Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://nrw.social/@Boerps" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Boerps</span></a></span> Ich bestreite das Problem nicht - im Gegenteil!</p><ul><li>Nur bin ich <em>weder beauftragt noch befugt</em> die <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> & <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> der <a href="https://infosec.space/tags/Polizei" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Polizei</span></a> zu fixen...</li></ul><p><a href="https://infosec.space/@kkarhan/115027630665380411" translate="no" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.space/@kkarhan/1150276</span><span class="invisible">30665380411</span></a></p>
photog.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for your photos and banter. Photog first is our motto
Please refer to the site rules before posting.
Administered by:
Server stats:
244active users
photog.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.3
#comsec
2 posts · 1 participant · 0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://nrw.social/@Boerps" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Boerps</span></a></span> doch...</p><p><a href="https://infosec.space/@kkarhan/115027601864822614" translate="no" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.space/@kkarhan/1150276</span><span class="invisible">01864822614</span></a></p><p>Und so ärgerlich es auch ist, so sehe ich die <a href="https://infosec.space/tags/Korruption" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Korruption</span></a> eher bei <a href="https://infosec.space/tags/Strafvereitlern" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Strafvereitlern</span></a> in Ämtern, die bei <a href="https://infosec.space/tags/CumEx" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CumEx</span></a> & <a href="https://infosec.space/tags/CumCum" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CumCum</span></a> bewusst <a href="https://infosec.space/tags/Sabotage" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Sabotage</span></a> betreiben.</p><ul><li>Soviel <a href="https://infosec.space/tags/Tabaksteuer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tabaksteuer</span></a> können die garnicht hinterziehen!</li></ul><p>Dass die <a href="https://infosec.space/tags/Polizei" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Polizei</span></a> miserable <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> hat ist nix neues...</p><ul><li>Dank <a href="https://infosec.space/tags/TETRA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TETRA</span></a> ist es umso einfacher, passiv Einsatzkräfte und <a href="https://infosec.space/tags/Fahrzeuge" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fahrzeuge</span></a> zu identifizieren!</li></ul><p>Dafür braucht's nichtmals groß Technikkenntnisse... Nen Laptop mit SDR# und nem RTL-SDR - Stick auf die Uplink-Frequenzen von TETRA gestellt und schwupps ist nen <a href="https://infosec.space/tags/CopDetector" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CopDetector</span></a> fertig!</p><ul><li>Und weil's nen seperates Funknetz ist und kein <a href="https://infosec.space/tags/GSM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GSM</span></a> gibt's weniger Traffic und weniger Nutzer*innen!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.ml/@Xeniax" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Xeniax</span></a></span> All attacks on <a href="https://infosec.space/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> are illicit and illegitimate per definition, and merely appealing at authorities is not gonna work.</p><ul><li>Instead <em>encrypt harder</em> by using <em>real <a href="https://infosec.space/tags/E2EE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>E2EE</span></a></em> with <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> [i.e. <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME & <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a>), <a href="https://infosec.space/tags/decentralize" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>decentralize</span></a> and use <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> to <em>normalize</em> proper <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>! </li></ul><p>Anything else is <em>undue leniency</em> in the face of <a href="https://infosec.space/tags/Cyberfacism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cyberfacism</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tweesecake.social/@adisonverlice" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>adisonverlice</span></a></span> good question.</p><p>Since you seem deep into the <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> / <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> / <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> / <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> weeds I can recommend <a href="https://infosec.exchange" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">infosec.exchange</span><span class="invisible"></span></a> (if you want your public posts be seen & indexable by <a href="https://infosec.space/tags/threads" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>threads</span></a> & others) or also <a href="https://infosec.space" translate="no" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="">infosec.space</span><span class="invisible"></span></a> if you don't want that.</p><p>I do want add way more instances into my <a href="https://github.com/greyhat-academy/lists.d/blob/main/activitypub.servers.list.tsv" rel="nofollow noopener" target="_blank">recommendation list</a> but I didn't have time to.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://goingdark.social/@watchfulcitizen" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>watchfulcitizen</span></a></span> <span class="h-card" translate="no"><a href="https://tweesecake.social/@adisonverlice" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>adisonverlice</span></a></span> The problem is not <span class="h-card" translate="no"><a href="https://mastodon.online/@mullvadnet" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mullvadnet</span></a></span> but <a href="https://infosec.space/tags/VPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VPN</span></a>|s in general.</p><ul><li>Because <a href="https://infosec.space/tags/VPNs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VPNs</span></a> are dishonestly marketed at <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> when in fact they <a href="https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">ain't gonna save their ass.