Pages:
Author

Topic: Why beginners should pay attention to their privacy - page 2. (Read 1425 times)

legendary
Activity: 1904
Merit: 1563
Do you have a suggestion of what email service I can use that supports aliases?
I am using simplelogin[1] as my email forwarding/alias services. You can also use anonaddy as an alternative depending on your preferrence. But currently, I am paying for premium on simplelogin for about $30/year.

With premium, you can have unlimited alias, mailboxes, and custom domain if you bought a personalized one from namecheap or any other domain name services. Having unlimited alias means that you can create compartmentalized emails for every services you signed up while having a sense of control to see which companies sold your personal information to third parties because you have what they call a kill switch.

Other than masking your real email account which is more concerned about privacy, I think it serves as an additional layer of security for potential hackers. If they don't know about you, they can't attack you.

Of course, you can have as much email as you want for bitcoin related accounts (if premium).

[1] https://simplelogin.io/
hero member
Activity: 644
Merit: 661
- Jay -
-prune-
Thank you for sharing your privacy journey, it gave me more clarity after reading the first post about the dangers of exposing yourself on the internet. I would be following your steps to achieve a greater level of privacy.
Do you have a suggestion of what email service I can use that supports aliases? I am just learning about it now and plan to start using it.

Great read all through. The reference to "three lettered agencies" in the first post was very amusing and detailing too.
Thank you guys

- Jay -
legendary
Activity: 1974
Merit: 2124
Proud to say that I am making some progress in terms of privacy.

I know these are just small stuff and is considered to be basic for an average bitcoin joe, but hey it's fun doing it.
Average joe needs to be concerned about his privacy in this crypto space where small breach could end up draining your whole funds and it's really good that you are taking a step forward for your privacy in removing the whole private information we share with these online services providers which can be used against us so it's better to switch to some privacy focused services to be safe.

so protonmail is the best then?
It's quite a good option if you seek privacy and security while using the online services as you see most of them asks for mails so proton is best in that case rather then your regular mails and with seed phrase recovery option it's easy to change your password and recover it and save files on your computer but read them about carefully.
legendary
Activity: 1904
Merit: 1563
Proud to say that I am making some progress in terms of privacy.

A few days ago, I began by uninstalling all the programs I rarely use, tweaking or disabling all the unnecessary permissions of the installed apps, removing all the messages and call histories, and fabricating all of my personal data on the accounts I had created years ago before deleting them entirely.

Currently, I am in the process of swtiching the emails I used(gmail) for the services I registered for by moving to privacy-focused email providers and setting up email aliases that will allow me to hide and receive emails without disclosing the real one.It's a pain the ass though, since you'll have to do it individually. And if I may suggest, buying a custom domain from namecheap would be ideal incase the service(simplelogin) shuts down even though it's unlikely.

I am also planning to switch to custom roms, calyxOS for Android and Linux to my computer, sooner when I have all the time to educate myself with regards to this. After that, I would happily create my own node for bitcoin to actually preserve and maintain my privacy in the long run.

I know these are just small stuff and is considered to be basic for an average bitcoin joe, but hey it's fun doing it.
hero member
Activity: 910
Merit: 5935
not your keys, not your coins!
This is why i have no interest in any crypto services out there that usually ask kyc, i rarely use 1 exchange and that is kucoin which i never submitted any of my personal information yet for kyc.
From the very start i only made kyc to my local exchange where i convert crypto to fiat, so far no security and privacy related incident happened to them yet.

I don't know if it's a thing for other but I always use  private mode of firefox when accessing every website mobile or desktop.
So no history or cookies and everything will be saved on those browser and websites plus an ad blocker installed. I'm also a user who wont accept the cookies banner even it's annoying already as long as they will let me browse the website without accepting it.
For no-KYC BTC <> fiat exchanges, consider checking out Bisq.network.

Regarding browsers' private mode, it can help somewhat, but I believe it is more helpful to use containers, disable JavaScript as well as using a proper 'wide spectrum blocker' (https://github.com/gorhill/uBlock/wiki/Blocking-mode) instead of an 'Ad Blocker'.
https://pi-hole.net/ is also something worth checking out, especially if you have a little 24/7 machine running on your network anyway, e.g. for your full node. Just spin up a little VM with PiHole in it and DNS requests to lots of ad and tracker endpoints will be blocked. No matter if these requests come from a browser, a computer program or a smartphone application.
hero member
Activity: 1554
Merit: 880
Notify wallet transaction @txnNotifierBot
This is why i have no interest in any crypto services out there that usually ask kyc, i rarely use 1 exchange and that is kucoin which i never submitted any of my personal information yet for kyc.
From the very start i only made kyc to my local exchange where i convert crypto to fiat, so far no security and privacy related incident happened to them yet.

