Lemmy is not going to be Reddit. It will not inherit the reactionary behaviours. Ensure civillity and disengage if uncomfortable. Have a good time!

submitted 7 hours ago by Misk@lemmy.world to c/privacy@lemmy.ml

I know people have mixed opinions on Braxman but I don't see any huge leaps in logic here tbh... Thoughts?

submitted 6 hours ago by Gangly3090@lemmy.ml to c/privacy@lemmy.ml

Hi, while I know the link name may be... self-explanatory. I cannot seem to find any actual information on this link and it was strangely not blocked by my NextDNS(and other services) configuration. I'll explain the full story here:

So in April, ago I set up NextDNS and added it to my devices, it worked fine and blocked several in app ads. Then comes today, the game which had it's ads blocked the entire time which was also blocked by other DNS provider I was using before like Adguard and Mullvad suddenly has it's ads pop up again. I thought this was weird so I tried switching over back to AdGuard and Mullvad to see if my config was missing something. The ads still came up on opening the game So I re-added my NextDNS to my phone and checked the logs on their website, everything was fine besides the afromentioned "http://googleadsservice.online/" which wasn't blocked, the name seemed pretty on the nose so I added it to my Denylist and voila, no more ads. But I checked the logs for the URL and it turns out it's been a thing completely unblocked since I first set up?? That is to say there are several pages worth of the URL going through on my logs. I tried looking up the URL but found nothing. So I was hoping someone knew exactly what this was and why none of the DNS providers seem to block it. Thanks in advance

submitted 15 hours ago* (last edited 15 hours ago) by cmgvd3lw@discuss.tchncs.de to c/privacy@lemmy.ml

With the recent WWDC apple made some bold claims about privacy when it comes to so called Apple Intelligence. This makes me wonder if they did something to what Microsoft did with Recall feature, would people be less concerned and to an extend praise their effort?

Do you trust apple with their claims?

submitted 22 hours ago by downdaemon@lemmy.ml to c/privacy@lemmy.ml
submitted 22 hours ago* (last edited 22 hours ago) by JameUwU@lemmy.ml to c/privacy@lemmy.ml

Hello Lemmy, this is my first time posting instead of commenting so if this is the wrong place or I'm formatting this wrong feel free to let me know how to fix it.

One of my healthcare providers (US) has just alerted me I've been affected by a Data breach (from February, so glad to see they took it seriously and alerted people quickly). The breach supposedly affects Full name, address DoB, and health information such as illnesses and medications. They have sent a 2 page information packet that gives recommendations such as calling the three creditors and a "free" 5 year subscription to an experian credit monitoring service. Upon checking the website they want my full name, DoB, SSN, Address, email, phone number, and I'm sure if they could my blood type and fingerprints.

What I would like to know is are these services they are providing me with "safe" for a threat model that involves keeping my information out of the hands of advertisers, bad actors and people who don't need it? Do they already have this information and are just asking to verify who I am? I'd prefer not to have my identity stolen due to someone else's computer having a security flaw. What's my best course of action to preserve my privacy while not having my identity stolen?

Thanks for any help in advance.


What is the best cloud storage that gives a nice balance between features and privacy? I know you can manually encrypt files to use any provider, but I would prefer an open source E2EE for the sake of convenience.

Currently I have heard about the following:

  • proton
  • filen
  • sync
  • icedrive
  • pcloud

(Not including GDrive, Onedrive etc..)


This post contains a canary message that's cryptographically signed by the official BusKill PGP release key

BusKill Canary #008
The BusKill project just published their Warrant Canary #008

For more information about BusKill canaries, see:

Hash: SHA512

Status: All good
Release: 2024-06-11
Period: 2024-06-01 to 2024-12-31
Expiry: 2025-01-31


The BusKill Team who have digitally signed this file [1]
state the following:

1. The date of issue of this canary is June 11, 2024.

2. The current BusKill Signing Key (2020.07) is

   E0AF FF57 DC00 FBE0 5635  8761 4AE2 1E19 36CE 786A

3. We positively confirm, to the best of our knowledge, that the 
   integrity of our systems are sound: all our infrastructure is in our 
   control, we have not been compromised or suffered a data breach, we 
   have not disclosed any private keys, we have not introduced any 
   backdoors, and we have not been forced to modify our system to allow 
   access or information leakage to a third party in any way.

4. We plan to publish the next of these canary statements before the
   Expiry date listed above. Special note should be taken if no new
   canary is published by that time or if the list of statements changes
   without plausible explanation.

