Really ?! What the F@!K

Good ol fent

It looks like Signal is back to updating the open source server, which gives me a little bit more trust in the platform than previously. I still wouldn’t use it - or anything digital - for anything really sensitive though.

The requirement of linking a phone number to your account makes it tied directly to you, at least in Canada - it’s rather difficult to get a SIM card that isn’t tied to your SIN up here. Any global identifier is a Bad Idea, in my opinion.

I believe Signal is also vulnerable to MITM attacks, so regardless of how much you trust them, if someone has owned their servers, they have owned you as well.

As far as I can tell, Telegram’s security boils down to “trust me” - and I’m pretty garbage at that.

Telegram tells cops to pound sand, allegedly Signal throws up their hands and says “we can’t access any messages,” and the cops go away.

But echelon/Five+ Eyes et al are already harvesting all of your metadata and are very well aware of everyone you’re talking to, even if they don’t have the message content. Which they probably do.

Safest assumption: if it’s digital, the cops already have a copy.

I think it’s safe to assume that if you’re doing small enough stuff it’s the local yocals that are going to go after you and their resources are somewhat limited but you get big enough it’s the feds and if the feds are after you then you can bet your ass you probably already have Pegasus on your phone (better to assume so and be wrong then assume not and be wrong). Either way remember it’s very easy to talk your way into a problem and very difficult to talk your way out.

If ever that gets offered to me like this
I will personally rat them out at the cops
Not kidding

@davidb years back told me he was confident fentanyl plague was a result of a shadow war by the chineese gouvernement
Looking at how it has impacted the USA and Canada I almost believe he was right
It s a drug with no right of existing in my opinion

Nothing gets you more social credits than selling fent to Americans.

We only have equipments in Spain warehouse

Im at your LA warehouse let me in!

I mean, it’s pretty much an open secret that Chinese precursor manufacturers are sending retarded amounts of precursors to Mexico, where these fent labs are being set up.

There is an entire underground network of money laundering for cartel money in China. Because of the nature of the CCP, this basically guarantees that the government is at least complicit in this, if not outright pushing it as a strategy.

You genuinely made me smile.

Also be aware of people wanting you to be the fallout or fallback guy where you’re the (usually unaware )guy they can pin everything on while you’re already 5 miles gone.

It’s fucked up you see it with the unaware friend thinking they’re gonna pick up some weight of bud and it turns out the friend who was grabbing weed was also grabbing cocaine at the same time and you didn’t know and the friend slips them both into a backpack you’re wearing and you were being followed the whole time by the police until the play is made and then the cops are actually pursuing you and while you only think there’s weed in the bag there’s cocaine in your bag too and the other friend runs or says they’ll meet up with you later and you’re the one in trouble while the other person never cared whether or not you get in trouble.

Fucked up shit. It’s never happened to me but that’s how it was explained to me.

Facebook Messenger says the same horse shit about end to end encryption

Lol. They can place microphones and listen to the sound of the electronics in your computer running and use that to correlate you to whatever they are trying to do.

They can cut power to entire city blocks and check to see if you went offline during that time to correlate your location.

There is basically no being safe enough with your digital opsec.

xkcd summed it up nicely:

Is this a sex move?

Surprisingly the whole EncroChat thing was very quiet here in the states @Roguelab - usually the only reporting I was seeing on it was via overseas sources and this channel who is run by (I think) a Canadian judging from their pleasant and polite tone.

Always know who controls your data, don’t believe anything is encrypted just because it says so. Just ask anyone who used Incognito market and just trusted that everything they sent with their internal communications were secure. Instead it was packaged up and ransomed. Weird how that works.

One that ends in a 90mi x 90 mi swath of land being rendered uninhabitable for a century after the payload

Oh it gets way worse bro

And here’s the github!

Funny story about Incognito is that the owner did all this work to claim he was going to extort people, some big vendors paid the extortion fee, but then on April 1st he claimed it was all a big prank and no info was actually stored.

Part of me thinks someone found him and convinced him of the error of his ways. Other part thinks he really didn’t store any info and just did the scummiest market exit of all time

I honestly think the guy has it stored away on an external somewhere as his ‘mutually assured destruction’ from OC entities that might have been operating on the site and took the payday as it came without having to furnish proof. I think just the mere mention of what was going on made all the users go ‘Oh fuck we were fucking stupid for blindly trusting that the illegal market was actually encrypting our messages and should have taken the 5 minutes to figure out PGP’.

Who knows it could also be the world’s most convoluted public service message to pay attention to encryption? haha

tbh if you aren’t capable of using PGP you kinda deserve it. If you fuck around and leave funds in your market wallet, you kinda deserve it.

I think i am having a stroke

He’s talking about a market wallet. Which is in fact a huge no no

I mean, holding paper money is always risky, but he’s right