After some consideration, I've decided to replace my consumer router at home with an OpnSense box I control, and use the consumer router as just an access point. The model I have doesn't seem to support OpenWrt but the default firmware supports access point mode complete with mesh functionality, otherwise I would have just installed OpenWrt on it. I still like the consumer router's mesh Wi-Fi capabilities, especially the wireless range extender, but don't trust it enough to let it be the actual root device separating my home network from the open internet. My reasoning is that by having it behind the OpnSense router, I can monitor and detect if it's exfiltrating any "analytics" data and block them. Worst case scenario I realize it's too noisy with the analytics and buy a proper business grade access point, or an M.2 Wi-Fi 6 card with some beefy antennas.

Now I'm trying to decide if I should use one of my old mini PCs or if I should get a brand new one with an up to date processor and microcode. The biggest reason I don't want the consumer router to be the root device anymore is because I don't know how well they patch their firmware against attackers constantly scanning the internet for vulnerable devices. I imagine an open source router OS with tons of eyes on it and used by actual professionals would inherently be more secure than whatever proprietary cost cut consumer firmware my current router has. I've already picked out a suitable mini PC I'm not using and the reason I even started down this rabbit hole is because I have it, but after thinking more about it, I'm worried that whatever security I gain might be undermined by the underlying hardware being old and outdated, especially since the processor is definitely pre Spectre/Meltdown and I doubt it's still getting microcode or firmware updates.

Again, the reason I ask is because the internet really wants me to think old disused computers are perfect for converting into routers, and I really don't want to buy a new computer if I don't have to. How important is the hardware for a router? Can I expect OpnSense to have sufficient security on pretty much any hardware or will a sufficiently old computer completely defeat the purpose of even switching away from the consumer router?

Alternatively, I also have another mini PC with a Ryzen 5 from 2020, and I can reposition it from its current job to router duty, though it would definitely be overkill and wasting the hardware capabilities. Would that be substantially more secure than an older Intel processor?

I also have a Raspberry Pi 4 I can put OpenWrt on, would that somehow be more secure than an x64 computer?

cross-posted from : https://lemmy.zip/post/55281885

EU ministers have agreed to launch negotiations on an agreement that would grant US border agencies direct access to personal data stored in EU member state databases, and give EU agencies similar access to US data. The US is demanding access to the databases of all states that are part of its Visa Waiver Programme, for “immigration screening and vetting activities.” This is part of a broader plan to massively increase the amount of sensitive data gathered on travellers.

Want to buy online without handing over all your personal details? This sketch shows how to use privacy tools so you do not share unnecessary details with every merchant you interact with. Think email aliases, VOIP numbers, PMBs, and masked cards.

NBTV is a project of the Ludlow Institute, a 501c3 non profit whose mission is to advance freedom through technology.

Ordering without revealing your name? With a PO box, virtual card, temporary email, etc.

So far, I'm familiar with T.H.O, Closed Network, and Side Of Burritos on YouTube.

Thank you for your recommendations

Okay, here we go: I woke up to a scam message on my WhatsApp. I just blocked the number, before starting to wonder how they got my number. And guess what I found out? They got a data breach and didn't tell their users a singular thing. And when asked about it, they tried to deny it.

(In Portuguese for whoever can/wants to read it): https://itshow.com.br/hacker-vende-dados-clientes-infraestrutura-aws-claro/

So, here I am to ask: What can I do to avoid getting my phone number "less breacheable"? Is there a specific company that supports brazillian phone numbering I should switch to now?

I have a 4K 120Hz TV that I have blocked from internet access on my router (because it is spyware with no way to turn off the built in microphone) and I have a desktop that supports 4K but I don't want to run my desktop into the ground streaming on it all the time.

I'd like one that isn't American I guess if that really matters (seems like it kind of does) but I noticed options are limited unless you want to spend $600 on a mini PC which I don't.

I'd like to spend like $200 max if possible for this if possible.

Mozilla Corporation has named its new CEO in replacing interim CEO Laura Chambers.

Anthony Enzor-DeMeo has been named the new CEO of Mozilla Corporation. Anthony Enzor-DeMeo was SVP of Firefox from 2004 to July 2005 and then from July until now was the GM of Firefox at Mozilla. He's written a public message today in his first day serving as the new chief executive for Mozilla.

Third: Firefox will grow from a browser into a broader ecosystem of trusted software. Firefox will remain our anchor. It will evolve into a modern AI browser and support a portfolio of new and trusted software additions."

Mozilla Firefox is not a privacy browser anymore

cross-posted from : https://lemmy.zip/post/55172156

The renewed contract will see Palantir continue to provide the DGSI agency with its "proprietary software platform, as well as the integration, support and assistance services that are necessary for... deployment and operational use," it said in a statement.

Hi. I'm using unofficial rom of the newest LineageOS for my Xiaomi Redmi Note 12S. I know it's not that secure to use unofficial rom as using official one because it might have malware but I think that I trust guy behind a rom and I even donated him for his hard work. Official firmware for Xiaomi is terrible and had a lot of spyware, I couldn't sleep with awareness of this.