</a></li></ul><p>People need to put realistic expectations into what <a href="https://infosec.space/tags/MullvadVPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MullvadVPN</span></a> and others like <a href="https://infosec.space/tags/Mullvad" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mullvad</span></a> can and can't do, both technically and legally.</p><ul><li>You'd have a better chance with a <span class="h-card" translate="no"><a href="https://social.freifunk.net/@freifunk" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>freifunk</span></a></span> / <a href="https://infosec.space/tags/freifunk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freifunk</span></a> <a href="https://infosec.space/tags/WiFi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WiFi</span></a> or even better <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a>, but that's because things ain't that easy as advertised:</li></ul><p><a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>, <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> & <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> need to be interweaved!</p><ul><li>Granted Mullvad, like <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span>, go out of their way to minimze the amounts of data they have, so there's not much they can hand over even when forced under duress to comply with a <em>duely issued warrant</em>!</li></ul><p>Any decent <span class="h-card" translate="no"><a href="https://chaos.social/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty@chaos.social</span></a></span> / <span class="h-card" translate="no"><a href="https://mastodon.earth/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty@mastodon.earth</span></a></span> will advise you further...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tiggi.es/@thygrrr" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thygrrr</span></a></span> <span class="h-card" translate="no"><a href="https://social.treehouse.systems/@PallasRiot" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>PallasRiot</span></a></span> Personally, I'd not count on <span class="h-card" translate="no"><a href="https://mastodon.online/@mullvadnet" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mullvadnet</span></a></span> being a <em>"<a href="https://infosec.space/tags/LoglessVPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LoglessVPN</span></a>"</em> because if they were unable and/or unwilling to comply they would've been shut down due to the statistical inevitability of being swarmed by bad actors!</p><ul><li><a href="https://infosec.space/tags/TLDR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TLDR</span></a>: <a href="https://infosec.space/@kkarhan/114953865903981711" rel="nofollow noopener" target="_blank">Don't rely on anyone to cover your ass!</a> and exercise proper security <a href="https://infosec.space/tags/Nachash" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Nachash</span></a> <a href="https://pastebin.com/GrV3uYh5" rel="nofollow noopener" target="_blank">did</a>.</li></ul><p>This is far more complex than just <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>, but <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> & <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> come together and need to be weaved into a continuous, multi-layered pattern...</p><ul><li>Your mileage may vary depending on your needs, demands, threats, budget, capabilities and options.</li></ul><p><em>"JuSt UsE a VpN!"</em> is dangerous <a href="https://infosec.space/tags/disinfo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>disinfo</span></a> towards <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tweesecake.social/@adisonverlice" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>adisonverlice</span></a></span> worse even is that they didn't just use <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> but a <em>shady <a href="https://infosec.space/tags/3rd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>3rd</span></a> party client</em> so <em>in this case it's NOT <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> et. al. who are to blame</em>, but the folks that <em>REFUSED TO ENFORCE <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> & <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a></em>!</p><ul><li>Cuz there's a reason they got hired and paid to say <em>"no"</em> and why there's a full suite of dedicaded, applianced hardware for any sensituve comms!</li></ul><p>But then again <a href="https://infosec.space/tags/AgentKrasnov" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AgentKrasnov</span></a> is an <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> & <a href="https://infosec.space/tags/NatSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NatSec</span></a> nightmare!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@reverseics" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>reverseics</span></a></span> Just do it like <a href="https://infosec.space/tags/Google" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Google</span></a> <a href="https://infosec.space/tags/ProjectZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProjectZero</span></a> and tell them straight up in their face:</p><p><a href="https://www.youtube.com/watch?v=F_XCDu6GQt4" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">youtube.com/watch?v=F_XCDu6GQt4</span><span class="invisible"></span></a></p><blockquote><p>I was nice once, now I won't! IDGAF what you need to do to fix it. Details will be public in 90 days. Go fuck yourselves! </p></blockquote><p>And basically prepare everything to be ready in precisely to the second 90 days from the moment mail was sent to them.</p><ul><li>Cuz only with <a href="https://infosec.space/tags/consequences" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>consequences</span></a> will we get <a href="https://infosec.space/tags/accountability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>accountability</span></a>! </li></ul><p><a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a></p>
Kevin Karhan :verified:<p><a href="https://www.youtube.com/watch?v=3wlNemFwbwE" rel="nofollow noopener" target="_blank">This</a> is nothing new what <span class="h-card" translate="no"><a href="https://mastodon.social/@doingfedtime" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>doingfedtime</span></a></span> shows here.</p><ul><li>Certainly, I am displeased about the way <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> does downgrade things, but then again the default config of <a href="https://infosec.space/tags/TorBrowser" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TorBrowser</span></a> & <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> / <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> was meant to let people circumvent censorship, not <a href="https://pastebin.com/GrV3uYh5" rel="nofollow noopener" target="_blank">run</a> DNMs!</li></ul><p>Obviously they need to fix that and work towards <em>better security</em>, including to enshure <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> <a href="https://infosec.space/tags/Browser" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Browser</span></a> doesn't reset it's <a href="https://infosec.space/tags/SecuritySettings" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecuritySettings</span></a> on reboot, because if people <em>made the concious decision</em> to <em>block all <a href="https://infosec.space/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>JavaScript</span></a></em> then they that should be at least respected! </p><p><a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a></p>
Kevin Karhan :verified:<p>In jedem Falle sollte mensch <em>niemals und unter keinen Umständen irgendwem</em> seine [echten] Personalien Mitteilen oder gar nen <a href="https://www.youtube.com/watch?v=2aaRasTm058" rel="nofollow noopener" target="_blank">Perso-Foto bzw. Selfie</a> schicken!</p><ul><li>Es gibt sehr, sehr wenige die wirklich sowas verlangen dürfen [bspw. <a href="https://infosec.space/tags/Autovermietung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Autovermietung</span></a>] oder gar müssen [siehe <a href="https://infosec.space/tags/Banken" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Banken</span></a>] aber die werden i.d.R. einen persönlich hereinbestellen [bspw.: Autovermietung machts bei Schlüsselübergabe] oder seriöse Lösungen [bspw.: <a href="https://infosec.space/tags/POSTIDENT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>POSTIDENT</span></a>] nutzen. Auf jeden Fall wird kein Händler³ im Internet sowas verlangen!</li></ul><p>Alles andere führt nur zu <a href="https://infosec.space/tags/Identit%C3%A4tsdiebstahl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Identitätsdiebstahl</span></a> und <a href="https://infosec.space/tags/Identit%C3%A4tsmissbrauch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Identitätsmissbrauch</span></a> wo entsprechende Opfer dann z.T. als Beschuldigte*r in tausenden Fällen dann gearscht ist...</p><ul><li>Also schützt euch und andere vor <a href="https://infosec.space/tags/Doxxing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Doxxing</span></a> und <a href="https://infosec.space/tags/SelfDoxxing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfDoxxing</span></a>! </li></ul><p>³[Selbst nicht beim legalen Waffenkauf! Da wird stattdessen ne Kopie der WBK samt Nummer verlangt weil der Kauf wird quasi in Echtzeit gemeldet und ohne passenden Voreintrag im System ist auch kein Erwerb möglich!...]</p><p><a href="https://infosec.space/tags/KYCisTheIllicitActivity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KYCisTheIllicitActivity</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> <a href="https://infosec.space/tags/KYC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KYC</span></a> <a href="https://infosec.space/tags/IllicitActivity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IllicitActivity</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.tchncs.de/@simsus" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>simsus</span></a></span> * DUN DUN DUUUN!*</p><p>Wofür wurde nochmal <a href="https://infosec.space/tags/TETRA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TETRA</span></a> eingeführt?</p><p>Wenn Leute <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> & <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> vergeigen ist <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> für'n Arsch!</p><p><a href="https://infosec.space/tags/DEpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DEpol</span></a> <a href="https://infosec.space/tags/NatSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NatSec</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://universeodon.com/@cryptadamist" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptadamist</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@panigrc" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>panigrc</span></a></span> <span class="h-card" translate="no"><a href="https://pounced-on.me/@finalstaticfox" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>finalstaticfox</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@dansup" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dansup</span></a></span> </p><p>Obviously that's another evidence of why <em><a href="https://infosec.space/tags/KYC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KYC</span></a> IS THE ILLICIT ACTIVITY!</em>... </p><ul><li><p><a href="https://universeodon.com/@cryptadamist/114825088355068446" rel="nofollow noopener" target="_blank">That problem</a> doesn't exist with <a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monero</span></a> as one cannot determine <a href="https://infosec.space/tags/transactions" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>transactions</span></a>, <a href="https://infosec.space/tags/balances" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>balances</span></a> or link wallets by observing the <a href="https://infosec.space/tags/blockchain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>blockchain</span></a>. Unlike with all those Shitcoins like <a href="https://infosec.space/tags/Bitcoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bitcoin</span></a> or <a href="https://infosec.space/tags/Ethereum" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ethereum</span></a>! </p></li><li><p>So even if I had a Monero Wallet and even if you knew the wallet address, you cannot see what's on it or what transactions go in and out. </p></li><li><p>It's even more secure than <a href="https://infosec.space/tags/SEPA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SEPA</span></a> because thanks to <a href="https://infosec.space/tags/SWIFT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SWIFT</span></a> & <a href="https://infosec.space/tags/FATCA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FATCA</span></a> the <a href="https://infosec.space/tags/IRS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IRS</span></a> and <a href="https://infosec.space/tags/TreasuryDept" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TreasuryDept</span></a>. have bulk access to these systems and can basically see account balances in real time (when it comes to <a href="https://infosec.space/tags/US" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>US</span></a> citizens! The rest they can approximate with bulk access to payment providers and intelligence).