I don't know if it's a thing for other but I always use  private mode of firefox when accessing every website mobile or desktop.
So no history or cookies and everything will be saved on those browser and websites plus an ad blocker installed. I'm also a user who wont accept the cookies banner even it's annoying already as long as they will let me browse the website without accepting it.
full member
Activity: 1792
Merit: 186
so protonmail is the best then?
legendary
Activity: 1974
Merit: 2124
that's the best solution, no KYC at all, if it's not worth doing well then it's not worth doing at all, atimes i ask myself that why should someone even have to see through my transactions since they can't perform any alteration to it, it's of no need to them at all except for those under their KYC surveillance, i think i will go along with the preferable option to pass through chipmixer for more privacy.
Do you think they will leave you without doing KYC? Like you can make small transactions without going through these KYC norms and most of the exchanges have daily limit for it but don't believe them that they can't alter your transaction and restrict you from making transactions.The exchange have your database and possess the keys for your funds so do you think KYC matters in that case a lot?

A small but important correction here: If you are using a centralized exchange in which you store your coins on their wallets, then regardless of whether or not you have completed KYC, they can "alter" your transactions prior to them being made. These centralized exchanges aren't just spying on your previous and future transactions, but also determining whether or not you are even allowed to make transactions in the first place, and who you are and are not allowed to send your coins to. All centralized exchanges do this. The difference is whether they can link all that activity to your real identity via KYC, or whether they just sell your data alongside your email address and let some data broker make the link instead.

Avoiding KYC is obviously smart, but avoiding centralized exchanges entirely is even better.
The exchanges have all the restrictions they can put on you like banking services asking for all the documents to prove the ownership of your funds and then sell your data to government agencies and on dark web.

1) Coinbase having restrictions on Canada users above $1000 is well known to us that for transactions bigger then it you have to disclose the recipient details to them with full documentation so is this acceptable to users without KYC?

2) Coinbase disclosing in it's SEC filing that in case of insolvency user funds can be used to pay loans so what safety you expect from these exchanges?

At the moment you think of keeping your coins on these CEX your end up your privacy so make sure to avoid them if you can.
member
Activity: 498
Merit: 56
Buzz App - Spin wheel, farm rewards
That's why it's important for us beginners to watch things like this, considering that privacy must really be guarded for security, giving identity doesn't always need to be done openly, although sometimes some people think it's not important.

The scammers will take advantage of this privacy to carry out activities that are not needed, Thank you very much for this short video that is quite useful, you deserve to be called a master for beginners?
newbie
Activity: 4
Merit: 0
Loved this! I just posted a comment about one of John Oliver's shows!  Cheesy

Thank you for the input, btw!
legendary
Activity: 2268
Merit: 18771
that's the best solution, no KYC at all, if it's not worth doing well then it's not worth doing at all, atimes i ask myself that why should someone even have to see through my transactions since they can't perform any alteration to it, it's of no need to them at all except for those under their KYC surveillance, i think i will go along with the preferable option to pass through chipmixer for more privacy.
A small but important correction here: If you are using a centralized exchange in which you store your coins on their wallets, then regardless of whether or not you have completed KYC, they can "alter" your transactions prior to them being made. These centralized exchanges aren't just spying on your previous and future transactions, but also determining whether or not you are even allowed to make transactions in the first place, and who you are and are not allowed to send your coins to. All centralized exchanges do this. The difference is whether they can link all that activity to your real identity via KYC, or whether they just sell your data alongside your email address and let some data broker make the link instead.

Avoiding KYC is obviously smart, but avoiding centralized exchanges entirely is even better.
legendary
Activity: 1974
Merit: 2124
Different emails for different purposes. You should absolutely not be using the same email address you use for your utility bills to be signing up to bitcoin exchanges, and you should absolutely not be using either of those email addresses to register for scammy altcoin airdrops or similar. Whenever possible, use entirely disposable email addresses you can trash after they have served their single purpose. And of course, different passwords for each one.
Yes absolutely we should be using different mails for different purposes and it should not be like that you are using the same mail you have logged on your device on all places which is risk exposure.Creating new mails isn't hard so you should be having unique one's for the work you are doing and more security features enabled on the important ones.

Speaking of password then creating one yourself and then remembering it is hard for so many mails so pasword managers are good option in these case and can be utilised effectively to assist you and generating strong password.


If you are storing your coins with a third party, then you already have zero privacy there.
Sending them on exchange or trusting any third party software is already like giving them full access for your funds and control over your privacy also.


ProtonMail now offer account recovery using 12-word seed phrases. Go to Settings -> Recovery, then scroll to the bottom and hit "Generate new recovery phrase".
Was really not aware about this so thanks for letting me know about it and have found about the same that proton mails also generate random 12 words seed for recovery and we can also download recovery file but that should be stored on safe place so in case you need to change your password you will need that file to be uploaded.