For right now I'm planning to make my phone more private and secure. I heard that SIM Card is really big privacy issue and it can take control over device. I'm planning to don't using SIM Card on my main device and instead put in my old IPhone 7, then I will share internet from it or make calls if I will have to. I don't trust Apple too much but I think that their system is much better hardened than android when it comes to stuff like that. I don't planning to put any important stuff on IPhone, expect for proprietary software like banking apps etc. I think that ICloud account is huge privacy issue but I think that solution is better than what I have right now. So I'll have FOSS software only on my main Xiaomi Phone.

Then maybe I should root my LineageOS to harden it? It will give more control over my device and I could control it network traffic by firewall, add additional encryption if it's possible etc. What solutions can you recommend? Also I heard that opened bootloader is security issue but to be honest if I was able to do this by exploit avoiding doing this by manufacturer way I think that cops or hackers can do the same if they I will get my phone.

What can I do also for more privacy and security? I think that I should use work profile and private space which are great solutions. Also I can make some faraday cage which will also dull a sounds from environment, avoid holding sensitive data on my phone and have different accounts for messengers.

What do you think about this? How are you using your phone and what can you recommend for privacy?

According to complaints filed this Monday in Texas state courts, the TV makers can allegedly use ACR technology to capture screenshots of television displays every 500 milliseconds, monitor the users' viewing activity in real time, and send this information back to the companies' servers without the users' knowledge or consent.

I debated whether to post this as the privacy community already has excellent websites with https://www.privacyguides.org/ and https://www.privacytools.io/ (which is actually metric on the site).

However, I really tried to focus on newcomers who might be less technical. So I really hope that this can be a useful resource, whether it is for you starting this journey, or friends/family who could use the help.

I want to poison as much of my online data as I can, and I know that companies can get it anyway if I delete it, but if I were to spam sheer volume, it would cost more than it’s worth to try and sort it.

Dad uses windows and the main device I use is his laptop, and I understand that Microsoft scrapes everything they can. He’s going to reset his laptop soon, so all the junk is erased, but would it be possible to temporarily poison most data on there (from ms perspective) until it’s reset?

Would it be possible to do that on other things too, say corporate owned software, social media, etc?

cross-posted from: https://hexbear.net/post/7023519

cross-posted from: https://news.abolish.capital/post/13276

Award-winning Palestinian reporter Mohammed Mhawish, who left Gaza last year, joins us to discuss his new piece for New York magazine about Israel’s surveillance practices. It describes how Palestinians throughout the genocide in Gaza have been watched, tracked and often killed by Israeli forces who have access to their most intimate details, including phone and text records, social relations, drone footage, biometric data and artificial intelligence tools.

This all-encompassing surveillance system is “reshaping how people speak, how they’re moving, how they’re even thinking,” says Mhawish. “It manufactured behavior for people, so they shrink their lives to reduce risk, they rehearse what version of themselves feels safest to present, and that creates an enormous psychological burden.”

Mhawish also describes the terror of when his family’s house was bombed, killing two of his cousins and two neighbors in an attack he says was linked to Israeli surveillance of his reporting activities. “I was being watched and tracked,” he says.

Source

From Truthout via This RSS Feed.

Summary: My father, who has over 30 compromised accounts, tells me not to install Ironfox (aka one of the most secure browsers for Android) and F-Droid.

Background: I discovered that my father has a phone with LineageOS and asked if I could use it. He said yes because he no longer used it.

Today I started using it, saw what it was like, and it wasn't much different from Android.

I was having some trouble putting some songs on that phone, so I asked him for help.

He went to the Google Play Store and installed Files by Google after logging into my account.

My account has parental controls, so that phone had parental controls too.

I was supposed to use that phone maybe to use once or twice a month and see what a phone without Google services was like (which I couldn't disable now because it had parental controls).

So, after finding out what that phone had become, I tried to do a factory reset, but I couldn't.

Then (somehow) I managed to convince my parents to remove the parental controls, but my dad started saying, "Don't be surprised if your information ends up in strange places because you installed browsers from outside the Play Store (in this case, it was Cromite and Ironfox) and for running FTP servers (which I was only using to transfer some music I had on another site)."

Sorry for the long text 😅

I've heard that they ask for a Gmail account to sign up for the phone service.

I know that it's a T-Mobile mvno.

My question: Does everything people do on the internet using Google Fi mobile data get logged by Google?

Bandcamp, specifically. I already buy music there and i don't plan to stop unless the artists i like move somewhere else. Currently i have to be careful with my files and/or keep the download links for albums i buy if i want to make sure i never lose them (which i do). The main reason i might make an account is just so all those download links are in one place.

Given that i already use Bandcamp, do i stand to lose anything or give them anything extra by making an account instead of continuing to buy stuff without one? I skimmed their privacy policy and didn't see anything specific to people who do or don't have an account.