Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@walkinglampshade" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>walkinglampshade</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@jrredho" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>jrredho</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@fj" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>fj</span></a></span> It's basic <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a>, really:</p><ul><li><span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>signalapp</span></a></span> has no <em>"<a href="https://infosec.space/tags/LegitimateInterest" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LegitimateInterest</span></a>"</em> to demand <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PII</span></a> like a <a href="https://infosec.space/tags/PhoneNumber" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PhoneNumber</span></a> and they use and abuse that to restrict functionality of their App (it doesn't matter that they merely claim <em>"comply with <a href="https://infosec.space/tags/sanctions" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sanctions</span></a>"</em> [their <a href="https://infosec.space/tags/MobileCoin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MobileCoin</span></a> <a href="https://infosec.space/tags/Shitcoin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Shitcoin</span></a> <a href="https://infosec.space/tags/Scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Scam</span></a> disqalifies them even more!] because they have the tech to distinguish and discriminate users)...</li></ul><p>Thus <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Signal</span></a> fails at protevting <a href="https://infosec.space/tags/Journalists" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Journalists</span></a> <em>and</em> theor sources because they do have that data and can be <a href="https://infosec.space/tags/subopena" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>subopena</span></a>'d for it if they don't already provide <a href="https://infosec.space/tags/BulkSurveillance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BulkSurveillance</span></a> & <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> <a href="https://infosec.space/tags/API" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>API</span></a>|s to comply with <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudAct</span></a>. (Or are you guys so naive and believe <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Mer__edith</span></a></span> will risk <a href="https://web.archive.org/web/20210606070919/twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener noreferrer" target="_blank">dying of old age in jail for non-paying users?</a>)</p><ul><li>This entire <em>"thread vector"</em> just doesn't exist with <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OMEMO</span></a> nor <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGP</span></a>/MIME! </li></ul><p>And if you believe <em>"this won't ne used/abused me because I'm from 'Murica!"</em> and point at <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ANØM</span></a> as an example, then you really ignored all tze <a href="https://infosec.space/tags/Cyberfacism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cyberfacism</span></a> since 9/11…</p>
Recent searches
No recent searches
Search options
Only available when logged in.
nerdculture.de is one of the many independent Mastodon servers you can use to participate in the fediverse.
Be excellent to each other, live humanism, no nazis, no hate speech. Not only for nerds, but the domain is somewhat cool. ;)
No bots in general. Languages: DE, EN, FR, NL, ES, IT
Administered by:
Server stats:
1.1Kactive users
nerdculture.de: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.8
#LawfulInterception
0 posts · 0 participants · 0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@kubikpixel" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>kubikpixel</span></a></span> yeah, for that money they can propably bribe half the security team at <a href="https://infosec.space/tags/Telegram" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Telegram</span></a> and integrate custom <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a> <a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Backdoors</span></a> or at least get the <a href="https://infosec.space/tags/API" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>API</span></a> keys they have for <a href="https://infosec.space/tags/UAE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UAE</span></a>'s <a href="https://infosec.space/tags/Telco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Telco</span></a> compliance to enable automatic <em>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>"</em>...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@Sturmflut" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Sturmflut</span></a></span> <span class="h-card" translate="no"><a href="https://mstdn.social/@fabiscafe" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>fabiscafe</span></a></span> <span class="h-card" translate="no"><a href="https://linuxmom.net/@vkc" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>vkc</span></a></span> </p><p>Or to put it more on the nose: You can be certain that i.e. <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Mer__edith</span></a></span> of <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>signalapp</span></a></span> will talk cuz she <a href="https://web.archive.org/web/20210908180219/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener noreferrer" target="_blank">can't <em>pull the 5th</em> on behalf of a user</a> and won't go to jail for any of them.