The Privacy, Security, & OSINT Show – Episode 127
Posted on June 21st, 2019
EPISODE 127-Back to Privacy
This week I return to news and commentary about the latest privacy concerns and present a dark web OSINT tip.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Stitcher / Spotify
SHOW NOTES:
BACK TO PRIVACY:
Bank Fail
Inline Scripts: https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/
Anonymous Apple Purchase Update
Apple Sign In: https://techcrunch.com/2019/06/03/apple-sign-in-privacy/
Ebay Data Removal: https://www.ebay.com/help/account/changing-account-settings/closing-account?id=4199
JoinToken Failure: https://jointoken.com
https://globalnews.ca/news/5347720/weight-loss-grants-customer-health-information/
OSINT:
https://darksearch.io
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 127
The Privacy, Security, & OSINT Show – Episode 126
Posted on June 14th, 2019
EPISODE 126-A Bad Week for OSINT, Great for Privacy
This week I discuss the disappearance of many online investigation resources such as Facebook Graph, Pipl (Free), and numerous custom OSINT search tools. On the flip-side, I talk about how this is beneficial toward privacy.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
A BAD WEEK FOR OSINT:
FB Research: https://gist.github.com/nemec/2ba8afa589032f20e2d6509512381114
Tools: https://sowdust.github.io/fb-search/
Pipl: https://pipl.com/corp/next-step-for-pipl/
HIBP: https://www.troyhunt.com/project-svalbard-the-future-of-have-i-been-pwned/
OSINT:
http://inteltechniques.com.ozx.co/
http://img.sur.ly/thumbnails/620×343/i/inteltechniques.com.png
https://today-date.com/
http://today-date.com.ozx.co/
https://www.easycounter.com/report/today-date.com
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 126
The Privacy, Security, & OSINT Show – Episode 125
Posted on June 7th, 2019
EPISODE 125-What Happened?
This week I discuss the attacks toward the site which forced removal of the online OSINT tools.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
Discussion
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 125
The Privacy, Security, & OSINT Show – Episode 124
Posted on May 31st, 2019
EPISODE 124-Does DNS Matter?
This week I am joined by Jim Nitterauer to discuss DNS services and how it may protect your internet traffic.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
NONE
DOES DNS MATTER?:
@jnitterauer
jim@creativedata.net
https://www.youtube.com/watch?v=Wl-M007tFO0
DNS Risks
Browsers using embedded DNS
Provider Comparison
Google 8.8.8.8
Cloudflare 1.1.1.1
Quad9 9.9.9.9
OpenDNS 208.67.222.222
DNS Encryption:
DNS over HHTPS vs DNS over TLS
Firefox Configurations:
network.trr.mode from 0 to 2.
network.security.esni.enabled from False to True
network.trr.uri (CF by default)
Test:
https://www.cloudflare.com/ssl/encrypted-sni/
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 124
The Privacy, Security, & OSINT Show – Episode 123
Posted on May 24th, 2019
EPISODE 123-Researching & Acquiring Data Breaches & Leaks
This week my guest Jesse and I talk about researching data breaches and leaks, and the conversation goes much deeper than any other discussion I have had on this show about the topic. This should offer some insight for both the privacy crowd and the OSINT enthusiasts. I also discuss the latest privacy news since the last show.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
https://krebsonsecurity.com/2019/05/account-hijacking-forum-ogusers-hacked/
https://www.wired.com/story/rants-and-raves-square-emails/
https://www.theregister.co.uk/2019/05/08/airbnb_host_jailed/
https://blog.mozilla.org/firefox/block-cryptominers-with-firefox/
https://blog.mozilla.org/firefox/how-to-block-fingerprinting-with-firefox/
https://medium.com/coinmonks/the-most-expensive-lesson-of-my-life-details-of-sim-port-hack-35de11517124
RESEARCHING & ACQUIRING DATA BREACHES & LEAKS:
Breach vs Leak
Database comparisons
Service Comparisons:
https://www.shodan.io/
https://www.binaryedge.io/
Search Strings:
https://www.shodan.io/search?query=product%3Aelastic+port%3A9200+
https://www.shodan.io/search?query=product%3AMongoDB+
Demo:
https://www.shodan.io/search?query=product%3Aelastic+port%3A9200+instagram
http://3.8.0.106:9200/instagram/_search?size=100
CFAA:
https://en.wikipedia.org/wiki/Computer_Fraud_and_Abuse_Act
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 123
The Privacy, Security, & OSINT Show – Episode 122
Posted on May 10th, 2019
EPISODE 122-Listener Questions
This week I discuss the Firefox Addons certificate fiasco and tackle numerous listener questions about privacy, security, and OSINT concerns.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
Firefox Addons Issues:
https://hacks.mozilla.org/2019/05/technical-details-on-the-recent-firefox-add-on-outage/
PRIVACY QUESTIONS:
You mentioned a network-wide ad blocker last week. Have you tried Pi-Hole? If so, any thoughts?
