Basic internet security precautions...

gabe walker · Feb 26, 2013

In light of bro's getting caught up with LE for whatever reason I think everyone needs to take just a few basic precautions when considering anything that can be misconstrued as illegal on the internet... I usually don't post on boards anymore but after reading a few posts lately had to say a few words..

Your email is not private even if you use secure email services...

email over 180 days requires only a subpoena not a warrant while less than 180 requires a warrant.. However the Justice Dept. argues that "opened" email left on servers LESS than 180 days falls under a subpoena as well..

Think secure encrypted service is the answer?
Steroid bust shows Feds can still get at ?private? and ?secure? e-mail | Ars Technica

Cloud storage is fair game.. subpoena only..do that BS that Petraeus/Broadwell thing storing email as draft... bad Al Qaeda tried that too.. They are not communications so less is needed

Txt msg falls under same guidelines....

for that try secure txt service like www.mywickr.com for iphone soon android
or Gryphn Corporation - The World's Most Secure Messaging App

Facebook, twitter... subpoena

Cell phone data like GPS or tower locations.. only requires that data contains "specific and articulable facts"

IP addys also:
Court: Feds can read e-mail, IP addresses without warrant | Ars Technica

cell phone to and from numbers .... Probable cause only required..
ssd.eff.org/your-computer/govt/warrants
READ THE ABOVE!!!!!!
and...
https://ssd.eff.org/
and visit
EPIC - Electronic Privacy Information Center

You must use a VPN service if you do any public internet activities... however not all are safe...
**broken link removed**

Open VPN is viable or at a minimum use the TOR network
https://www.torproject.org/projects/torbrowser.html.en
download the TOR browser bundle and read if you are not familiar with what it does...
Seven VPN Services You Should Know About | PCMag.com

can also be set up with other browsers... I use Opera mobile with the TOR Orbot for android simple to use
info here:
https://plus.google.com/111055460369309789724/posts/1ThJuiujcKY
or here:
http://forums.unixhub.net/showthread.php?tid=205

And basic basic encryption that most do not even consider.. Use Google Chrome click on settings, extensions and download HTTPS everywhere(automatically uses HTTPS on most sites) and also download Use HTTPS(forces sites to use HTTPS) ... applies to firefox as well...

Sit back and think, look around.. If LE was to sweep your home what would they find..computer, phone, paper trail, gear, pins, rec's, what?

Be careful it doesn't matter who you are.. manufacturer, seller, buyer, personal use, recreational use, everyone is vulnerable

**broken link removed**

There is so much more if you have anything else add to this list... Favorite VPN's, Secure txt/communication app's, Security software, add it...

Syndicate · Feb 27, 2013

Good call on wickr. Never heard of it!

Sent from my iPhone using Tapatalk

keith1569 · Feb 27, 2013

Wish wickr was for android

mikeyt869 · Feb 27, 2013

gabe walker · Feb 27, 2013

Also... besides OpenVPN, Hamachi is another option ..you can use it to set up your own proxy network from home to create a secure connection when out in public...

Example:

How to Secure and Encrypt Your Web Browsing on Public Networks (with Hamachi and Privoxy)

https://secure.logmein.com/products/hamachi/

Privoxy - Home Page

If you need a disposable email addy for one time use :

**broken link removed**

Or

Mailinator - Let Them Eat Spam!

And this:

Browse Like Bond: Use Any Computer Without Leaving a Trace with Tails

Is something I have yet to do... Portable secure, encrypted, and can be used on any computer anywhere...

https://tails.boum.org/

**broken link removed**

Came accross this site awhile back... Site quickly generates legitimate but fake info quickly for your alter of choice for those times you don't want to share personal information.

