Not a member yet? Why not Sign up today
Create an account  

Privacy and Security 101.

#1
Information 
So are you worried about internet security and privacy while browsing the internet? 
Well let me help you secure yourself and keep your data your own with some of the things I use and know about. 
*Anything Colored is a link*


Antivirus- 
First I want to talk about security, both on your computer and while browsing the internet. Most of the time if you have good browsing activity you will NOT need an antivirus. (Odd right?) I would highly recommend not buying any antivirus software. Now, Im not saying not to have it, you just don't need the paid version 9/10 times. Now you should NEVER download or use AVG or other "free" antivirus software OTHER then - 
Malwarebyteshttps://www.malwarebytes.com/
This is a free antivirus. This is the only antivirus software I would buy myself. If you don't know what it is It's very popular and used by alot of companies, including Cisco (people who do cybersecurity and make routers). It's free to use but if you want to buy a year of "premium"  it will run you around $40. 
(Theres also a free android app/version - https://www.malwarebytes.com/android/

Windows 10/OS-
Next, If you run a windows 10 computer there are inherent problems with your OS. Windows 10 has privacy flaws that were built into the operating system. "Web sites can get location data from your PC, and use that to determine your location, target ads at you and help identify you. There’s a way to turn that off, though. In Windows 10 go to Settings > Privacy > Location. Click the Change button and move the slider that appears from On to Off. That by itself isn’t enough, because sites can still look into your location history. So, you should clear that out. To do it, scroll down to Location History and click the Clear button underneath “Clear history on this device.”" 
If you want to read more about how to secure windows 10 you can read more here - https://slate.com/technology/2015/08/win...-them.html
Another thing is to make sure you have all windows security patches and windows firewall enabled to further prevent any malware. 
Now windows is somewhat more secure, if thats not enough I would suggest switching to Linux, There are many different versions, the most user friendly would be ubuntu. If you want to be a let hackzor you can go with Arch, BlackArch, which contain hacking tools. If you need more anonymity try using Tails on a USB.

VPN -
Now that your operating system is good to go let's talk about your connection. You connection right now is most likely not secure, this means that your ISP (Internet Service Provider), can monitor your behavior online. This also means if you ever connect to an unsecure network (Mcdonolds, cafe, school wifi, etc. ) you could have your data intercepted on the public wifi. This can also happen even if your on your home wifi, fake sites and other software that can look legit can be used in attacks like this. There is a simple way to stay secure, and that is to use a VPN. A VPN can be used for many things, if your school or country has blocked content you want to see, you can use a VPN to get around this. A VPN will also provide Encryption, this means that your traffic/data while you browse will be safe from attacks like these. Now there are many VPN's out there, ExpressVPN,NordVPN, TunnelBearVPN, SurfSharkVPN, ProtonVPN, and PIA. 
Free
Now the only free version is ProtonVPN they claim to have privacy in mind (Like every VPN) and will not be keeping logs. The problem with this one is its small, theres not alot of servers and it will be slow. 
Payed
If you are looking to buy a VPN here are a few to consider.
SurfsharkVPN  -  This is a costly VPN per month, but if you buy a year, or 2 year plan it will cost the mostly the same as other services out there. They arnt my first choice but it is an option because of their security, they do have some shady terms of service tho. 
NordVPN -  Now everyone has heard of NordVPN, I would NOT suggest them. The reason being is that they have had issues with server security and are very expensive. 
Now the VPN I recommend, 
PIA (Private Internet Access) - Their pricing is affordable and they offer things like VPN-port forwarding that other VPN's don't offer. They do not keep logs of users data. When the US ordered information from them of the... "23 warrants, subpoenas, and court orders Private Internet Access has received since July 2018, the company has provided no data in response." This is the company I use and I would recommend the service to anyone. They also have a nifty phone app and browser extensions. 