Did you know that Brew for Mac has Google analytics embedded into it? Does that change your opinion of using it?
if someone went through a complete opt out process and removed everything connected to their home address, then began using a PO/CMRA/PMB for all official mail, would you recommend to resubmit the opt outs for the PMB address?
Purism recently announced their ‘Google replacement’ concept, Librem One. What are your thoughts?
You talked about some researchers accesing an open mongodb or elastic “database”, isn’t this illegal under CFAA? One thing is finding them and alerting the company but another thing is actually going through the “files” and downloading the data. Can you please talk about this?
I was wondering if you had any general tips for someone at my age. (18-24). I find that I do not appear on many (if any at all) of the OSINT resources that you have on your site, probably as a result of my age. I have become a legal adult only a few years ago, and I want to take advantage of this fact. How can I PREVENT myself from appearing on any of these databases etc.
Someone I know works in the small loan industry and they scolded me for not having a social media presence, because they take social media into account when approving loans. How likely is this to be a consideration in various sectors like finance in the US?
When traveling abroad, should I take a travel-only phone with me?
I use the Bluetooth feature on my car stereo. Is this a privacy risk?
I understand the use of a VPN to protect one’s traffic from that “hacker in a coffeeshop” idea. But why use one at home? If you fear that your ISP is watching your traffic, aren’t you just handing that power over to the VPN company now to do the same?
My estate planning attorney checked out titling our home with a Living or Land Trust. Unfortunately, in my county if you title in either way then you have to forfeit the homestead tax credit. This credit is a big portion of figuring the property taxes you owe. If you remove the credit you end up paying a lot more taxes – which I don’t have. Is there some other trick or way to still get the homestead tax credit yet have one’s primary home be titled in a Living or Land Trust?
As a listener with a family and children, being able to call 911 at home and when in public is a priority. How do you handle that situation with MySudo?
OSINT QUESTIONS:
While currently working on developing my OSINT skill set, I often wonder what would be 3 things that any good OSINT investigator should be able to do.
Do you have any preference in virtual currency search options? It seems there are a ton of sites to search wallets and BTC addresses but all have different results.
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 122
The Privacy, Security, & OSINT Show – Episode 121
Posted on May 3rd, 2019
EPISODE 121-This Week in Privacy & OSINT
This week I discuss my recent exposure using a credit card at a coffee shop, United Airlines’ announcement to cover the cameras facing every passenger, another open database leak, the potential malware present on Dell computers, private baby names (seriously…), and five OSINT tips for online investigations.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
Mark Z.
