fll boosted

"Da gerade Telefondaten gesammelt werden für Bewegungsprofile, hier der Hinweis für Opt-Out-Seiten, falls mensch das nicht will:
Telekom: optout-service.telekom-dienste
O2: telefonica.de/dap/selbst-entsc "

Boost erwünscht

fll boosted

Alle Maßnahmen der Datenverarbeitung müssen erforderlich, geeignet und verhältnismäßig seien. Bisher fehlt jeder Nachweis, dass die individuellen Standortdaten der Mobilfunkanbieter einen Beitrag leisten könnten, Kontaktpersonen zu ermitteln, dafür sind diese viel zu ungenau.

fll boosted
Currently any Android app with storage permission can view all files stored in shared storage - thats generally everything you can see with a file explorer app. This typically includes all photos, downloaded files, and even some apps data and caches. This is a potential problem as any app that has been compromised, or is designed to collect information on the user gains a lot of insight into the users activities.

Read more and collaborate at.....

Android Privacy and Security wiki - storage
fll boosted

@squire I don't trust #LineageOS, #PinePhone and #Librem5 are not yet ready for being my daily driver. I am currently using #CalyxOS on my personal phone (#Google #Pixel 3) and #GrapheneOS on my work phone (Pixel 3a). Both completely without Google but with #FDroid.

fll boosted

Zusätzlich zur Beratung stellen die deutschen Datenschutzbehörden Übersichten zur Verfügung, hier „Datenschutzrechtliche Informationen zur Verarbeitung von personenbezogenen Daten durch Arbeitgeber und Dienstherren im Zusammenhang mit der Corona-Pandemie“ bfdi.bund.de/DE/Datenschutz/Th

fll boosted

It's really important to raise awareness that privacy and security are two different things. Case study #LineageOS:

- LOS respects your privacy, as it does not contain certain #Google services that spy on you all the time
- LOS does not make your phone more secure, besides the fact that it might come with newer security patches than your old stock Android
- LOS certainly does not harden your phone against direct attacks

LineageOS has its place, but on its own it can never provide "security".

fll boosted
fll boosted
fll boosted

Fancy phishing approach: rather than spam a suspicious phishing URL, send people a link to a Google Docs document. Make that document look like a download page and long enough that the Google footer disappears below the fold. The "here" link points to a malicious URL of course.

fll boosted
fll boosted

#CloudFlare is now hitting the archive.org wayback machine with the same #CAPTCHA as #Tor users, thus censoring history too.

fll boosted

The French government switched to Matrix, the German government evaluates free, open and federated messaging solutions, Nextcloud Talk became a great Slack replacement, public authorities in Germany consider a mass exodus from Twitter & Co after EuGH ruling, next stop Mastodon... Seems like we have both, the (political) momentum and the technology to make 2020 a great year for the free & open internet!
#Matrix #XMPP #Nextcloud #Mastodon #Germany #France

fll boosted

#GrapheneOS:

Ein gehärtetes #Android ohne Google, bitte.

Äußerlich unterscheidet es nicht viel von einem sauberen #Android_10 - nur die Google-Apps fehlen. Doch im Inneren von #GrapheneOS stecken einige Sicherheitsfunktionen. Wir haben den Nachfolger von #Copperhead_OS ausprobiert. ...

golem.de/news/grapheneos-ein-g

fll boosted
fll boosted

2000s hackers: My dream is to connect all of my devices to the internet.
2020s hackers: My dream is to disconnect all of my devices from the internet.

fll boosted
fll boosted

Weil ich noch so vieles wüsste, was wirklich was verändern würde und das. Alles. Nicht. Passiert.

Ist ja nicht so, dass wir nicht wüssten, was nötig wäre.

Es ist reines Sicherheitstheater. Und es ist gefährlich und dumm und macht es eher noch schlimmer. digitalcourage.de/sicherheitst

Show thread
fll boosted

Uns wurde der Mietvertrag gekündig, wir suchen zeitnah neue Räume. Wenn ihr gute Ideen für neue Räumlichkeiten in #Aachen habt, dann her damit!

fll boosted

@kemonine
You seen the backup app that the #CalyxOS folks have been doing a load of work on?

Uses the same internal AOSP stuff as Google cloud backups and ADB backup- so no need for a rooted device. Although it'll have to be built into the OS.

Its going to output encrypted backups with yubikey support. Output to USB key or Nextcloud.
gitlab.com/calyxos/calyxos/iss

#GrapheneOS is set to use it once its finished, #HashbangOS already include it in their builds.

fll boosted

This is, hands down, one of the best articles I have read this week:

"I was wrong about Google and Facebook: there’s nothing wrong with them (so say we all)"

ar.al/2019/01/11/i-was-wrong-a

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.