Your personal OPSEC

in #informationwar8 years ago

In the discussion about Russian "collusion" yesterday, @everittdmickey brings up the possibility that charges against ANYONE could be brought under the justification that Mueller's staff made against the Russians for posting anonymously.

In my own research (I was going to study cybercrime when I first started my masters in criminal justice), I have run across more than a few sources (FBIAnon, for one) that state that you can be found if enough resources are brought to bear.

So let's talk about how to keep yourself
A)off the radar to begin with
B)over their resource limits

Put this on, listen to it in the background


Key Point - You only need to fuck up once!

Some general considerations

  • Pay cash for everything! Do not even carry your credit cards (RFID chips)
  • Use an RFID blocking sleeve on your ID (or don't carry your ID)
  • Do not carry your phone or tablet with you, no personal electronics
  • Do not use your own vehicle if possible, get a ride or take the bus
  • Use a simple disguise (shave your head temporarily, wear a hat, dye your hair - which may take some time to fade, wear a different style of clothes, whatever)
  • Don't do anything (prelim research, for example) from your home IP.
  • Turn off and pull the batteries from all electronics when not in use.
    NEVER have the infowar electronics and your own electronics on at the same time...unless there are miles of distance between them!

Separate yourself from your activist activities

  • Step One
    is to go to a different town, and buy a laptop with at least 2 USB ports. Buy a few USB keys (min 8GB). Finally, buy a wireless USB receiver or two. Look on craigslist (NOT from your own IP) for the laptop

  • Step Two
    go somewhere there is no wireless access. turn off (even better, if you know how, pull the wireless receiver out) the wireless card
    How to do this in Windows

  • Step Three
    reformat the computer...once, twice, three times a lady
    maybe this is overkill, because you won't be using the Windows OS, but you never know what the hell is on that PC

  • Step Four
    Get TAILS, which is based on TOR
    TAILS
    TAILS - getting Started
    TAILS - subreddit

TOR was created so that American intelligence assets could communicate with America anonymously.

technology originally developed by the US Navy and now overseen by a nonprofit, helped to anonymize Internet use by routing requests through multiple servers, adding and removing layers of encryption along the way. When “dark” Tor-cloaked traffic popped back onto the “open” Internet, tracing it back to its source was difficult. Tor helps everyone who needs anonymity—dissident, drug dealer, and spy alike.
Ars Technica

If the origins of TOR/TAILS concerns you, there are other tools such as I2P.

  • Step Five
    get a burner phone. You'll need a phone number to build your new personas. So far, I have been unable to find a good source of online burner numbers negating the need for the phone.

  • Step Six
    Use a wireless access point that is not associated with you, coffee shops, McDonalds, etc.
    Consider the use of extended range antennas
    Use a different site every time!

  • Step Seven
    create a complete , and separate, online persona to work from

Noise

Sanity says you can't add some personal details on your infowar persona, but then again nothing says you can't add fake personal data. Let them look for things that aren't there.

What are markers? How can they link you?

  • IP addresses (where you log into the net)
  • MAC address (your connectivity hardware - TOR automatically masks this)
  • Browser profiles
  • Time stamps

Patterns

Mistakes aside, leading a separate life has two great effects (before we get into the negative affects). One, you will likely diminish your ‘threat profile’ in your normal life. (Let me caveat this statement by going back to the Contrast factor of SPACE Analysis. If in your normal daily or weekly routine you speak with the same three or four individuals —your resistance, prepper, militia buddies, for instance —and then that communication drops off, then you’re showing contrast. You’re doing something different than you used to, which is a contrast to your baseline behavior or activities. You might be interested in continuing or slowly decreasing your overt activities with the same frequency, but stepping up your underground game at the same time in order to reduce contrast.) Diminishing your ‘threat profile’ won’t necessarily remove you altogether, but as regime analysts are looking for indicators that you are an unsavory character, the fewer indicators, the better. The second benefit is that you’re creating an unknown, and perhaps deniable, network outside of your family life. If and when the SHTF, and you need this network, then the people, locations, and associations are all unknown to the regime analyst. If he doesn’t know that it exists then it’s much, much harder to identify(a lot of brain power and a little luck), and even when he does identify it, then he’s starting from square one. Start and separate your underground life now.
OPSEC Considerations for Cell Phones - Guerillamerica.com - website down

Always, Always, Always

Do not do anything in your infowar persona that crosses over to your real activities!

This is how Dread Pirate Roberts got caught. His comm security was never broken...his poor OPSEC let investigators connect his Silk Road activity with his real identity

Ulbricht posted a request to hire an IT professional for a Bitcoin-backed venture, then encouraged forum users to email him at his real address. This is so amateur night that it is, quite frankly, astonishing Ulbricht would even attempt it.

But the larger lesson here is that one should be wary of soliciting help off of the internet. It's difficult enough to know whether people are who they say they are in person; doubly so online
Everything the Silk Road Founder Did to Get Caught

Keep learning! The more you know, the more tools you can use to increase your privacy!

Remember, there are cameras all over the place. Play your game with this in mind

Resources

Security Tutorials

Tips, Tools and How-tos for Safer Online Communications

A guide to online security for activists

So you want to be an InformationWar Activist? - Part One

Schneier on Security

Advanced Privacy and Anonymity Using VMs, VPN’s, Tor – Part 1

#opsec #anonymity #privacy #computer
8 years ago in #informationwar by
$2.11
  • Past Payouts $2.11
  • - Author $1.81
  • - Curators $0.29
20 votes
Reply 10
Sort:  
  • Trending
    • [-]
     8 years ago 

    (you hear an engine rev and horn honk)
    MEEP! MEEP!
    (the window on the humvee rolls down to reveal a warm smiling face)
    "Hello! I'm @shadow3scalpel and with the help of my protege, @chairborne, we are actively assisting veterans, retirees and active servicemen and women here on Steemit. We feel it is our 'duty' to support each other. Any questions or comments you may have, simply respond to this comment, thank you!"
    (the window rolls up and the engine roars as it drives to the next person on the list)
    Comment by @killerwhale. This is a opt-in bot.

    $0.04
    • Past Payouts $0.04
    • - Author $0.04
    • - Curators $0.00
    2 votes
    Reply
    [-]
     8 years ago 

    Curated for #informationwar (by @stevescoins)
    Relevance: OPSEC
    Our Purpose

    $0.03
    • Past Payouts $0.03
    • - Author $0.03
    • - Curators $0.00
    2 votes
    Reply
    [-]
     8 years ago 

    The biggest problem that isn't addressed here, is what to do when your cover is blown.

    Or more importantly, what is your escape plan, and have you already given up on keeping all of your stuff.

    Imagine coming home and seeing flashing red and blue lights in front of your home. Right now, they are going through your computer. They are leafing through your porn collection. They are tearing holes in the wall. You would wish that petty burglars went through your house instead.

    There is no picking up your life again. Have you already made the emotional resolutions?

    $0.02
    • Past Payouts $0.02
    • - Author $0.02
    • - Curators $0.00
    2 votes
    Reply
    [-]
     8 years ago 

    excellent point; I addressed the decision to engage in the So you want to be an InformationWar Activist? - Part One, but that doesn't fully answer the question, "what to do after you get caught"

    feel like taking a shot at that one?

    I don't think I'll have the time to write that up any time soon

    [-]
     8 years ago 

    The problem is that this gets into areas that quickly become insane.

    The police don't go to Mexico and shoot you just because you caused too much trouble? Well, they did. They do.

    And so, the whole idea of just turn yourself in and get your day in court gets taken off the table. The world becomes ... the nice curtains get drawn back to show the bars on your cage.

    I do not have enough information or experience to talk about where that line crossing is. From being arrested to being hunted.

    [-]
     8 years ago 

    I do not have enough information or experience to talk about where that line crossing is.

    me neither

    we have to draw from those that got caught

    $0.00
      Reply
      [-]
       8 years ago 

      Quite the guide. Intriguing enough to try out.

      [-]
       8 years ago 

      were' pre-yapping on Discord, if you'd like to join us!

      https://discord.gg/zwV47a

      [-]
       8 years ago 

      Sorry I got tied up.

      [-]
       8 years ago 

      no prob ;> Rich had to crash out, and I went to dinner. I'ts just poor ol me there now, although @truthforce pops in now and again

      $0.00
        Reply

        Coin Marketplace

        STEEM 0.05
        TRX 0.32
        JST 0.082
        BTC 65824.46
        ETH 1792.50
        USDT 1.00
        SBD 0.43