I know there are plenty of software missing from here. This is just a fun infographic I made, no need to take it seriously :)
Pretty sure banks have a pretty good track record of “keeping your money safe”. Why the fuck would anybody trust banks to keep their money safe I’d they can’t keep your money safe?
I don’t really understand why that statement is even on there?
Unless you mean to argue some anonimity point, which I could agree with considering e.g. Monero would be more anonymous than a bank.
But safe? I’d say the bank is quite safe to store money.
Lineageos is good enough and runs on most devices.
And isn’t Nitrokey a blackbox? At least there are multiple Open Source implementations and some even sold as Open Hardware. Yubikey and so on.
It’s not about what you use, but how you use it. PEBCAK Almost 100% privacy and security is offline at home, reading a book, if you bought the book with cash and not online and/or with credit card.
You can use Google, Microsoft, Apple and co however you want, the problem is, what you use
What anubis has to do with privacy or security?
Nothing, op confused anti AI with anti tracking.
It stops bots from crawling your sites.
crypto currency
Well, unlike Bitcoin, Monero is actually anonymous, and sometimes you gotta make payments online.
You can’t do it privately with your card.
This is the correct initial reaction but given the extent to which the US monitors every single transaction everyone makes, it’s getting awful hard to manage the influx of feral hogs without having them streaming through your door.
But you do know that Tor/VPN is not really privacy, nor security? It hides your IP, but that’s about it. If you still login, and give any information, and that could just be your “fingerprint” you are not anonymous…
I have this bad gut feeling about Signal and Proton, I have no evidence tho.
Maybe it’s because the current administration uses signal to plan acts of war and proton’s ceo is supportive of said administration.
They don’t use Signal though. They use a clone called TeleMessage Signal which logs and archives all their messages on an Israeli server, and which a hacker was able to access before the service was suspended.
You can’t really help if someone forks and misuses software.
Some of those mentioned likely are compromised, but cannot figured out which. The thing, is to diversify our risk and the privacy minded to use different platforms (Proton VPN and Mullvad VPN for instance).
The good news, is that if an agency is compromising something, they will likely won’t use the intel gathered in court cases in order to leave it open to future prey, so that is good for vast majority of users. The very few that are relevant enough should not trust even the genuine privacy tools and resort to enhanced methods and combining methodologies.
My impression, and just impression, is that I would trust **Tuta **more than Proton (and not because Proton’s CEO that many interpreted wrong anyways) On VPN… a tad more trust on Mullvad. Signal, I would not use it for high stakes communication but OK for most people. GrapheneOS seems okay and we know for sure it does not leak info on a daily basics, but we have to be careful, it could have an obscure code dormant waiting for a trigger or could easily send data to an unsuspected server, Ironically, if I were Snoden, I would feel more comfortable using a Huawei Mate with HarmonyOS than a Pixel 9 with GrapheneOS… of course China spies too massively, but it has far less beef with Snoden than the US does, therefore not of much interest to Beijing.
Remember that overwhelming majority of FOSS goes without any audit, let alone a comprehensive one. This is what some trusted party should put AI checking ASAP all the FOSS out there!
Very interesting insights. Funnily I use all of the services you cautiously recommend, including GrapheneOS, but not HarmonyOS, hard pass on that one. As a German I am also legally required to prefer Tuta. :) I still have that OG 1€/Month contract.
Edit: Your last point is a good idea, although I think the more popular an open source app is, the less likely it is to be malicious. A lot more eyes on it and the xz backdoor was caught pretty much immediately.
“Tr0ub4dor&3 is my password for everything.”
math is always stronger than marketing
Well, usually not. Unfortunately.
I don’t think anyone thinks WhatsApp is secure
Security isn’t the size of the app, it’s how you use it :)
Security isn’t the size of the app
This could have two meanings, one of which I figure I should address:
- If you mean “size of the userbase for an app,” then yes, even projects that fly under the radar are much more secure than “mainstream” options. That’s the main purpose of this infographic.
- If you mean “physical size of the app on the infographic,” the reason they’re different sizes is simply because they were hard to fit on one page, and this made it look nice ;)
Same email for everything is fine if you use subaddressing. My email service, Port87, makes it super easy.
Any article or post of how embrace the use of some of those technologies?
Good question! There are hundreds of good resources, some of which include Privacy Guides and my friends at Punching Up Press (they have a lot of other good infographics). Naomi Brockwell TV is a YouTuber with some great beginner friendly videos to guide you step by step. Let me know if you’re interested in others!
Thank you :D I’m going to check those links this weekend.
I chose Nord VPN based on several posts I read on here (Lemmy). Why are Proton and Mullvad better choices?
I just think the most trustworthy VPN is the one no one is talking about. NordVPN is a sponsor on every single YouTube video. They are mainstream. I don’t trust mainstream. Mullvad has proven they don’t keep logs. They are simple. They don’t even have accounts. A 16 digit number is all you get to login. No pass. No email. No ties to you. You fill your subscription like quarters in a meter.
Proton VPN and Mullvad VPN are both open source, meaning their code can be publicly audited to make sure they’re upholding their standards of privacy and security. Furthermore, Proton VPN offers a free tier. These are the main 2 reasons. NordVPN only protects your privacy against other websites, not NordVPN themselves. Hope this helps! Let me know if you want more details.
Edit: Mullvad VPN can also be paid for in cash/Monero, and they don’t ask for any personal information to use it (not even a username!)
Being open source doesn’t uphold a lot of standards of privacy and security for VPNs. It’s not useless, but the most common worry about VPNs is traffic logging, and open source apps do nothing to prevent this since it’s server side. ProtonVPN and Mullvad VPN don’t protect from themselves, and they can keep logs. The reason they’re commonly recommended is that they’re more trusted in the privacy community in general. Obscura VPN and Nym VPN do mostly protect from themselves because they’re a two-hop VPN. In the case of Obscura VPN, it’s a first hop through their servers, and a second hop through Mullvad’s. So to associate your traffic with your IP address, Obscura and Mullvad would need to cooperate, which is quite a bit less likely than a single VPN operator logging user traffic.
I don’t think there’s anything wrong with Nord. They are kind of disliked here because they’re not open source and they did a lot of commercials not long ago. Despite all that, they’ve publicly reported multiple third-party audits of their code, which I think is a good thing.
![[OC] What People Think Privacy/Security Is](https://lemmy.ml/pictrs/image/30cec389-1586-4849-84ac-d8a9f4f0df5b.png){kind=link}