If you want to read up more on VPN's and what to choose here is a place to start - https://www.pcmag.com/roundup/296955/the...n-services
(For extra security/privacy look at HOME WIFI for mac spoofing) 

Browsers/Extensions-
Now that your connection is encrypted let's talk about browsers. Not all browsers are made like another, browsers like chrome are not very privacy orientated. Some browsers I would recommend would be, Chromium, Brave, or Firefox. Now there are also flaws in these as well. If you want to stay 100% secure you should use -
Tor https://www.torproject.org/
Now you may know this browser, it is used to access the deepweb. The main function of it is privacy you can use it to make sure your identity is 99.999% hidden. If you use Tor and a VPN here is what will happen: 
  • First, you start the VPN. This establishes an encrypted connection between your computer and a VPN server. Your ISP knows your IP address and can see that you are connected to a VPN, but can’t read the data that passes along the encrypted VPN connection
  • Next, you start the Tor Browser and enter the address of xyz.com. The browser establishes a path through the Tor network and encrypts the data it is sending to xyz.com. The VPN can see that the browser is sending encrypted data to a Tor Guard Relay.
  • The data passes through the VPN network and exits through the VPN server. The data is still protected by the encryption from the browser.
  • The VPN server passes the data to the Tor network. It enters a Guard Relay, which thinks the message originated at the VPN server. The Guard Relay strips off the outermost layer of encryption and passes the message to a Middle Relay.
  • The Middle Relay strips off the next layer of encryption and passes the message to an Exit Relay.
  • The Exit Relay strips off the final layer of Tor encryption and sends the data to xyz.com. The Exit Relay can read the content of the message but doesn’t know the origin IP address.
Now this would be the MOST Private way of accessing the internet that I know of. If you don't want the exit relay being able to read the data from the message (which you wont if you are doing things that involve bank details and other sensitive data) then just use the VPN's encryption. 

Google Chrome/Extensions - 
If you insist in using Google Chrome here are some things you should do to secure yourself and make your life a bit easier. First go to your settings > privacy and turn on "don't track me". Now this wont stop everyone from tracking your activity but will help slightly. This is the only setting in default chrome you can change to help here. 
Now lets get you some Adblockers here are the 3 (yes, 3) I use. 
(Ive linked the names to the website of the extension in case you are going to install them on other browsers such as firefox. The link next the name goes to the chome extension. )
AdBlockhttps://chrome.google.com/webstore/detai...kkbiglidom
AdBlock Plushttps://chrome.google.com/webstore/detai...cddilifddb
uBlock Origin (Blocks ad's on Twitch!)* - https://chrome.google.com/webstore/detai...phjbkeiagm
*(Side note on Ublock Origin - "uBlock Origin is NOT an "ad blocker": it is a wide-spectrum blocker -- which happens to be able to function as a mere "ad blocker". The default behavior of uBlock Origin when newly installed is to block ads, trackers and malware sites -- through EasyList, EasyPrivacy, Peter Lowe’s ad/tracking/malware servers, various lists of malware sites, and uBlock Origin's own filter lists." ) 

Now that you have ad's blocked lets work on some privacy features - 
First lets add privacy badger, they stop any trackers and will help keep your data safe.
Privacy Badgerhttps://chrome.google.com/webstore/detai...dmdjhbjlgp
Next we will be adding HTTPS everywhere, this will automatically switches thousands of sites from insecure "http" to secure "https".
HTTPS Everywhere - https://chrome.google.com/webstore/detail/https-everywhere/gcbommkclmclpchllfjekcdonpmejbdp
This extension will also help like Privacy Badger but will also change your search engine to DuckDuckGo, which I will talk more about below. 
DuckDuckGo Privacy Essentialshttps://chrome.google.com/webstore/detai...pggdiikppg
Now if you own PIA's VPN and don't want to download the desktop application or you just want it on your browser as well they have a chrome extension
PIA https://chrome.google.com/webstore/detai...bkakhmpnmh

Now for some quality of life extensions:

Picture in picture will let you pop-out ANY video from your browser on any website and overlay it on your screen, great for multitasking as it will stay on top at all times letting you work while a video plays. 
Picture-in-Picture Extension (by Google) https://chrome.google.com/webstore/detai...klaeopbecg
Now for another thing is a feature removed by google for image requests. The now old "View Image" button. ViewImage adds the "Search by Image" and "View Image" buttons back to the google images results page.
View Imagehttps://chrome.google.com/webstore/detai...lccemkghjk
If you ever go on Twitch you need this if you dont already have it.
BetterTTV - https://chrome.google.com/webstore/detai...eegpefgped