</p></li></ul><p>So yeah, blame lack of <a href="https://infosec.space/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a>, <a href="https://infosec.space/tags/secrecy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>secrecy</span></a>, and <a href="https://infosec.space/tags/custody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>custody</span></a> as well as <a href="https://infosec.space/tags/doxxing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>doxxing</span></a> in the form of KYC under the <em>false pretense of <a href="https://infosec.space/tags/AML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AML</span></a></em> for the rampant rise of <a href="https://infosec.space/tags/kidnappings" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>kidnappings</span></a> and armed robberies of <a href="https://infosec.space/tags/shitcoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shitcoin</span></a> HODL'ers.</p><ul><li>Obviously I do condemn such acts of violence as a matter of principle.</li></ul><p>The fact that there are automated, idiot-proof tools like <a href="https://infosec.space/tags/chainalysis" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>chainalysis</span></a> that enable statistical tracking and linking of transactions for everything <em>except Monero</em> is the problem. </p><ul><li>Don't believe that such <em>"AML compliance"</em> tools are unique to the clients of said providers, because it's just connecting dots from public records. No warrant nor insiders nor MLAT needed.</li></ul><p>IOW: OFC I'd have to expect getting robbed by organized crime if I were to post evidence of me sleeping on genuine gold bars. </p><ul><li>That's what [bank] vaults are for! </li><li>Sadly shitcoin-fans seem to disregard basic <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> & <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> that even <a href="https://infosec.space/tags/TradFinance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TradFinance</span></a> do execute.</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@Belledonne_Communications" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Belledonne_Communications</span></a></span> obviously I'm interested in the on-premise self-hosting option...</p><ul><li>No offense, but <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> is critical!</li></ul>
Kevin Karhan :verified:<p>Hey, <span class="h-card" translate="no"><a href="https://social.bund.de/@AuswaertigesAmt" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>AuswaertigesAmt</span></a></span>, ihr wisst schon dass eure <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> <a href="https://infosec.space/tags/pwned" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pwned</span></a> <a href="https://www.youtube.com/watch?v=linNxisuCFU&t=1932s" rel="nofollow noopener" target="_blank">wurde?</a></p><ul><li>Vielleicht solltet ihr eure <a href="https://infosec.space/tags/SMS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMS</span></a> über <a href="https://infosec.space/tags/Iridium" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Iridium</span></a> verschlüsseln...</li></ul><p>Vielleicht mal <a href="https://github.com/KBtechnologies/PocketCrypto" rel="nofollow noopener" target="_blank">in OpenSource investieren</a>?</p><p>CC: <span class="h-card" translate="no"><a href="https://social.bund.de/@bsi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>bsi</span></a></span> <span class="h-card" translate="no"><a href="https://social.bund.de/@Bundesregierung" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Bundesregierung</span></a></span> </p><p><a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> <a href="https://infosec.space/tags/Krisenkommunikation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Krisenkommunikation</span></a> <a href="https://infosec.space/tags/40diplo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>40diplo</span></a> <a href="https://infosec.space/tags/Privatsph%C3%A4re" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Privatsphäre</span></a> <a href="https://infosec.space/tags/Datenschutz" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Datenschutz</span></a> <a href="https://infosec.space/tags/Informationssicherheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Informationssicherheit</span></a> <a href="https://infosec.space/tags/Kommunikationssicherheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kommunikationssicherheit</span></a> <a href="https://infosec.space/tags/DEpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DEpol</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@mrmasterkeyboard" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mrmasterkeyboard</span></a></span> I hope this is a <a href="https://infosec.space/tags/shitpost" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shitpost</span></a>, not a real setup, because <a href="https://infosec.space/tags/RedStarOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RedStarOS</span></a> is literally the <a href="https://infosec.space/tags/GovwareOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GovwareOS</span></a>: </p><p><a href="https://www.youtube.com/watch?v=8LGDM9exlZw" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">youtube.com/watch?v=8LGDM9exlZw</span><span class="invisible"></span></a></p><p><a href="https://infosec.space/tags/NorthKorea" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NorthKorea</span></a> <a href="https://infosec.space/tags/RedStar" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RedStar</span></a> <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> <a href="https://infosec.space/tags/SurveillanceTech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SurveillanceTech</span></a> <a href="https://infosec.space/tags/Surveillance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Surveillance</span></a> <a href="https://infosec.space/tags/Tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tech</span></a> <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a></p>
Continued thread
@BrodieOnLinux @torproject @guardianproject
At this point I'd like to ask when @EUCommission and other #regulators start #banning #StasiBook and other #GAFAM|s for their blatant actions as #OrganizedCrime to violate #privacy standards in the #EU and elsewhere?
https://infosec.space/@kkarhan/114733606176520273
Cuz at this point the €32B fines at maximum are a joke.
- I think that people espechally in Germany who may be affected [I'm not!] consider seeking legal advice and potentially file charges for said digital espionage and computer sabotage against #NSAbook!
Simply because this isn't a mere violation of #GDPR, #BDSG and other standards, but literal #malware that has been deployed against users in the wild...
- Anything but actual prison sentences & arrest warrants against the persons responsible would be undue leniency.
Infosec.SpaceKevin Karhan :verified: (@kkarhan@infosec.space)The fact that #NSAbook is literally developing #Govware to track users and bypass #Android #sandbox as well as #tracking them regardless of #VPN, #Cookies or #IncognitoMode use or blockage.
https://www.youtube.com/watch?v=LUtctMShGJw via @BrodieOnLinux@mstdn.social
More to readup upon.
https://redact.dev/blog/meta-yandex-localhost-tracking
https://www.zeropartydata.es/p/localhost-tracking-explained-it-could
#Spyware #InfoSec #ComSec #ITsec #OpSec #Malware #LocalhostTracking #Govware #StasiBook #Facebook #Meta
Continued thread
@BrodieOnLinux I am pretty shure @torproject / #TorBrowser and any #App that does #Proxy through @guardianproject / #Orbot for #Tor access is not affected but I do encourage both #Tor and Orbot devs to test against #LocalhostTracking!
The fact that #NSAbook is literally developing #Govware to track users and bypass #Android #sandbox as well as #tracking them regardless of #VPN, #Cookies or #IncognitoMode use or blockage.
https://www.youtube.com/watch?v=LUtctMShGJw via @BrodieOnLinux
More to readup upon.
https://redact.dev/blog/meta-yandex-localhost-tracking
https://www.zeropartydata.es/p/localhost-tracking-explained-it-could
Replied in thread
@delta also #deltaChat natively supports #Proxies, #VPN|s and @torproject / #Tor so not only can people use it that way but also use any other bypass method.
- Obviously, the classic #Sneakernet with people doing
uucpwith foreign mobile networks near borders works just as well...
I'd not be surprised if delta Chat is also used by #RimjinGang* and #38North** for a "contactless sneakernet" tho I am convinced they won't confirm or deny that for #OpSec, #InfoSec & #ComSec reasons alone...
- I mean, both #Iran and #NorthKorea ain't #Iraq and #Syria where one could just take a phat satellite dish, strap an LTE stick or even external antennas on and just point it at turkish or lebanese radio towers near the border, as owning any satellite equipment in these places is a guarantee to get publicly executed for "espionage"...
en.wikipedia.orgUUCP - Wikipedia
Replied in thread
@afreytes +9001%
It's impossible to get #GDPR compliance with #GAFAMs' products!
It's impossible to get #ITsec, #InfoSec, #OpSec & #ComSec on a compliant level when a literal #Govware (#Windows) is being used.
I cannot work as #Linux Sysadmin unter WinShit just like a cardiologist can't perform a heart transplant just cutlery from a prison mess hall and NSAIDs and just like a nurse can't CPR a toddler with a pneumatic jackhammer!
Live feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
LoginDrag & drop to upload