Special announcements


Disclaimers and notes

This canary scheme is not infallible. Although signing the 
declaration makes it very difficult for a third party to produce 
arbitrary declarations, it does not prevent them from using force or 
other means, like blackmail or compromising the signers' laptops, to 
coerce us to produce false declarations.

The news feeds quoted below (Proof of freshness) serves to 
demonstrate that this canary could not have been created prior to the 
date stated. It shows that a series of canaries was not created in 

This declaration is merely a best effort and is provided without any 
guarantee or warranty. It is not legally binding in any way to 
anybody. None of the signers should be ever held legally responsible 
for any of the statements made here.

Proof of freshness

04 Jun 24 14:10:16 UTC

Source: DER SPIEGEL - International (https://www.spiegel.de/international/index.rss)
Fortress Europe: Migrants Abandoned on the Edge of the Sahara
Israel-Gaza-Krieg: Menschenrechtler Aryeh Neier über Schuldfrage und Strafverfolgung (Kopie)

Source: NYT > World News (https://rss.nytimes.com/services/xml/rss/nyt/World.xml)
Middle East Crisis: Israeli Airstrikes Kill Iranian General in Syria
Live Updates: India’s Election Results Suggest a Setback for Modi

Source: BBC News - World (https://feeds.bbci.co.uk/news/world/rss.xml)
Shock for India's Modi as opposition set to slash majority
Gaza ceasefire plan turns into deadly game of survival

Source: Bitcoin Blockchain (https://blockchain.info/q/latesthash)



To view all past canaries, see:

What is BusKill?

BusKill is a laptop kill-cord. It's a USB cable with a magnetic breakaway that you attach to your body and connect to your computer.

What is BusKill? (Explainer Video)
Watch the BusKill Explainer Video for more info youtube.com/v/qPwyoD_cQR4

If the connection between you to your computer is severed, then your device will lock, shutdown, or shred its encryption keys -- thus keeping your encrypted data safe from thieves that steal your device.

submitted 23 hours ago* (last edited 23 hours ago) by zingo@lemmy.ca to c/privacy@lemmy.ml
submitted 2 days ago* (last edited 2 days ago) by Psych@lemmy.sdf.org to c/privacy@lemmy.ml

I just want one to sign up for telegram, yes yes I know there can be privacy concerns but I'm only going to use it for piracy anyway and gonna enable 2FA . I don't have any mode of online payment and I'm broke anyway, so it has to be free . Looking back on some old reddit threads some seems to work for the people some don't, but those sites are irrelevant today as most have turned to shit or is shut down . I remember google voice being able to do that but I need to have a phone number to make a google account now so I guess its just jumping through hopes for no reason .

I have tried some top results on DDG which all sucks but do drop your reccomends .

Edit : To clear some mistakes in case I wasn't clear I didn't mean using 2FA for anonymity but so that no one else can log in the acc too as it is a public OTP number .

submitted 3 days ago by Psych@lemmy.sdf.org to c/privacy@lemmy.ml

I am now using disroot . I don't care about anonymity or anything as I just wanna use it to connect to my bank, ID and buy/book shit etc. Which all have my phone number, address, name etc anyway so no point in that . I just want the security privacy to be good enough that no one can easily hack it, steal my OTP, inbox etc and I want it to be big and trusted enough that they won't sell it/sell it and go Scott free also gmail asks email or phone number for verification and then brick acc if I don't comply so I'd like to skip those kind of ones . Is disroot enough for my uses ? Also I'd like a free one as I barely use emails like 3 or 4 times a year .

submitted 3 days ago by Broken@lemmy.ml to c/privacy@lemmy.ml

I'm looking for a guitar tuner app that is FOSS/private in nature.

I saw one called tunerly, but figured I'd check here if there are any recommendations.

submitted 3 days ago by Logh@lemmy.ml to c/privacy@lemmy.ml

I have been considering replacing my nearly 7 year old iPhone (although very reluctant) and I was checking for options. Really the only phone that caught my eye was the Sony xperia 1 V, but I found no information about how to degoogle and lock down the device. I really like the features and the built in camera apps, etc. Is there a way to degoogle the phone without loosing the funcionality/ease of use?

Chat surveillance law by the EU Parliament? (results.elections.europa.eu)
submitted 4 days ago* (last edited 4 days ago) by foremanguy92_@lemmy.ml to c/privacy@lemmy.ml

The results are showing up... Now we have to hope for the law to be declined... Already discussed about the chat control law of the EU, here : https://lemmy.ml/post/16469106

submitted 3 days ago by vk6flab@lemmy.radio to c/privacy@lemmy.ml

There is a growing trend where organisations are strictly limiting the amount of information that they disclose in relation to a data breach. Linked is an ongoing example of such a drip feed of PR friendly motherhood statements.

