Recent searches

No recent searches

Search options

Only available when logged in.
sigmoid.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A social space for people researching, working with, or just interested in AI!

Administered by:

Server stats:

587
active users

sigmoid.social: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.3

#kyc

2 posts2 participants0 posts today
Replied in thread
adison verlice

@liahaberman i can respect the work you've done on this. that said, i have to laugh too. you're asking a team to improve #privacy for a product that has consistantly violated privacy several times on severAl months. if you are using #facebook / #meta you should know this is going to happen. you should *expect* this. as one of my friends @kkarhan says, #kyc is the elicit activity, and facebook asks for a lot of kyc.
also, this is evident by the amount of #gdpr violations in the #eu meta has received. don't get me wrong, i'm absolutely not discrediting you, i'm glad you got this out. i'm just saying you're shouting at a wall. meta has consistantly violating privacy and #cybersecurity in some cases, and will continue to do so.
so as much as i agree, meta is simply going to laugh in your face rather than do you any good

Replied to adison verlice
*
Kevin Karhan :verified:

@adisonverlice even if an #MVNO isn't demanding any #KYC whatsoever (i.e. #prepaid are offered OTC in most juristictions) it's NOT "#Anonymous" but merely #pseudonymous as it's trivial for governments to utilize existing and mandtory "#LawfulInterception" appliances to create that #PII chain.

#PhoneNumber <=> #ICCID (#SIMcard) <=> #IMSI (SIM profile) <=> #IMEI (Phone/...).

So if #Anonymity is important, NONE of these details have to be linked somehow even circumstantial.

  • Bought/paid for the phone/SIM/ a single top-up with ec/CC/PayPal/SEPA/… = busted due to circumstantial connection.

  • Use the SIM in any device? Consider them circumstantially connected forever: #ICCID <=> #IMEI.

  • Same applies to #eSIM|s: #EID <=> #ICCID <=> #IMEI.

Add to the fact that most places have #CCTV, and assume that they'll keep recordings for the maximum permissible duration if not longer and oftentimes even use questionable cloud services and you get the picture.

  • I.e. in Germany the maximum permissible storage duration is 72 hours (if nothing hapoens that warrants a longer storage i.e. burglary/theft/robbery/arson/...) so anonymous top-ups would necessitate paying cash at a place one's not been known at (i.e. some kiosk) and waiting at least >72 hours (and checking on the purchase location) before redeeming the top-up code (i.e. dialing *104*1234567890123456# )...

So any #privacy-based service should never ever & under no circumstances demand a Phone Number!

  • Instead any privacy-focussed service should use #OnionServices, host their own #OnionService or at least #DontBlockTor and allow users to use it via @torproject / #Tor to use and signup. (But don't forget circumstantial connections there either!)

  • Also the less details they want or store and the least traffic they generate the harder it is to correlate traffic & users.

#onionservices#onionservice#dontblocktor
adison verlice

ok...so we have to talk about this.
m.youtube.com/watch?v=1MoYHJaK
first off, encrypted messengers, like whatssapp, *require* #kyc in order for you to sign up.
that is also baught by law enforcement. ayour contence, granted, are encrypted, but sometimes metadata is even more important. as #nsa director michael haden once said: "we kill based on metadata".
should tell ya something. even if some providers, such as mint mobile in the US, don't require direct identification via a government ID, it is still kyc eitherway. and as @kkarhan once said, KYC is the elicit activity.
second, privacy and security settings? lol don't make me laugh. you don't actually know what the client is collecting when you use it. it's offen not open source, and offen still is able to gather data on you in other ways.
or it could just saay off, but actually be on.
the only way to *truely* regane privacy would be to use #selfhosted applications and open source apps.
#surveillance #tor #whatsapp #signal #privacy #cybersecurity

YouTubeUniversal surveillance is here—how do we fight back? | Eliza Orlins | TEDxHCCS YouthBy TEDx Talks
Replied in thread
*
adison verlice

@troyhunt Funny enough, at least 1 of the women were calling it a, whisper, network to talk about bad men. And yes I'm saying this as a man. I think a real whisper network would use #tor #onion services And would not require you to use #kyc Along with only allowing you to upload text, no images, so that everyone would maintain their #privacy .
This application is not sharing information An anonymous way, so it's probably not private by any means. I think there are hotlines and other anonymous sharing applications that do a much better job than T., which quite literally and unironically spilled the tea.
I can already tell this is going to lead to enormous amounts of doxing.

adison verlice

ok So we have something to talk about here. So I've noticed there's something called a hardware enforced no logging #vpn and it's located at vp.net .
In theory this does sound promising, but I've noticed some issues with it. And it makes it look more like a scam VPN.
1st off, it uses the #intel SGX, or Intel software guard extension as it's Real name the problem with the trusted execution environment is that it's closed source. And you can't really verify If it actually works For all we know it could be running aside Intel management engine.
Second. And this is probably what makes it not anonymous. It requires a fucking #kyc EG credit card, stripe/link, amazon, et cetera. At least @mullvadnet Does not require KYC, and cannot be linked back to you because It uses randomly generated account numbers and Is even more anonymous if you pay in #monero XMR. Even has an onion service. But this? This VPN doesn't. So if that is part of your #privacy test this VPN in particular fails it.
As @kkarhan puts it, KYC is the illicit activity.
And by the way I'm talking about the VPN mentioned earlier not MULLVAD, That passes the privacy test. Just wanted to be clear about that before I go on to my next statement.3rd, again even though Client is open Client is open source it uses Client is open source it uses proprietary components like Intel SGX. Oh and by the way I don't think this particular VPN has undergone independent #security #audit. There are several red flags here and I would not use this particular VPN. If you're looking for privacy with a VPN I would use mullvad!
#cybersecurity #opsec

vp.netvp.net
TrendingLive feeds
About