That's nice feature addition to proton recovery methods but remember still you need to safely backup the recovery phrase and don't open recovery file.But you have option to increase your security with it.
hero member
Activity: 714
Merit: 521
The most disturbing part is the apparent disregard by the so-called governing bodies.
Not just disregard, but active encouragement. In the US at least, government agencies are not allowed to enter your premises and search your belongings or your devices without a warrant, but there are absolutely no laws preventing them from buying your data from data brokers, blockchain analysis companies, or other third parties.

you're right, using a centralized exchange is thesame as giving the government or any third party the search warrant to invade ones privacy at any point in time just as that will be required by the security agencies in real live, so i see using CEX as an automated warrant one gives a third party unaware to have certain control over his financial digital assets

Like dangerous KYC. Once linking your coins to KYC data, these transactions are tied to your name. Even mixing them afterwards doesn't change that. All transactions are stored forever in the public blockchain.
Exactly this. You can pass your coins through ChipMixer so no one knows where they end up, but if those coins were bought from a KYCed account then anyone with access to that data will still know you bought x amount of BTC, even if they don't know where it is now. The only safe KYC is no KYC at all.

that's the best solution, no KYC at all, if it's not worth doing well then it's not worth doing at all, atimes i ask myself that why should someone even have to see through my transactions since they can't perform any alteration to it, it's of no need to them at all except for those under their KYC surveillance, i think i will go along with the preferable option to pass through chipmixer for more privacy.
legendary
Activity: 2268
Merit: 18771
The scammers will have full access to your mails and then start the phising scam attempt with fraud emails and you will be giving them away your funds with entering your seed phrases.
Different emails for different purposes. You should absolutely not be using the same email address you use for your utility bills to be signing up to bitcoin exchanges, and you should absolutely not be using either of those email addresses to register for scammy altcoin airdrops or similar. Whenever possible, use entirely disposable email addresses you can trash after they have served their single purpose. And of course, different passwords for each one.

Mostly these things occur when your are storing your coins on exchange and they ask for these KYC norms ending up your privacy
If you are storing your coins with a third party, then you already have zero privacy there.

Proton is really cool alternative but remember the password as recovering it is hard because it's not your normal email that can be reset with anyone.
ProtonMail now offer account recovery using 12-word seed phrases. Go to Settings -> Recovery, then scroll to the bottom and hit "Generate new recovery phrase".
legendary
Activity: 1974
Merit: 2124
Very important topic, it's quite concerning how personal data is harvested everywhere just to be sold later. Even sold to some shady scammers or criminals on the darknet. As long as it's profitable, this will be done and selling data will get more profitable in the future.

Still have doubts that it's not an issue when your data is leaked / sold to the darknet?
Ledger's hack of personal user data resulted in people getting threats to be robbed:
This issue has been prevalent over the dark web from long time and your personal information is being sold for different illegal activities and we are aware about these issues so that's why we need to remain anonymous and there are different ways in which security is compromised and this thread throws light on it.

Ledger hack is another example that like they have your personal data outsource to third party software but it's really risky as we have seen some Employee Id being compromised of Mailchip and your data is at risk.The scammers will have full access to your mails and then start the phising scam attempt with fraud emails and you will be giving them away your funds with entering your seed phrases.So there is risk in these ways also.

I really like Bitcoin's public, pseudonymous nature and the fact, that it's up to us to protect our privacy. But at the same time we should be aware that it's crucial to protect our privacy.
Like dangerous KYC. Once linking your coins to KYC data, these transactions are tied to your name. Even mixing them afterwards doesn't change that. All transactions are stored forever in the public blockchain.
Once a criminal knows about your (high) Bitcoin balance and your physical address, it can end very badly, when the data is sold to local criminals in your area.
Mostly these things occur when your are storing your coins on exchange and they ask for these KYC norms ending up your privacy and then also they will have eyes on you putting restrictions on your account to withdraw the funds.

Not just disregard, but active encouragement. In the US at least, government agencies are not allowed to enter your premises and search your belongings or your devices without a warrant, but there are absolutely no laws preventing them from buying your data from data brokers, blockchain analysis companies, or other third parties.
The NSA related movies are inspired from these things only and they want to keep track record of everyone with surveillance and you can see most of the exchange providing them these data of the users and whole work is done by them but you know the reality.Like the last news of Binance selling data to Russian agencies was in talks.

If you can, run your own email server. If you cant, use ProtonMail. Use PGP to encrypt everything.
Proton is really cool alternative but remember the password as recovering it is hard because it's not your normal email that can be reset with anyone.

legendary
Activity: 2268
Merit: 18771
The most disturbing part is the apparent disregard by the so-called governing bodies.
Not just disregard, but active encouragement. In the US at least, government agencies are not allowed to enter your premises and search your belongings or your devices without a warrant, but there are absolutely no laws preventing them from buying your data from data brokers, blockchain analysis companies, or other third parties.

What email woul dyou recommend besides google?
If you can, run your own email server. If you cant, use ProtonMail. Use PGP to encrypt everything.

Like dangerous KYC. Once linking your coins to KYC data, these transactions are tied to your name. Even mixing them afterwards doesn't change that. All transactions are stored forever in the public blockchain.
Exactly this. You can pass your coins through ChipMixer so no one knows where they end up, but if those coins were bought from a KYCed account then anyone with access to that data will still know you bought x amount of BTC, even if they don't know where it is now. The only safe KYC is no KYC at all.
legendary
Activity: 2226
Merit: 6947
Currently not much available - see my websitelink
Very important topic, it's quite concerning how personal data is harvested everywhere just to be sold later. Even sold to some shady scammers or criminals on the darknet. As long as it's profitable, this will be done and selling data will get more profitable in the future.

Still have doubts that it's not an issue when your data is leaked / sold to the darknet?
Ledger's hack of personal user data resulted in people getting threats to be robbed:

Quote
In a Reddit post, a user with the account name Crypthomie shared the email coming from the blackmailers. According to a “Darrin Burlew”, he knows that this user holds a lot of cryptos and will “share all his info with the local thieves” if his demands are not met.

The blackmailer even furthered his threat by saying, “If I happen to do this, are you able to imagine all the possible consequences that can occur to you and your loved ones?”

Crypthomie also mentioned that his dad’s name, address, and phone number were written on the email he received.
https://coinquora.com/ledger-users-face-extortion-and-threats/
https://www.reddit.com/r/CryptoCurrency/comments/kx9sy0/my_dad_just_received_a_death_threat_on_his/

I really like Bitcoin's public, pseudonymous nature and the fact, that it's up to us to protect our privacy. But at the same time we should be aware that it's crucial to protect our privacy.
Like dangerous KYC. Once linking your coins to KYC data, these transactions are tied to your name. Even mixing them afterwards doesn't change that. All transactions are stored forever in the public blockchain.
Once a criminal knows about your (high) Bitcoin balance and your physical address, it can end very badly, when the data is sold to local criminals in your area.
full member
Activity: 1792
Merit: 186
With the issue of privacy today it is more complicated every day, for my part, as I am not a specialist in computer science or cybersecurity, I use very simple techniques, but they can be useful to many.
You've made a good start, but you can go further:

- Multiple email addresses, which do not coincide with different platforms. Example my personal Gmail account does not match my Gmail account on my cell phone. (I know that the same if they wanted to link me).
Multiple email addresses is a must, but avoiding Google is also a must. You should considering moving to a more privacy respecting provider. Even better, use different providers for the different addresses to prevent a single provider linking your accounts via IP addresses, browser fingerprinting, etc.

-Never use chrome (except when there is no other option left for some compatibility).
If you need to use a chromium based browser for compatibility issues, then the best one to use is Ungoogled Chromium.

Most are more dangerous than walking without one. There is a documentary (by a Spaniard) that shows how most of the (paid) VPNs belong to the same person and they all have ties to the IDF in Israel.
VPNs serve some specific purposes and uses, but anonymity is not one of them. Consider Tor instead.



What email woul dyou recommend besides google?
copper member
Activity: 2338
Merit: 4543
Join the world-leading crypto sportsbook NOW!
That is an incredibly cringy video, and not because it's John Oliver.  The most disturbing part is the apparent disregard by the so-called governing bodies.  The surveillance state is bad enough without corruption making harder to secure our privacy.  I can't help but think that the rich are going to keep getting rich by ensuring the powerful gain more power.  That's the tradeoff and we're the chattel.
hero member
Activity: 812
Merit: 560
Does this also apply to online surveys? Cause I have always partook in many surveys and have provided many informations and data about my self and economic conditions alike.

Of course that's oart of all that is being said, you jave to caution yourself to the extent of how you reveal your private lives online, and to the matter of fact, going by surveys and other related things like that is just a waste of time and no reward attached than unrealistic promises, most are scam, they got your data, intrude into your privacy and spy on you.

Does this also apply to online surveys? Cause I have always partook in many surveys and have provided many informations and data
Secondly, does this article implies that I shouldn't always give the right informations about myself as this can affect my privacy in other areas of online businesses am involved in?

No, don't het it wrong, be diplomatic about yourself and any information about you, why must they require your data at first place, for what? Not every site, link and messages should be given first priority interest, instead put them detestable, i wish you never have an experience of scam or hack.
Pages:
Jump to: