Privacy

A reminder to leave a negative review for the apps that force you to use google play services or completely don't work on custom android ROM's.

https://play.google.com/store/apps/details?id=com.smart_id This was the app. A lot of banks use it here in Lithuania for logging in, confirming transactions.

Internet shutdowns are devastating for human rights. We can’t rely on tech oligarchs to save us, especially when these same companies and governments are the ones to sever our access to the internet and telecommunications. This is why it's important to set up communication mechanisms before a disaster happens.

Peace and data security be upon you all.

This is my German-language site on Codeberg:

https://aurora-shine.codeberg.page/no-google-track/

It covers Google's abuse of power, Project Nimbus, and more. I also list alternative browsers and search engines, complete with pros and cons. I show you how to block Google services using uBlock Origin and strengthen your browser using the hidden about:config menu. The entire text is in German, but I hope automatic browser translation works well enough for you to understand. If you have questions, feel free to message me ( @AuroraShine@lemmy.ml)

By Developer @AuroraShine@lemmy.ml

A recently discovered bug in Android 16 allows any app to leak traffic outside the VPN tunnel.

The bug was reported to the Android Security Team, but was closed as Won’t Fix (Infeasible) [...] In contrast, GrapheneOS, a security-focused Android-based OS, quickly patched the issue in its codebase.

A mitigation is possible, but is quite technical in that it requires USB debugging to be enabled on the device in order to run the following Android Debug Bridge (adb) commands:

adb shell device_config put tethering close_quic_connection -1

adb reboot

I am trying to choose an email provider, to use with my identifying accounts (like banks, gov ids, etc.). I feel that emails for such cases do not need to be end-to-end encrypted, since most information would already be present with banks, gov, etc.

So I was looking at non-E2EE emails - Mailbox and Posteo.

• Between Posteo and Mailbox - which one do you use / is better in terms of privacy?

I noticed that both of these are hosted in Germany. With rise in popularity of right wing party, a bunch of stuff around chat control and verification, and even normal German government support for Israel, I was wondering whether I should look for other solutions hosted elsewhere. Or use Proton / Tuta instead?

Also, I am not sure if any of these companies support right-wing or Israel themselves?

Do you have any suggestions regarding this?

https://archive.ph/s3jcT

cross-posted from: https://retrofed.com/c/unitedkingdom/p/974999/nhs-to-grant-palantir-contractors-unlimited-access-to-patient-data

A bit of fun: throw boulders at the tech bros!

What high score can you get? (It gets progressively harder - they appear for shorter and shorter times - and the game finishes when they are too fast). You can play it on your mobile phone too.

We don't condone violence! This is just a bit of 8-bit fun.

TLDW:

• Don't trust random USB ports or cables – Public ports can steal your data (juice jacking), and malicious cables like the OMG cable look identical to normal ones but contain a hidden computer that can remotely attack your device.

• Your car shares more than you'd expect – When you plug your phone into a vehicle, it can pull contacts, messages, and other data, which may then get shared with manufacturers, third-party services, and data brokers.

• Built-in protections are easy to screw up – Running outdated software makes attacks more likely. Plus, you might accidentally tap "trust" on a prompt, or be too lazy to switch back from "data" to "charge only" mode, leaving you vulnerable.

• USB data blockers physically sever the data pins – They only pass power, completely blocking any data connection at the hardware level so nothing can flow in or out. Cheap and simple.

I have a Dreame PCB breakout adaptor for Valetudo. It's a spare, not soldered.

I don't have a button but I should have the other parts needed.

Free to whomever needs it within Canada. I'll ship it, send me a private message. :)

Also to those more tech savyy than me wants to cross post this post for more visibility, that would be great. (Yes I see the irony.)

Contact @MakingWork@lemmy.ca

Google's reCAPTCHA service is reportedly broken for users on de-Googled Android devices, raising accessibility and privacy concerns.

You might find this write-up on the EU age verification plans interesting. It links the actual EU plans with quotes from them, too.

I lot of the hostnames or IP addresses that your android devices connect to without your direct knowledge or consent(1) are hard to find anything relevant about, except for the fact that Google owns a lot of the domains and IP ranges. This article helped me a lot when deciding which end points to block(2).

(1) You have given your consent, albeit unknowingly, since the EULAs are purposefully written so that the end user has a hard time understanding it.\
(2) In my case, with a systemless hosts file using Magisk and AdAway

Everyone has a unique writing style, word choice, sentence structure, punctuation habits and that can be used to identify them. Lingunymous rewrites your text using a local LLM to mask these patterns, making it harder to attribute writing to a specific individual.

Use cases include:

• Protecting anonymity when publishing sensitive or controversial content
• Evading authorship attribution and stylometric analysis
• Separating your personal writing fingerprint from pseudonymous accounts