Generate a Random Name - Fake Name Generator

Free Tools - Fake Name Generator

SS number generator is random but the #s are valid

juicyjay · Feb 28, 2013

gabe walker said:
Think secure encrypted service is the answer?
Steroid bust shows Feds can still get at ?private? and ?secure? e-mail | Ars Technica

After reading this link, it said this guy clearly used his REAL identity to open up that UPS box that his checks came to. That is the first huge dumbass mistake he made. He should have made fake ID's and fake names, utility bills, etc, and opened the box that way. Mistake 2 is using hushmail, we all know hushmail shares info with LE if pressured. You must use an OFF-SHORE server to prevent this, like countermail, securenym, etc. Mistake 3: They(hushmail) also turned over IP address info, well DUH!!!! He should hae been using a VOPN or some sort of IP masking service. There's plenty of cheap ones that work, and even better ones that you pay a small fee for. Mistake 4: with his email address registration, he used his real name as well as a last name that sounds and is spelled EXTREMELY similar to his real name, DUMB! He made MANY mistakes and got caught, big deal, no surprise here.

juicyjay · Feb 28, 2013

Use countermail or securenym, an OFF SHORE encrypted email server that the U.S. gov't can NOT subpoena.

Use a VPN service (hotspot shield is a decent free one that truly does work.)

Use a FAKE name to open up a UPS or whatever other local mail shops you have, in order to get a PMB or mailbox(you will need a fake I.D. to do this.)

DO NOT EVER use USPS to open up a p.o. box. Name the box for a company, say you own an online business, this way getting packages from overseas isn't out of the norm.

Turn ON your VPN/IP masker EVERY SINGLE TIME you use the internet for ANYTHING. go to whatismyipaddress.com and that will show your IP address, so you will know if it's working or not.

DO NOT link your secure email to your phone for convenience, as your phone can easily be hacked/tapped. DO NOT talk to anyone over the phone about ANYTHING related to illegal activities, no code words, NOTHING.

Do not EVER throw ANYTHING related to what you're doing in your own trash can, as it is open for LE to rummage thru. It is NOT private property and they do NOT need a warrant to look thru it.

Purchase an encryption/VPN service for you cell phone as well, and also a voice encryption service. This will prevent your phone from getting tapped. If your phone is tapped, that doesn't only mean they can read your messages, emails, and hear phone calls. They can literally use the mic on your phone, and hear what YOU are currently saying inside the comfort of your own home, etc. If you feel that the battery area of your phone is hot/warm and you haven't been using it, youve been tapped. If you hear odd clicks or beeps while having conversations, you've been tapped.

Buy a throw away phone and provide that number ONLY to the post shops that you choose to use for you boxes that you opened. There's plenty more to know, but this is the jist of it, and you guys SERIOUSLY need to re-thing what the fuck you're doing. THIS IS NOT A GAME!!

bus · Feb 28, 2013

The cell phone thing is real for sure. I even had them able to take pics of me having the flash go off and all kinds of fucked up things i wont get into.

rhinozine · Feb 28, 2013

What about posting on sites like these? I can't be the only one concerned. Can't LE get into PM's and get IP addy's from this board?

gabe walker · Feb 28, 2013

The NSA is building a massive data collection, decryption eavesdropping, surveillance, network..

This is a long read, but worth it..

**broken link removed**

The High Performance Computer Center in Fort Meade is the NSAs super computer that is close to cracking 128 bit encryption if it hasn't already..

They have built a massive complex in Bluffdale UT that is collecting and storing vast(understatement) amounts of electronic data that is/will be analyzed and decryption at their facility in Oakridge TN..

NSA Decryption Multipurpose Research Facility

The NSA is legally bypasing the FISA court... Congress made the practice virtually legal in 2008..

[ame="http://en.wikipedia.org/wiki/Foreign_Intelligence_Surveillance_Act_of_1978_Amendments_Act_of_2008"]Foreign Intelligence Surveillance Act of 1978 Amendments Act of 2008 - Wikipedia, the free encyclopedia[/ame]

Operation Stellar Wind is the program of data mining the electronic data of US citizens authorized by George Bush after 9/11 and is still active..

[ame]http://en.wikipedia.org/wiki/Stellar_wind_%28code_name%29[/ame]

In a time where Americans are worried about their guns being taken away and losing the means of protecting themselves we have virtually surrendered our privacy and freedom...
Patriot Act is just one example..

Even offshore VPNs won't necessarily protect your privacy... Hidemyass VPN surrendered info to the FBI in the case of Cody Kretsinger who was a LulzSec member...

FBI Arrests Suspected LulzSec Member in Connection With Sony Cyber Attacks | SecurityWeek.Com