Discover and read the best of Twitter Threads about #opsec
Most recents (3)
On July 22nd Wikileaks released 22000 DNC emails that had been previously hacked by Russian GRU agents. On Oct 7th Wikileaks dumped hacked John Podesta emails soon after the seemingly damaging Access Hollywood tape came out where Donald Trump talked about sexual misconduct @ollie 
3million tweets from the Russian Internet Research Agency were recently archived & made available by the site @fivethirtyeight. We wanted to look at particular hashtags related to Green Party Candidate Jill Stein and #DemExit
fivethirtyeight.com/features/why-w… @ollie #infosec #osint #opsec
fivethirtyeight.com/features/why-w… @ollie #infosec #osint #opsec
So for the first time in quite a while a newcomer hashtag had top spot on the #Hamilton68 Dashboard -- #walkaway. We remembered seeing this hashtag in the past few weeks but didnt really know what it was or follow up on it. #infosec #opsec dashboard.securingdemocracy.org
The background story on this hashtag #walkaway is a little strange & the number of bots, trolls, & fake testimonial promoting this hashtag is even stranger. Here's an example of a completely fake tweet highlighted by @daveweigel #opsec #infosec
We decided to look retrospectively at our own reverse engineered #Hamilton68 data. This is a wordcloud of 22893 tweets from our main Hamilton68 troll subset going from June 24th until now & #walkaway takes the #1 spot. #infosec #opsec
If you care about your privacy,
You should consider this:
1. Do not use Dropbox. Use @SpiderOak instead. Zero-knowledge, encrypted storage.
2. Do not use Gmail (or the like),
Use @ProtonMail or Countermail.
PGP (control of own keys on latter.) 2FA, keyfiles, etc.
#opsec
You should consider this:
1. Do not use Dropbox. Use @SpiderOak instead. Zero-knowledge, encrypted storage.
2. Do not use Gmail (or the like),
Use @ProtonMail or Countermail.
PGP (control of own keys on latter.) 2FA, keyfiles, etc.
#opsec
3. Do not use Google Search (or @DuckDuckGo, since both are U.S based). Use @StartPageSearch.
4. Always use VPN, even for everyday-surfing. Consider VPN-chains (You->VPN->TOR->VPN)
Provider: zorrovpn.net
5. Do not use LastPass (cloudbased). Use @KeePass (local)
4. Always use VPN, even for everyday-surfing. Consider VPN-chains (You->VPN->TOR->VPN)
Provider: zorrovpn.net
5. Do not use LastPass (cloudbased). Use @KeePass (local)
6. Empty your clipboard automatically, often. Get a program to do it for you. Search it up.
7. Do not use regular USB drives. Use hardware-encrypted drives.
Example: istorage-uk.com/product/datash…
8. Always use FullDisk encryption. For PC = Truecrypt/Veracrypt. OSX = SOL.
#opsec
7. Do not use regular USB drives. Use hardware-encrypted drives.
Example: istorage-uk.com/product/datash…
8. Always use FullDisk encryption. For PC = Truecrypt/Veracrypt. OSX = SOL.
#opsec
