Anti-surveillance 102
Citizens Privacy Coalition (CPC)
of Santa Clara County
Follow along at cpcscc.org/102
What is the CPC?
A grassroots, volunteer-run watch dog coalition that aims to combat the lack of oversight and awareness surrounding the state of government and corporate surveillance in the heart of Silicon Valley.What is the CPC?
Investigate. Legislate. Educate.Investigate and Legislate.
Facial recognition surveillance
Black inidividuals are up to 100 times more likely to be misidentified by facial recognition surveillance.
Racism in Facial Recognition Surveillance
With Isedua Oribhabor
October 27th at 5 pm
Educate.
Workshops like these.
We need volunteers!
cpcscc.org/contact
Vote!
CPC urges a “No” vote on Propostition 24 and a strong “No” on 25.
Agenda
- Password managers
- 2 Factor Authentication
- Who is watching me online?
- How can I evade who is watching me online?
80⁄20 rule
Roughly 80% of surveillance can be avoided by taking 20% of precautions.
(This statistic is for illustration purposes, not exact)
cpcscc.org/101
If you missed the last workshop
Password Managers
Password Manager:
A tool that produces randomly generated passwords and stores thems securely, allowing you to have a different password for each login. This makes your life easier and more secure simultaneously.
How does it make my life more secure?
Using the same password for every login is a bad idea. Sites get hacked and passwords get leaked. If you’re using the same password on Instagram that you use for your email and banking, those logins are also compromised.
How does it make my life easier?
It’s impossible to remember a different password for the hundreds of logins you have. A password remembers them for you.
What password manager should I use?
2 Factor Authentication
2 Factor AUthentication (2FA):
Requires you to enter a randomly generated PIN after successfully entering your password. PIN changes every 30 seconds.
If you can help it, don’t use text messages for 2FA.
What 2FA app should I use?
Free: Duo Security, Google Authenticator, Authy, tons more options
Last resort: Text message
Password managers and 2FA are not bullet proof
Won’t protect from physical attacks or more sophisticated attackers.
Who is watching me online?
Who is watching me online?
Advertisers. Government. Internet Service Providers. Hosting Providers.
Every website you visit, you are being tracked.cnn.com Ad Trackers
cnn.com 3rd Party Trackers
Usefool tool:
Blacklight by the Markup.
Today we’ll concentrate on:
Advertisers. Internet Service Providers.
The methods discussed today will help with the others, but we’ll dive into more advance techniques in the next workshop.How can I evade who is watching me online?
Advertisers
The most effective things you can do against advertisers.
- Use Firefox
- Install Privacy Badger
Firefox
Download at firefox.com.
Privacy Badger
Download at privacybadger.org.
What is “Do Not Track”?
What is “Global Privacy Control”?
Awesome. How do I do this on my phone?
Install DuckDuckGo Privacy Browser.
DuckDuckGo Privacy Browser blocks all ad trackers, social trackers, and 3rd party cookies. It also leverages Global Privacy Control.
Make it the default browser on your phone, today!
Reminder: You should be using DuckDuckGo as your default search engine as well.
How can I evade who is watching me online?
Internet Service Providers
Your Internet Service Provider (ISP) can see the destination of all your internet requests and can legally sell that to advertisers.
How can I evade my ISP?
Virtual Private Network (VPN)
What’s a VPN?
What’s a VPN?
What VPN should I use?
There are sooooooo many VPNs out there. Some are devious, some are honest.
What VPN should I use?
The only two that have been proven trustworthy are Private Internet Access and ProtonVPN.
Next level: Use TOR.
We talked a little bit about this in 101 and will talk a lot more about it in the 200 series.
In the next workshop, Anti-surveillance 201, we’ll go over more advanced techniques.
Thanks
@cpcscc_
@cpcscc
@cpcscc