -
Does Apple really log every app you run? A technical look (The answer? No.)
13 votes -
Your computer isn't yours
41 votes -
Introducing "How to Fix the Internet," a new podcast mini-series from EFF
7 votes -
Privacy is a lonely bastion. Anyone know how to meet friends online these days?
At some point we recognized the signs of desperation. My wife and I had been running to the window like puppies for a glimpse of any unusual traffic. We caught ourselves bingeing on news articles,...
At some point we recognized the signs of desperation. My wife and I had been running to the window like puppies for a glimpse of any unusual traffic. We caught ourselves bingeing on news articles, as if saturating ourselves with reporting could somehow make us relevant to a world that saw less and less of us. We even resorted to calling my mother. After listening to 90 uninterrupted minutes of narration regarding her most recent routine doctor’s visit, we broke down. We resolved to end the isolation that was slowly killing us. Then the pandemic hit.
Our biggest stumbling block is figuring out how can we make friends online using only privacy-respecting platforms and software? We would like to see some friendly faces in real time without being simultaneously, you know, mined. Could anyone in the know share suggestions?
Edit: I'm grateful people are considering this. Thank you! I find it helps to ask people what their ideal solution would be, no matter how far-fetched. So, in response to that: My dream platform/venue/project would meld aspects of Lunchclub with The Human Library. I have stories to tell. I would love to video chat with fully-clothed individuals drawn from all over the world, chosen based on their stories and ambitions. It would work the way a good host does. You know, "Greta once had the job of getting sweat stains out of Bruce Springsteen's guitar strap. You two should swap cleaning stories, since you work at that drycleaner's, right, Butchie? Is it true it's a front for the mob? Oh, excuse me, I have to disinfect the pizza guy. I'll leave you to it." Maybe I should flesh this out more.
36 votes -
EU Draft Council Declaration Against Encryption [pdf]
10 votes -
US Government Continues Encryption War
7 votes -
Proposition 24 passes in California, pushing privacy rights to the forefront again
13 votes -
Amazon releases "Halo" wearable which analyzes emotions in the user's voice
14 votes -
Announcing Good Reports, a new review site with recommendations for "non-toxic" online tools available as alternatives to Big Tech services
18 votes -
Why the extortion of Vastaamo matters far beyond Finland – and how cyber pros are responding
4 votes