Leave your phone behind because of geofencing. Even a dumb phone with your name connected to the bill will be traced to you. Grab an e-waste phone, buy a sim with cash, and even hide your face in the store, because the cops will get that footage.
Once you have your burner with no paper trail, never let it connect while at home, work, or any other place connected to your identity. Phones with removable batteries are best for this. Use a faraday bag if you must bring it home with you. Don’t trust a phone to actually turn off.
The purpose of your burner phone is primarily to document events. You want to record the police instigating violence. However, avoid doxxing your fellow protestors. Don’t record their vehicles, don’t record their tattoos or other identifying marks. Keep the camera pointed at the cops. The media is captured by fascism, it will not report that the police are thugs. It’s up to citizen journalists.
Expect the police to gain access to your phone. They will be logged into everything through that. Don’t dox your friends by granting police access to your planning chat. Use a separate system for communicating during the event, and keep all accounts separate.
And there’s other concerns as well, but mostly just … don’t bring a phone unless you know what you’re doing. They’re snitches.
(I didn’t read the article yet. I expect I probably already did, years ago)
The purpose of your burner phone is primarily to document events.
If that’s your only goal, just get an actual camera.
I didn’t say it was the only goal, it is the PRIMARY goal. Secondary function is coordination of movement. As for camera functionality, it also serves to upload the images to the internet, or to live stream for awareness. An ordinary camera typically cannot serve that function
Sad that this advice is necessary.
Seems like a mixed guide generally. It’s fine, just some complaints:
8-12 random characters that are easy to remember and type in when you unlock your device.
Ironic that this comes from the EFF. Passphrases are much better for this type of stuff, and diceware is practically the gold standard to generate https://en.wikipedia.org/wiki/Diceware
Install Signal
More of a small complaint, but SimpleX is probably better if you’re aiming for as much security/privacy as possible.
However if you will, use https://molly.im/ and torbot for android.
Back up your data regularly and store that backup in a safe place to save yourself from a headache later on. If you’re storing your iPhone’s backups online, we strongly suggest enabling the optional Advanced Data Protection feature, which turns on end-to-end encryption for most of the data stored in iCloud
I don’t know too much about iCloud but i wouldn’t trust apple with anything.
Here’s some good alternatives: https://www.privacyguides.org/en/cloud
Dress for Anonymity and Safety
No criticism, just FYI this is called https://en.wikipedia.org/wiki/Black_bloc if you’d like to know more.
I’m pretty tired so i may have missed or written BS on top, please correct me if i am.
I’m completely new to SimpleX can someone explain it? Is it a protocol, an app?
Its an app that uses no user ids at all. It’s probably the most private chat app available.
For more information see https://simplex.chat/
I’ve not heard of diceware before. How is it? I personally use a combination of password managers and short phrases which I encrypt using a specific method in my head.
One of the best ways I’d say. There are websites that help you generate. Even bitwarden has it implemented iirc
I recommend at least a five word passphrase, with a number somewhere, and you must generate it only once, each time you regenerate anc pick the easiest password reduces the entropy.
There are better solutions but its important to keep things simple, also.
Anyone know how to train pigeons? 👀
I would also do some work a day or two before a protest.
Use a disposable phone or a phone that you wouldn’t mind losing or have confiscated. (personally, I keep all my old phones and use them for all kinds of things and maintain my main phone at the same time) … a good smartphone that is 2-3 years old is good enough for good imaging and video capture anyway.
When preparing your disposable phone, only install a few apps and as few personal accounts and services as possible, then encrypt the entire thing and use a secure passcode.
Preferably, I would also set up dummy accounts for everything … different accounts for social media or cloud storage or streaming accounts … basically accounts you can lose or give up if you had to.
If you ever lose the device or it gets confiscated, don’t ever bother asking for it again.
I’ve actually done this when travelling overseas. I don’t travel any more but the last time I did was about four or five years ago and we were starting to worry about border security confiscating or looking at our devices. I’m not part of any political groups or join any protest organizations, I am part of official political organizations but I’m not exactly a radical or anything … I just like maintaining my privacy and I really don’t believe that any group, organization or government has the right to look at my things just because they want to.
I’d argue that using dummy account is mandatory, not a preferrential choice.
If you have a phone on you with ANY of your personal data on it and a cop takes it, you should simply assume every single thing that the phone could access will end up in the hands of the proescutors to use against you.
Don’t log in to ANY accounts that have ANY personal data on a phone you’re taking to a protest, and sure as shit don’t log in to any account that have ANY political/sociologial discussions or plans that could be used to paint you in a bad light in court.
Make new accounts for everything, and only install and log in to the very very bare minimum. This includes using your google or apple account when you set the phone up, too: google and apple have an enormous amount of data about you and if they get a subpoena for it, and there’s anything anywhere that might be damning, you can bet it’ll get used against you.
(As a side note: don’t use anything electronic to do illegal shit either, because your other accounts could also be subpoenaed if the cops have reason to think your real google account has what they need, and most JPs will just rubber-stamp shit cops ask for anyways. If you MUST do illegal things do not use electronic devices. Meet in person, don’t make notes/videos/recordings/post it on tiktok/wahtever.)