Search Engines- 
As stated above I'm going to be talking about search engines, specifically DuckDuckGoAs you may now, google is tracking every search you do and loging your data. You may have a google account that is attached to many other accounts and services. Which is alright but we want to limit the amount of data we are giving them. One thing you can do is switch Search engines to DuckDuckGo, as they say "Our privacy policy is simple: we don’t collect or share any of your personal information....Other search engines track your searches even when you’re in private browsing mode. We don’t track you — period." They hold privacy above all else and with how much data is becoming a problem you should switch right away. (fun fact, Ex-Admin: Degree once used the DuckDuckGo logo as his profile picture)

HOME WIFI - 
Now you may or may not know that your home wifi's WEP/WPA/WPA2's security is GARBO.  Now you still should use an encryption standard don't not use one. But an attacker can use a tool like cowpatty or aircrack-ng along with a “dictionary file” that contains a list of many possible passwords to gain access to your wifi. Its not hard, even I have a "dictionary file" thats a text file thats 32gb, it will let you get into almost anything. Here is some information about how fast people can get in: 
"using a Nvidia 660ti on a 3ghz quad core system with 6 gigs of ram, using 2 dictionaries split into Left side/right side left was common dictionary passwords, right was numerical and special characters.  This process took 2.4 seconds to crack the password."
So the first thing you should do is change your default wifi's PASSWORD and SSID. (SSID is the name you see when connecting).  Also change the admin account password on your routers settings. 
The next thing you can do to prevent hacking is disabling the SSID Broadcasting. This means that the Name of your wifi wont come up when searching (its still there don't worry) you will just have to type it in when connecting to the wifi along with the password (Wifi Settings > Add network).
Along with this you can use a wifi feature called "MAC FILTERING" every device has a "Mac Address" this is different then your IP, as your IP can change, a Mac address is the manufacturer address, a specific address for your computer to identify it on a network (If you want to change you Mac address for whatever reason Here is a link aka spoofing your mac address and heres a free software or this one).  By using the Mac filtering function only devices that have a mac address that has been pre approved will be allowed to connect to the network. This means you will have to find the Mac address for every device on your network (phone/laptop/computer/Xbox etc.) and add them to the approved list in your routers settings. With this you should be able to secure your home wifi. 

Thanks for reading, Post below if this was helpful or if there something I should change/add.
[Image: B-Sig.png]
Reply

#2
Built in support for Picture-in-picture is here for chrome. Other modern browsers have partial support. No need to get a chrome extension anymore!

You can see the browser support: here
Reply

#3
Most of the vpns you listed are withing the eyes, AkA not a true vpn and can be back traced. Also if you want a good overall anti virus/vpn/anything look into kaspersky, everything else now days is borderline garbage, even malwarebytes is slacking.

also ublock origin is getting phased out on twitch and you should also include nano ad blocker.

most of the info you listed is outdated and some of it isn't even truly secure anymore.
[Image: A2gYiZq.gif]
Reply

#4
Can you elaborate on how it can be traced if there is no logs kept, also whats your reasoning to support kaspersky over the other 2 companies PIA and Malwarebytes? The only thing I know about is a while back someone at like MIT was able to get access to enough Tor relays to trace someones trafic to the original user. But his should be fine as long as a VPN is active as it shows a different address.

Nice info on the nano ad blocker, ill link it here - https://chrome.google.com/webstore/detai...mkioajlkfo

Id like you to explain whats outdated as I believe most of the things ive stated are relevant. If theres something better out there please do share, but as far as I know there isn't.

only other thing i can think of is DNS/IP Leaks. I should add that you should change your routers DNS to a private one like 1.1.1.1 or 1.0.0.1 which are much safer then the DNS provided by your ISP.
[Image: B-Sig.png]
Reply

#5
I started to do some searching and PIA just had a merger (28 days ago as of writing) with a company that is known for maleware in their apps and selling user data, they have said that they still have privacy as their number 1 concern, but after my subscription I will be switching to Mullvad VPN - https://mullvad.net/en/ it cost more but they havent been compromised.

also want to say AVOID AT ALL COST Hidemyass VPN - they are owned by the FBI.

i also would suggest making a private encrypted email. Suggestions would be tutanota.com. which offer a free personal version.
[Image: B-Sig.png]
Reply


Forum Jump:


Users browsing this thread:
1 Guest(s)