</p><p>Whereas if i.e. <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>monocles</span></a></span> (or any <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>XMPP</span></a> provider) got sent an order (and just like <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Signal</span></a> they'd comply if done so duely through legal channels, which is way harder in <a href="https://infosec.space/tags/Germany" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Germany</span></a> than the <a href="https://infosec.space/tags/USA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>USA</span></a> cuz <a href="https://infosec.space/tags/GDPR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GDPR</span></a> & <a href="https://infosec.space/tags/BDSG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BDSG</span></a> & <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> being way stricter than <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudAct</span></a>), if users used <a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OMEMO</span></a> or <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGP</span></a>/MIME, they (or any other provider) literally can't decrypt even when held at gunpoint, because asymetric public-private cryptography was literally designed to not be breakable unless someone managed to MITM comms from the first contact <em>and</em> any verification.</p><ul><li>Which is unlikely to impossible unless one's able to literally isolate and manipulate all comms and means to communicate of at least one party, at which point they'd already have warrants to search everything and don't even bother to try MITMing comms but instead kick in doors.</li></ul><p>But that's a totally different subject of <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpSec</span></a> & <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a>, not <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ComSec</span></a> & <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITsec</span></a> on it's own...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@kubikpixel" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>kubikpixel</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@malwaretech" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>malwaretech</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@tomscott" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>tomscott</span></a></span> or to put it into perspective:</p><p>I worked at a telco, and whilst clients were above-average in terns of bahaviour, one does get a high single digit or low double-digit amount of LEA requests per day per x million customers.</p><p>Now imagine the average <a href="https://infosec.space/tags/VPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VPN</span></a> has similar utilization as a <a href="https://infosec.space/tags/CGNAT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CGNAT</span></a>, so easily they'll have <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> going on 24/7 because <a href="https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener noreferrer" target="_blank">logless VPNs are a lie</a> and besides circumventing <a href="https://infosec.space/tags/Geoblocking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Geoblocking</span></a> they don't do anything else...</p><ul><li>In fact I'd argue it'll be more privacy friendly to self-host a VPN on-demand with flexible hoster or just having a fixed IP at home, simply because those usually have a higher bar for getting surveillance approved.</li></ul><p>TLDR: Just get <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>torproject</span></a></span> <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>tails_live</span></a></span> <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>tails</span></a></span> / <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tails</span></a> and good.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://crispsandwi.ch/@mattround" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mattround</span></a></span> same with <em>any</em> <a href="https://infosec.space/tags/Services" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Services</span></a> and <a href="https://infosec.space/tags/Companies" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Companies</span></a> having an office in the <a href="https://infosec.space/tags/USA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>USA</span></a> or being registered there or having a U.S. owner.</p><ul><li><a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudAct</span></a> will come after <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>signalapp</span></a></span> and just like with <a href="https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener noreferrer" target="_blank"><em>"logless VPNs"</em></a> I guarantee you <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Mer__edith</span></a></span> personally will rather implement <a href="https://infosec.space/tags/Givware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Givware</span></a> <a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Backdoors</span></a> (if they weren't there "for <a href="https://infosec.space/tags/compliance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>compliance</span></a>" re: <em>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>" and "<a href="https://infosec.space/tags/Sanctions" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Sanctions</span></a>"</em> already), before spending a single day in jail!</li></ul><p>Migrate to <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OMEMO</span></a> <em>right now</em>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.world/@ginaintheburg" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>ginaintheburg</span></a></span> the sheer fact that <a href="https://infosec.space/tags/Chrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Chrome</span></a> has that <a href="https://infosec.space/tags/functionality" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>functionality</span></a> <em>is</em> <a href="https://infosec.space/tags/evidence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>evidence</span></a> for <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a>-Style <a href="https://infosec.space/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a> inside it.</p><ul><li>Whether that's just due to <em>"<a href="https://infosec.space/tags/GAFAM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GAFAM</span></a> doing <a href="https://infosec.space/tags/PRISM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PRISM</span></a> shite"</em> or <em>"<a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudAct</span></a> / <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> compliance"</em> is irrelevant for that assessment!</li></ul><p><em>SHITE LIKE THIS</em> is why I use <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/TorBrowser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TorBrowser</span></a> as my Default <a href="https://infosec.space/tags/Browser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Browser</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@AmbianceAsunder" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>AmbianceAsunder</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@cyberresearch" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>cyberresearch</span></a></span> <em>nodds in agreement</em></p><p>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>" <em>IS</em> the <a href="https://infosec.space/tags/IllicitActivity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IllicitActivity</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tech.lgbt/@deilann" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>deilann</span></a></span> +9001%</p><p>Use <em>actually secure comms</em> instead that are <a href="https://infosec.space/tags/decentralized" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>decentralized</span></a>, <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosting</span></a>-capable, auditable and provide actual <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfCustody</span></a> of all the <a href="https://infosec.space/tags/Keys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Keys</span></a>, so you can <em>enforce</em> your 5th Amendment!</p><ul><li><p>AFAICT <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OMEMO</span></a> it is, followered by <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGP</span></a>/MIME <a href="https://infosec.space/tags/eMails" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>eMails</span></a>. For both there are excellent clients like <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>monocles</span></a></span> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>monoclesChat</span></a> & <span class="h-card" translate="no"><a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>gajim</span></a></span> (XMPP+OMEMO) and <span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>delta</span></a></span> / <span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>thunderbird</span></a></span> (PGP/MIME)...</p></li><li><p>Use <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tor</span></a> and not <a href="https://infosec.space/tags/VPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VPN</span></a> as the latter one <a href="https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener noreferrer" target="_blank"><em>will snitch</em></a> since <a href="https://infosec.space/tags/loglessVPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>loglessVPN</span></a>|s are basically illegal (every juristiction I know demands <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> and <a href="https://infosec.space/tags/logging" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>logging</span></a> by <a href="https://infosec.space/tags/Telcos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Telcos</span></a>)!</p></li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@HackyScientress" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>HackyScientress</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.online/@zl2tod" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>zl2tod</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@fj" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>fj</span></a></span> </p><p><a href="https://infosec.space/@kkarhan/113292730929150231" rel="nofollow noopener noreferrer" target="_blank">Remember</a>:</p><ul><li><a href="https://infosec.space/tags/Wiretapping" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Wiretapping</span></a> <em>is</em> the illicit activity!</li></ul><p>And yes, AFAICT this applies to <em>all</em> <a href="https://infosec.space/tags/Telcos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Telcos</span></a> which have to provide <em>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>"</em> <a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Backdoors</span></a> if not put <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a> in their core systems.</p><ul><li>And yes, speaking as an insider, this can happen in.any juristiction where said <a href="https://infosec.space/tags/API" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>API</span></a>|s and systems are mandatory.</li></ul><p>So like <em>all</em> <a href="https://infosec.space/tags/EU" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EU</span></a> / <a href="https://infosec.space/tags/EFTA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EFTA</span></a> & <a href="https://infosec.space/tags/G20" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>G20</span></a> members!</p><ul><li>I've yet to hear of any nation that doesn't demand such tech to be installed capable of both targeted and/or <a href="https://infosec.space/tags/BulkSurveillance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BulkSurveillance</span></a>.</li></ul><p>-Just because laws demand a <a href="https://infosec.space/tags/judge" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>judge</span></a> to sign a <a href="https://infosec.space/tags/warrant" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>warrant</span></a> doesn't mean said judge is actually in control or able to prevent someone from using it without permission!</p>
Manuel 'HonkHase' Atug<p><a href="https://chaos.social/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> is a <a href="https://chaos.social/tags/backdoor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>backdoor</span></a>! 😠</p><p>China hacked Verizon, AT&T and Lumen using the <a href="https://chaos.social/tags/FBI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FBI</span></a>'s backdoor</p><p>"State-affiliated Chinese hackers penetrated AT&T, Verizon, Lumen and others; they entered their networks and spent months intercepting US traffic – from individuals, firms, government officials, etc – and they did it all without having to exploit any code vulnerabilities. Instead, they used the back door that the FBI requires every carrier to furnish"<br><a href="https://pluralistic.net/2024/10/07/foreseeable-outcomes/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">pluralistic.net/2024/10/07/for</span><span class="invisible">eseeable-outcomes/</span></a></p>
Manuel 'HonkHase' Atug<p>Wer Hintertüren für die <a href="https://chaos.social/tags/Strafverfolgungsbeh%C3%B6rden" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Strafverfolgungsbehörden</span></a> haben möchte, bekommt kompromittierte <a href="https://chaos.social/tags/Hintert%C3%BCren" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hintertüren</span></a>. 🔥</p><p>Fatal für Wirtschaft und Bürgerinnen. 😠</p><p>Digitale Souveränität kann so nicht erreicht werden. 😒</p><p><a href="https://chaos.social/tags/Geheimdienste" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Geheimdienste</span></a> sind die Pest! ☝️</p><p>Security: China-Hacker angeblich in <a href="https://chaos.social/tags/TK%C3%9C" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TKÜ</span></a>-Systeme der USA eingedrungen</p><p>"Es wäre ein schwerer Schlag für die US-Sicherheitsbehörden. Die <a href="https://chaos.social/tags/Abh%C3%B6rsysteme" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Abhörsysteme</span></a> mehrerer <a href="https://chaos.social/tags/Telekomprovider" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Telekomprovider</span></a> sollen gehackt worden sein."</p><p><a href="https://chaos.social/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> <a href="https://chaos.social/tags/Backdoor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Backdoor</span></a><br><a href="https://www.golem.de/news/security-china-hacker-angeblich-in-tkue-systeme-der-usa-eingedrungen-2410-189539.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">golem.de/news/security-china-h</span><span class="invisible">acker-angeblich-in-tkue-systeme-der-usa-eingedrungen-2410-189539.html</span></a></p>
FlohEinstein<p>"BÜPF/VÜPF<br>Kommentar zum Bundesgesetz und zur Verordnung über die Überwachung des Post- und Fernmeldeverkehrs" by Thomas Hansjakob</p><p><a href="https://chaos.social/tags/20books" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>20books</span></a><br><a href="https://chaos.social/tags/20books20days" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>20books20days</span></a><br><a href="https://chaos.social/tags/books" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>books</span></a><br><a href="https://chaos.social/tags/bookstodon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bookstodon</span></a><br><a href="https://chaos.social/tags/lawfulinterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>lawfulinterception</span></a> <a href="https://chaos.social/tags/Recht" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Recht</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://ruhr.social/@HolgerTDittmann" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>HolgerTDittmann</span></a></span> und ja, <a href="https://ruhr.social/@HolgerTDittmann/112959853208960776" rel="nofollow noopener noreferrer" target="_blank">das</a> können die bereits...</p><ul><li>Anonyme <a href="https://infosec.space/tags/SIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SIM</span></a>-Karten wurden ja <em>rückwirkend kriminalisiert</em> und der Rest geht per <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.tchncs.de/@Mr_Teatime" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Mr_Teatime</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.radio/@kc3yqi" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>kc3yqi</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>signalapp</span></a></span> I only agree with the latter sentence tho.</p><p>Besides <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>monocles</span></a></span> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>monoclesChat</span></a> & <span class="h-card" translate="no"><a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>gajim</span></a></span> / <a href="https://infosec.space/tags/Gajim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Gajim</span></a> for <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OMEMO</span></a> there's also <span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>delta</span></a></span> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>deltaChat</span></a> which does <a href="https://infosec.space/tags/IMAP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IMAP</span></a>+<a href="https://infosec.space/tags/SMTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SMTP</span></a> with <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGP</span></a>/MIME encryption.</p><p>Either way, I'd only.use systems that do use <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfCustody</span></a> of all the <a href="https://infosec.space/tags/Keys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Keys</span></a>, are truly <a href="https://infosec.space/tags/decentralized" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>decentralized</span></a> and use <a href="https://infosec.space/tags/OpenStandards" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenStandards</span></a> to that they don't have any feasibility to integrate <a href="https://infosec.space/tags/GovwareBackdoors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GovwareBackdoors</span></a> nor be forceable to clomply.with <a href="https://infosec.space/tags/cyberdacist" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cyberdacist</span></a> bs like <em>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>"</em> or <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudAct</span></a> at all and never collect, store, demand or require <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PII</span></a> like <a href="https://infosec.space/tags/PhoneNumbers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PhoneNumbers</span></a> and <a href="https://infosec.space/tags/billing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>billing</span></a> info.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://digitalcourage.social/@echo_pbreyer" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>echo_pbreyer</span></a></span> All <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a> - including anything labled <em>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>"</em> should be criminalized.</p><p>Because at the end all those <a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Backdoors</span></a> are inherently irredeemable and bad.</p><p>In the meantime, refuse to use anything where <a href="https://infosec.space/tags/vendors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vendors</span></a> and/or <a href="https://infosec.space/tags/providers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>providers</span></a> could be held in contempt or forced to integrate such <a href="https://infosec.space/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Malware</span></a> by switching to <a href="https://infosec.space/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> & <a href="https://infosec.space/tags/OpenStandars" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenStandars</span></a> like <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OMEMO</span></a> and <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGP</span></a>/MIME for <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>eMail</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://sueden.social/@Laberpferd" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Laberpferd</span></a></span> <span class="h-card" translate="no"><a href="https://hachyderm.io/@molly0xfff" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>molly0xfff</span></a></span> <span class="h-card" translate="no"><a href="https://m.benui.ca/@ben" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>ben</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@dangillmor" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>dangillmor</span></a></span> personally I do shun them not only because <a href="https://infosec.space/tags/PhoneNumbers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PhoneNumbers</span></a> are <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PII</span></a> they should not be allowed to request (just like I think no telco should ne allowed to request an ID for a prepaid SIM, where unlike prostpaid there is no <em>"legitimate interest"</em> in KYC'ing someone to prevent fraudsters from generating debt against someone else).</p><ul><li><p><a href="https://infosec.space/tags/Bridging" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bridging</span></a> would also undermine <a href="https://infosec.space/tags/decentralized" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>decentralized</span></a> and <a href="https://infosec.space/tags/federated" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>federated</span></a> solutions like <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>XMPP</span></a> in terms of <a href="https://infosec.space/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> and <a href="https://infosec.space/tags/DataProtection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DataProtection</span></a>!</p></li><li><p>But also just <em>won't happen</em> because it goes against their interest of having a strict <em>Vendor- & Provider-<a href="https://infosec.space/tags/LockIn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LockIn</span></a></em>...</p></li></ul><p>In fact, if <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Signal</span></a> / <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>signalapp</span></a></span> wasn't a <a href="https://infosec.space/tags/HoneyPot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HoneyPot</span></a> like <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ANØM</span></a> aka. <a href="https://infosec.space/tags/OperationIronside" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OperationIronside</span></a> aka. <a href="https://infosec.space/tags/OperationTr%C3%B8janShield" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OperationTrøjanShield</span></a> it would've been <a href="https://infosec.space/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacked</span></a> like <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EncroChat</span></a> and banned for refusing to integrate <a href="https://infosec.space/tags/GovwareBackdoors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GovwareBackdoors</span></a>, <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> and violating <a href="https://infosec.space/tags/Sanctions" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Sanctions</span></a> on top of <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudAct</span></a>-noncompliance and I assure you noone there gets paid to take that risk - just like with <em>"<a href="https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener noreferrer" target="_blank">logless VPNs</a>"</em>...</p><ul><li>So instead of pitting people into a <em>false sense of security</em> and weakening <a href="https://infosec.space/tags/decentralization" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>decentralization</span></a> via <a href="https://infosec.space/tags/bridges" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bridges</span></a> and <a href="https://infosec.space/tags/gateways" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>gateways</span></a>, we should rather tech proper <a href="https://infosec.space/tags/TechLiteracy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechLiteracy</span></a>.</li></ul>