THIS WEEK IN PRIVACY:
Square Readers
https://www.forbes.com/sites/kateoflahertyuk/2019/04/30/data-of-80-million-americans-exposed-in-mystery-database-mega-leak
https://www.shodan.io/search?query=product%3Aelastic+port%3A9200+nal
https://d4stiny.github.io/Remote-Code-Execution-on-most-Dell-computers/
https://ppw.kuleuven.be/okp/_pdf/Laham2012TNPEW.pdf
https://www.emeraldinsight.com/doi/abs/10.1108/02683940810849648
https://www.aeaweb.org/articles?id=10.1257/0002828042002561
THIS WEEK IN OSINT:
https://emailrep.io/
https://leadferret.com/search
https://vincheck.info/free-license-plate-lookup/
https://www.vehiclehistory.com/license-plate-search/
https://inteltechniques.com/buscador/index.html
LISTENER QUESTIONS NEXT WEEK:
privacypodcast@protonmail.com
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 121
The Privacy, Security, & OSINT Show – Episode 119
Posted on April 12th, 2019
EPISODE 119-How to Find Hidden Recording Devices
This week, my guest is Tom Gibbons, and he will explain the best ways to locate hidden recording devices such as microphones and cameras. Also, I have a slew of recent privacy news and a new OSINT tip to discuss.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 85 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
Apple Update
https://www.forbes.com/sites/thomasbrewster/2019/04/10/what-happened-when-the-dea-demanded-passwords-from-lastpass/#10f93bdb7ebe
https://www.zdnet.com/article/cybercrime-market-selling-full-digital-fingerprints-of-over-60000-users/
https://www.bombitup.net/
https://www.foxnews.com/tech/thousands-of-amazon-workers-listening-to-alexa-recordings-hear-personal-information-even-potential-crimes-report
https://news.sky.com/story/family-discovers-hidden-camera-livestreaming-in-airbnb-11684049
HOW TO FIND HIDDEN RECORDING DEVICES:
Tom Gibbons
http://www.tscmnet.com/
Thermal Imaging Camera: https://amzn.to/2UJF70w
Network Scanning Apps:
https://itunes.apple.com/us/app/blue-hound/id1067368392?mt=8
https://play.google.com/store/apps/details?id=com.overlook.android.fing&hl=en_US
OSINT:
https://www.carvana.com/trades/new?licenseplate=HACKER&state=CA
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 119
The Privacy, Security, & OSINT Show – Episode 118
Posted on April 5th, 2019
EPISODE 118-How Neighborhood Watch Watches You
This week I call a company which provides neighborhoods with license plate readers, plus a new email breach notification API in the OSINT segment.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 85 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
New (Cheaper) Silent Pocket Faraday Bags:
https://silent-pocket.com/discount/IntelTechniques
Webinar now offline
HOW NEIGHBORHOOD WATCH WATCHES YOU:
Discussion & Call
OSINT:
https://portal.spycloud.com/endpoint/enriched-stats/test@test.com
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 118
The Privacy, Security, & OSINT Show – Episode 117
Posted on March 29th, 2019
EPISODE 117-This Week In Privacy
This week I discuss the latest privacy news and threats including the new Apple credit card, more spy cameras in hotels & Airbnbs, another family tracking DB leak, and how to make $122M sending out bogus invoices. Plus, an “Offense/Defense” style of the OSINT section returns with nextdoor.com. Finally, Listener questions tackle Walmart surveillance video and the removal of sponsors for the show.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 85 hours of content, with more added every month. Today, I posted the video from yesterday’s webinar about email address investigations. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
Ron Swanson
Webinar Catastrophe (part II)
https://inteltechniques.com/webinar.html
THIS WEEK IN PRIVACY:
https://gizmodo.com/the-apple-card-is-great-at-privacy-but-mediocre-overall-1833582689
https://www.theatlantic.com/technology/archive/2019/03/what-happens-when-you-find-cameras-your-airbnb/585007/
https://www.cnn.com/2019/03/20/asia/south-korea-hotel-spy-cam-intl/index.html
https://boingboing.net/2019/03/24/evaldas-rimasauskas.html
https://techcrunch.com/2019/03/23/family-tracking-location-leak/
https://amzn.to/2ASCmPs
OSINT:
LISTENER QUESTIONS:
Q: The self checkout at Walmart displays video of customer. Is this recorded and kept?
Q: I don’t hear you recommending Privacy.com any more, should I read more into this? Should we be concerned?
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
PIA (Affiliate):
https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 117