As an ICT professional with 40 years experience, I'm aware that there's a massive gap between disclosing how something was compromised, versus what data was exfiltrated.

For example, the fact that the linked organisation disclosed that their VoIP phone system was affected points to a significant breach, but there is no disclosure in relation to what personal information was affected.

For example, that particular organisation also has the global headquarters of a different organisation in their building, and has, at least in the past, had common office bearers. Was any data in that organisation affected?

My question is this:

What should be disclosed and what might come as a post mortem after systems have been secured restored?


The carrier on Friday said it launched a media platform to serve travelers personalized advertisements on seat-back screens and in its app, among other platforms, as it seeks to leverage customer data.


This is the reply:

As a model running through DuckDuckGo's privacy layer, I can provide you with accurate information about their privacy features.

DuckDuckGo is a search engine that prioritizes user privacy. They have a strong commitment to protecting user data and have implemented various measures to ensure anonymity. Here are some key aspects of their privacy features:

  • No tracking: DuckDuckGo does not track users' searches, browsing history, or any other personal information.
  • No personal data collection: They do not collect or store any personal data, including IP addresses, user agents, or other identifiable information.
  • Encrypted searches: Searches are encrypted, which means that even your ISP or network administrators cannot see what you're searching for.
  • No targeted ads: DuckDuckGo does not display targeted ads, which reduces the risk of data collection and profiling.

Regarding cases where DuckDuckGo's privacy was questioned, there have been a few instances:

  • 2011: DuckDuckGo was criticized for using Amazon Associates, which could potentially track user behavior. However, they quickly addressed the issue and removed the affiliate program.
  • 2019: A security researcher discovered a bug in DuckDuckGo's browser extension that could potentially leak user data. The issue was promptly fixed, and an audit was conducted to ensure the security of their systems.
  • 2020: DuckDuckGo faced criticism for using Microsoft's Bing API, which some argued could compromise user privacy. However, DuckDuckGo clarified that they do not share user data with Microsoft and that their partnership is limited to search results.

It's essential to note that DuckDuckGo has consistently demonstrated a commitment to user privacy and has taken steps to address any concerns or issues that have arisen. They are transparent about their practices and have implemented robust measures to protect user data.

If you have any more questions or concerns about DuckDuckGo's privacy features, feel free to ask!

Is anybody using duckduckgo over searx or other search engines? What is your experience?

submitted 4 days ago by yogthos@lemmy.ml to c/privacy@lemmy.ml
submitted 4 days ago by yogthos@lemmy.ml to c/privacy@lemmy.ml
submitted 4 days ago* (last edited 4 days ago) by Psych@lemmy.sdf.org to c/privacy@lemmy.ml

I really need to get in contact with some people on WA and have some groups to join and have been waiting for interoperability to get going so I don't have to use zuck's app . But the said date march has long passed and I can't find shit on it or why it didn't happen anywhere . I have yesterday downloaded the apk from WA's official site and is in half a heart to install it . I know everything I say there should be considered public but besides that and the app knowing my IP and contacts is there any hidden data collection I should be aware of ? Or should I wait some more which I don't think I can as am loosing patience lol . Also will it even be global or support apps that are really privacy focused unlike the usual suspects like TG or signal ?

Edit : Seems like I have to suck up to Meta as our lizard lord intended . As WhatsApp is ad free (to my knowledge) it is all but confirmed they are selling data . In my opinion Meta is more evil than google as google is at least taking some hits and hosting things on lose that we can access without making them a dime (newpipe -youtube, google search engine - unlock with firefox) and they fund Firefox and maintain AOSP, meanwhile all meta do is making their service a thing which we can't leave and steal fuckin everything they do absolutely no good whatsoever and have no redeeming qualities and people or laws don't give them enough shit for it . People may say "if you don't like meta just don't use it" well guess what we can't stop it as almost everything needs their platforms nowadays . Sorry that turned into a rant figured .

Internet Archive is in danger (www.battleforlibraries.com)
submitted 6 days ago* (last edited 6 days ago) by Moorshou@lemmy.zip to c/privacy@lemmy.ml

It looks like the internet archive is needed assistance, I just heard about this today and figured lemmy could help spread this message around

view more: next ›


29468 readers
758 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago