Time to move your residence out of France...
It will be depending on the person you are on boarding...
A normie non tech savvy and little to none understanding of the power of decentralization and relay management.
Primal or Damus for mobile or desktop.
A tech savvy individual understanding the above and whom consider his CyberSec as a serious matter:
Android: Amethyst nostr:nprofile1qqs24yz8xftq8kkdf7q5yzf4v7tn2ek78v0zp2y427mj3sa7f34ggjcpzamhxue69uhhv6t5daezumn0wd68yvfwvdhk6tcpzpmhxue69uhkummnw3ezumt0d5hszrnhwden5te0dehhxtnvdakz769wywf , 0xchat
iOS: 0xChat nostr:nprofile1qqs9ajjs5p904ml92evlkayppdpx2n3zdrq6ejnw2wqphxrzmd62swspzdmhxue69uhhqatjwpkx2urpvuhx2ue0tkwj7d
Desktop: nostrudel.ninja
Bookmarked
Yep, all risk assets will get a boost, at least in theory
ℹ️ For those that reside outside of USA and think thausing Amazon, Google and Microsoft cloud services or any USA cloud service is secure and private for them:
. The US CLOUD Act from 2018, allows the US Government (and therefore their partners) data access regardless of storage location.
. Be smart, self host your data, and if you insist in doing it wrong, encrypt your data before you upload anywhere.
https://www.justice.gov/criminal/cloud-act-resources?ref=itsfoss.com
Season Messenger is listening to its users, read on, PFS will be back and quantum resistent cryptography is being implemented among other features.
https://getsession.org/blog/session-protocol-v2
#session
#privacy
#messenger
It have been a long waiting, although the real liquidity will start really getting in from Feb to Mar 2026 nevertheless, the QT ending is already bullish for Bitcoin and other risks assets
And QE in two days, that one is even more important, the liquidity won't be sudden but the FOMO is!
#Bitcoin, self custody and risk management, reading the changes day by day, be ready to relocate fast, most will not do that, most are screwed unless this turn a surprising positive outcome, that, IMO is unlikely
Good question, the USA administration for once, but the previous one probably was more pro war. But your question is good, what else changed, curious what people will come up with if any...
Mint will work fine
I am assuming already most hacks are AI assisted and they will get way more sophisticated
True story, but soon, that won't be an issue, LLMs are going to replace most of us in many areas and FOSS developers will probably be in the early list. I'll give it 5 years tops.
https://itsfoss.com/news/open-source-developers-are-exhausted/
Not that most of you give two cents about it since most don't care about privacy, but if you are one of those rare special individuals, stay away from ChatGTP
#ChatGTP
In yet another "Your chatbot may be leaking" moment, researchers have uncovered multiple weaknesses in OpenAI's ChatGPT that could allow an attacker to exfiltrate private information from a user's chat history and stored memories.
At the end we need to find balance, it is a tool, we just need to use it wisely.
npub.cash does the job quite well, additionally, you may want to test as well the nostr:nprofile1qqs9ajjs5p904ml92evlkayppdpx2n3zdrq6ejnw2wqphxrzmd62swspz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsm2lgp7 wallet, which is integrated with npub.cash addresses
A small number of samples can poison LLMs of any size
Install Linux Mint (coming from iOS this Linux distro will be a soft landing and it is getting traction)
Signal Messenger is Open Source as SimpleX, more over, both have upgraded their encryption to level of quantum resistant...
This matters, most believe that if you are using a service that is e2ee you are good, but you are not.
Why?
Cyber Criminals and I will assume most three letter agencies are collecting all raw data they can from centralized services/servers and storing them for future decryption, clearly, if your cloud service is not upgraded or your messenger service is not resistant, all the data will be open for cyber criminals and agencies to look at...
I keep advising family, friends and clients, stay away from centralized services if possible and if not, verify they are upgraded if they use encryption
Yes, npub.cash is not generating invoices, tried to swap with Minibits, same issue...
🚨 Mobile Apps Leak Data — New findings from Zimperium have revealed that one in three Android apps and more than half of iOS apps leak sensitive data. Nearly half of mobile apps contain hard-coded secrets such as API keys
Keep your mobile clean, remove all apps not really needed and be mindful of the ones you install and keep.
🚨 A group of academics from KU Leuven and the University of Birmingham has demonstrated a new vulnerability called Battering RAM to bypass the latest defenses on Intel and AMD cloud processors. "We built a simple, $50 interposer that sits quietly in the memory path, behaving transparently during startup and passing all trust checks," researchers Jesse De Meulemeester, David Oswald, Ingrid
And just like that billions invested in HW security gone, back to the drawing table for Intel and AMD, and those researchers... making this public before a solution is deployed, not cool.
🚨 Cybersecurity researchers have flagged a previously undocumented Android banking trojan called Datzbro that can conduct device takeover (DTO) attacks and perform fraudulent transactions by preying on the elderly.
Take time and educate your elders.
Thanks!
When the Android apk repository in Github?
🚨 Overnight on Aug. 26 in just over four hours, unidentified attackers compromised more than 1,000 Javascript developers, stealing their GitHub tokens, npm tokens, SSH keys, application secrets, and cryptocurrency wallet files.
They pulled that off by infecting a widely popular build system called "Nx" and by infusing their supply chain malware with artificial intelligence (AI)-powered intel-gathering capabilities.
https://www.darkreading.com/cyberattacks-data-breaches/1000-devs-lose-secrets-ai-powered-stealer
use hashtags to search your favorite topics and build your tribe, those "packs" are an echo chamber of nostr influencers taking to each other and adding little value to your knowledge and interest base.
you can search in the Global Instance any keyword without the hashtags too, find your tribe or create one. You can join groups/communities as well.
good luck
There is not a perfect answer and unfortunately, the better the browser for privacy the less convenient:
#### For Desktop:
- Most secure ones (some sites won't work):
1. TOR Browser
2. Mullvad Browser
- Less Secure but way more convenient, you need to add extensions to upgrade your security and tweak your settings to remove browser garbage and improve privacy. They both support IPFS.
1. Brave Browser (you can sync across devices without an email account, quite convenient), profiles are quite convenient as well. VPN built in is paid only.
2. Opera Browser (you need an email address to sync devices, use a burner), the VPN built in is decent and with a free tear from the box.
#### For Mobile
- Most secure:
1. TOR Browser
- A bit less secure, but all sites work, requires tuning settings and adding extensions to improve security, as TOR, the Browser is FOSS.
1. Fennec
- Less secure and no extensions possible, needs privacy tunning in the settings, quite convenient and fast browsers for mobile, they both support IPFS.
1. Brave Browser
2. Opera Browser
Some cybersec experts argue that having a password and 2FA app together in one app reduces your OpSec, I agree.
Having all your eggs in one basket is not ideal, best to keep it harder for the criminals.
Having in your Desktop Keepass for your passwords and not adding the 2FA to it (although is very convenient) is a better practice, now having Proton Authenticator for Desktop (Linux and Windows) is a good OpSec.
I agree the network connection is not ideal, but it is not needed, only if you wish to synch, just avoid it. In the Desktop firewall the app for no internet access. For the mobile, Aegis + Keepass ia a winning formula
I suggest:
Librespeed app in your mobile
speedof.me in your desktop browser
So USA government is concerned about DeepSeek privacy issues...
Let's church the basics, app permissions... Let's compare DeepSeek, ChatGTP & Grok
DEEPSEEK: decent
ChatGTP: oh nope, no in my mobile
Grok: less intrusive, still, nope