Manuel 'HonkHase' Atug<p>"Microsoft explained that the problem is more legal than technical (except on encryption). As an illustration, Microsoft referred to the technical work already conducted to develop <a href="https://chaos.social/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a> in <a href="https://chaos.social/tags/realtime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>realtime</span></a> capabilities of for <a href="https://chaos.social/tags/Skype" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Skype</span></a> calls or <a href="https://chaos.social/tags/Teams" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Teams</span></a> services."<br><a href="https://home-affairs.ec.europa.eu/document/download/1bb75432-ba0d-45f7-a068-d54a5574f5c0_en?filename=HLG%20meeting%20on%2010%20April%202024-request%20for%20input_en.pdf" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">home-affairs.ec.europa.eu/docu</span><span class="invisible">ment/download/1bb75432-ba0d-45f7-a068-d54a5574f5c0_en?filename=HLG%20meeting%20on%2010%20April%202024-request%20for%20input_en.pdf</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@glynmoody" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>glynmoody</span></a></span> +9001%</p><p>I want this kind of <a href="https://infosec.space/tags/Cyberfacism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cyberfacism</span></a> to be criminalized as the <a href="https://infosec.space/tags/CrimeAgainstHumanity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CrimeAgainstHumanity</span></a> it is, and any organization that demands <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>, or <a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Backdoors</span></a> or <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a> to be banned as the <a href="https://infosec.space/tags/terrorists" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>terrorists</span></a> they are!</p><p>Because <a href="https://infosec.space/tags/Privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Privacy</span></a> is an inalienable and non-negotiable <a href="https://infosec.space/tags/HumanRight" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HumanRight</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@jsrailton" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>jsrailton</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@maldr0id" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>maldr0id</span></a></span> IMHO such <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a> and any <em>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>"</em> should be illegal with no exceptions!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.gamedev.place/@YoSoyFreeman" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>YoSoyFreeman</span></a></span> A <a href="https://infosec.space/tags/SIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SIM</span></a> and <a href="https://infosec.space/tags/GSM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GSM</span></a> baseband is to be considered <em><a href="https://infosec.space/tags/hostile" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hostile</span></a></em> at all times, and even if people were to tunnel everything via <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tor</span></a> that won't avoid the <a href="https://infosec.space/tags/tracking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tracking</span></a> and <em>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LawfulInterception</span></a>"</em> aspect.</p><p>Ideally we'd have stuff like the <a href="https://infosec.space/tags/PocketCrypto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PocketCrypto</span></a><a href="https://github.com/KBtechnologies/PocketCrypto" rel="nofollow noopener noreferrer" target="_blank">1</a> & <a href="https://infosec.space/tags/Cryptofon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cryptofon</span></a> <a href="https://github.com/KBtechnologies/Cryptofon" rel="nofollow noopener noreferrer" target="_blank">2</a> ready to <a href="https://infosec.space/tags/DIY" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DIY</span></a>, but sadly I've to still work on getting the necessary <a href="https://infosec.space/tags/Firmware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Firmware</span></a> done based upon <span class="h-card" translate="no"><a href="https://infosec.space/@OS1337" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>OS1337</span></a></span> / <a href="https://infosec.space/tags/OS1337" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OS1337</span></a> <a href="https://github.com/OS-1337/OS1337" rel="nofollow noopener noreferrer" target="_blank">3</a>.</p><p>Granted, the best thing one can do is to bounce public WiFis with anonymized MAC addresses...</p><p>That works okay with Tor Bridges, but won't work in like <a href="https://infosec.space/tags/NorthKorea" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NorthKorea</span></a> where you only have a national intranet and the only options you have to get any <a href="https://infosec.space/tags/Internet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Internet</span></a> access is through smuggled SIMs at the Chinese and Russian Border...</p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload