Think you're safe on Wi-Fi just because you're using WPA2? Think again.
#cososec

https://null-byte.wonderhowto.com/how-to/spy-traffic-from-smartphone-with-wireshark-0198549/

Attention, Smart TV owners:

Here are some ways to reclaim a bit of control over your TV phoning home with your personal data.
https://chad.ch/smart-tvs-privacy/

#cososec

Uh... #cososec

https://twitter.com/ppentestlabs/status/1202906268991664128?s=09

New Linux Bug Lets Attackers Hijack Encrypted VPN Connections

#cososec

https://thehackernews.com/2019/12/linux-vpn-hacking.html?m=1#click=https://t.co/L7YLTj1Tyj

Let's talk encrypted email.

I've had ProtonMail for quite a while. It works well. The free tier only includes 500 MB, so you have to watch your mailbox size.

I recently set up an account with https://dismail.de , a one-man operation. I highly recommend it.

PROS:

It scores a higher than Proton in a few categories.
https://dismail.de/serverlist.html

Dismail gives you 2 GB. There is no paid tier, but Stefan accepts donations.

You can use your email client of choice.

1/2

#cososec

New RCS technology exposes most mobile users to hacking – Security Research Labs
https://srlabs.de/bites/rcs-hacking/

#cososec

SMS Replacement is Exposing Users to Text, Call Interception Thanks to Sloppy Telecos - VICE
https://www.vice.com/en_us/article/j5ywxb/rcs-rich-communications-services-text-call-interception

@Kalypto was warning us about the inherent risks in RCS weeks ago, but it sounds as though carriers have managed to make it even worse.

#cososec

Apparently, today is Computer Security Day.

There is lots of basic good advice going around, but be careful of blogs with specific product recommendations. Lots of tech bloggers get paid to promote certain products. If you see a list of "The 10 Best..." it may likely be BS.

Trust the expertise of the infosec experts here, if you want to know what's legit and what's not. I do.

#cososec

This is a great collection of opt-out links and phone numbers for various companies.

#cososec

https://simpleoptout.com/

ICYMI, Wire has recently taken a few steps backward in user privacy.
#cososec

https://blog.privacytools.io/delisting-wire/

This looks really cool. #cososec

Free, Open-source Anonymous Email Forwarding - AnonAddy
https://anonaddy.com/

The Trouble with VPN and Privacy Review Sites
#cososec

https://blog.privacytools.io/the-trouble-with-vpn-and-privacy-reviews/

Keybase, we've got a privacy problem

#cososec

https://www.whiskey-tango.org/2019/11/keybase-weve-got-privacy-problem.html

Holy hell. #cososec

Personal And Social Information Of 1.2 Billion People Discovered In Massive Data Leak

A total count of unique people across all data sets reached more than 1.2 billion people, making this one of the largest data leaks from a single source organization in history. The leaked data contained names, email addresses, phone numbers, LinkedIN and Facebook profile information.

Hey there, #cososec:

Anyone have experience with https://dismail.de/ ?

This site rates how egregiously smart home devices are threatening your privacy.

https://internetofshit.net/home

#cososec

Anyone else still blocking new random Keybase followers every day?

This Lumens coin thing seems to have encouraged all kinds of random follows.

I don't trust anyone there who I don't know from elsewhere.

You might want to think about purging your followers.

#cososec

👋 Welcome, new CoSoNauts!

Time to crack those eggs: Upload a profile pic, fill out your profile and say hello. Follow @CoSoTips for help, or just ask.

Some tags to follow:
Infosec discussion at #cososec.
Music lovers and musicians: check out #cosomusic and #musictheory.
If you love good drinks, follow #caffeineclub #winetime #beerme #spirited and #mixmeup.
Animal lovers: #petsofcoso, #dogsofcoso, #catsofcoso.

We're glad you made it here. Enjoy the awesome, REAL conversation!

This seems bad for Wire users.
#cososec

https://forum.privacytools.io/t/wire-swiss-gmbh-is-now-owned-by-a-usa-holding-company/1932

Federal Court Rules Suspicionless Searches of Travelers’ Phones and Laptops Unconstitutional

Government Must Have Reasonable Suspicion of Digital Contraband Before Searching People’s Electronic Devices at the U.S. Border

#cososec

https://www.eff.org/press/releases/federal-court-rules-suspicionless-searches-travelers-phones-and-laptops