How to be Invisible Online (and the hard truth about it)...

Don't be fooled ... Occupy The Web (OTW) tells us the hard truth about being anonymous online. The brutal truth: Will using your neigbors wifi keep you anonymous? Can you hide from the NSA? Can you hide from Google and other companies? Will Tor help you? Will Proxy Chains help? Which phone do you need to use - Android or iPhone or something else? Which operating system - Windows, macOS or Linux? What is the truth? What do you need to use?
// Mr Robot Playlist //
th-cam.com/play/PLhfrWIlLOoKNYR8uvEXSAzDfKGAPIDB8q.html
// David's SOCIAL //
Discord: discord.com/invite/usKSyzb
Twitter: twitter.com/davidbombal
Instagram: instagram.com/davidbombal
LinkedIn: www.linkedin.com/in/davidbombal
Facebook: facebook.com/davidbombal.co
TikTok: tiktok.com/@davidbombal
TH-cam: th-cam.com/users/davidbombal
// Occupy The Web social //
Twitter: twitter.com/three_cube
// OTW Discount //
Use the code BOMBAL to get a 20% discount off anything from OTW's website: davidbombal.wiki/otw
// Occupy The Web books //
Linux Basics for Hackers: amzn.to/3JlAQXe
Getting Started Becoming a Master Hacker: amzn.to/3qCQbvh
Top Hacking Books you need to read: th-cam.com/video/trPJaCGBbKU/w-d-xo.html
// Other books //
The Linux Command Line: amzn.to/3ihGP3j
How Linux Works: amzn.to/3qeCHoY
The Car Hacker’s Handbook by Craig Smith: amzn.to/3pBESSM
Hacking Connected Cars by Alissa Knight: amzn.to/3dDUZN8
// MY STUFF //
www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
// MENU //
00:00 - Coming up
00:51 - Don't use the nighbour's wifi
03:02 - OccupyTheWeb books
03:44 - How to remain anonymous on the internet // The NSA is watching
09:56 - Be careful of your browser
13:35 - Turn off cookies
15:41 - ProxyChains and Tor demo
22:10 - The FBI story
25:30 - ProxyChains and Tor demo continued
28:36 - How to remain anonymous
33:05 - Using Starlink
36:18 - Recommended operating systems
38:34 - Untraceable phones (burner phones)
40:05 - VPN vs Tor // Don't trust free proxies
42:29 - Don't keep systems together
44:24 - Recommended e-mail service
46:53 - Bitcoin is traceable
47:58 - Anti-forensics // How to clean systems
50:41 - Recommended search engines
51:34 - Have different identities/systems
52:26 - Conclusion

Over a decade ago I took a class in network security that was taught by a retired navy intelligence officer. One thing he taught us that has stuck was: "The only secure computer is one that is not connected and can not be physically accessed. Once a machine is accessible, it is no longer secure. The form of access doesn't matter -- physical access, network access, it all compromises the security of the machine. The line you will need to define in your future career is going to be the line between secure and accessible. A machine that can't be accessed can't be used, so while it is secure, it isn't useful. The more accessible a machine, the more usable it becomes -- and the less secure. The policies you write for your company are going to be a negotiation of that line between accessibility and security."

What I hate about the NSA the most is that they’re letting too many abusive cybercriminals get away with stuff these days but common people still have suffer online privacy issues.

My motivation to keep fighting for my privacy is that shit might not happen now, but in the future when my life is a lot more meaningful to me, they might also be a lot harder on how they control us. I hate being controlled, so I decide to learn and do now so I can be ghost later.

“I don't know why people are so keen to put the details of their private life in public; they forget that invisibility is a superpower.”
- Banksy

In the uk, a guy gets stung for trying to meet children online, all while another police department are watching and gathering evidence on his neighbour who has stolen his identity, and is posing as him to meet children online - they let the innocent guy's life get demolished because they didnt want to blow their case, he lost everything - so yeah, they know if you use the neighbours wifi

Absolutely love David's channel and wanted to add to the OPSEC recommendation of not carrying your personal phone with u to buy a burner- even more important than that caveat, one must NEVER carry around both your personal and burner phone with u at the same time. Any 3-letter or law enforcement agency can create a map of date & time where both your devices are pinging the same celltowers at the same time, thus tying u to the burner with circumstantial evidence. I like to think of the personal cell and burner as your wife and mistress, both should not know of each other much less be in the same place at the same time. And no, this wasn't a reference to infidelity...stay safe

It's funny, how I tried watching Mr. Robot around the time I started my cybersecurity journey and I thought it was a good show but started losing interest during season 2. Fast forward a couple years later and countless hours of studying pentesting, I decided to restart the series a few days ago and its way better than I remember and so many of the small references make sense now lol. Including the exit node scene from episode 1.

Nice video Dave. But strange you're not discussing Tails OS. Get a cheap or second hand laptop with 8Gb RAM (the more the better), a bootable USB3 port (almost al laptops from five years or younger have that) and a USB3 thumb-drive and you have a quite quick anonymous machine....

I usually can't sit through long videos but I have to say, listening to OTW kept my attention to the very end. David, you did a great job in allowing him to share his straight forward and easy to follow info on keeping safe online. You asked the right questions and summarized in a succinct manner. Excellent!

Much, MUCH appriciation to the both of you David. As a aspiring Cyber Engineer, it's like you guys answer all the little and big questions I think lol Thank you!

I used to work in intelligence over ten years ago, and everything he says checks out. These are all things that were taught to us. I remember reading the public case file that came out after the Silk Road bust and learning that DPR used the same cafe every day to do his browsing and I was like "uhhh, classic mistake..."

This was stuff being talked about 3* decades ago in the early 90s. What is being described as anonymity here, is really pseudoanonymity. There is no such thing as actual anonymity online.
I like to think of the internet as standing in a conceptual digital square wearing a name tag. You can put a disguise on and cover your name tag, but if someone really wants to know who you are, or someone who already knows you and is paying attention comes along your efforts are for nothing.
You are more anonymous in real life than you are online. So if you're looking for privacy, the ultimate hack is to take offline and into the real world everything you can.

A lot of this stuff is very logical if you know a little bit of how the basics of the internet work (ie. DNS, IPv4, ISPs, etc). I'm just a normal IT guy thinking of getting into Cybersecurity and I spent a lot of time thinking of how to stay anonymous and I kept coming up with "nope can't trust that, or that, someone else owns it, so they can probably see it". This video really validated a lot of what I was thinking which is what I kind of needed to hear.
Thank you to David and OTW for confirming that becoming anonymous while invaluable is incredibly difficult and is really all about what's it's ultimately worth and to who it's worth considering all the breadcrumbs that become so easy to leave behind. It really takes a lot of effort, intelligence and constant awareness to stay anonymous.

Another great video... The limitation of this technique, is not being able to use burpsuite for MITM and proxychains... However, adding a SOCKS TOR proxy to burpsuite, diverts outbound traffic through the TOR network... without proxychains

I think we need to shift the conversation from the ideal of anonymity to the practical compromise of pseudonymity, and just use anonymity as a benchmark for evaluating different identity defense systems. Only the designers need to dither about the Philosophy and formal logic. Everyone needs an optimally engineered solution.

Banger of an interview! We must have more OTW content David. Fulfill your destiny!

Another thing that's important is to never mix your hacker life with your public life. That means as an example; If your turner phone is located where your private phone usually is located, that would be a no no, even if your private phone isn't there or off at the time. Treat all of the things you use that can connect to the web or to a phone company as a node and make sure that hacker nodes have never been online in, around, on the way to or together with any of your private nodes. If they have, you can get rid of them at once. This is one of the reasons why there are schools for these kind of government operators. It's also the reason why people who are working under these kind of rules don't do much else than this work. It takes up a lot of the time each day, just to do the smallest thing.

Good news is there is whole world outside internet which doesn't care at all what happens online. Most of us forgot that and don't know how it works even.

What is your opinion on the theory that the more you try to “hide” (no social networks, no unencrypted traffic and alike) will actually make you pop up in certain surveillance monitors and makes you a special target?
According to this theory it would be better to simulate a “normal life” and hide only specific traffic in there…

Besides quality content, this really feels like a thriller podcast I'm watching. I absolutely love it.

I’ve cut back on fun spending because all my budget items have increased. Utilities, gas and food keep going up. Summer is expensive anyway. Great video!

I don't try and be invisible, but I do poison my data with many un-me activities anytime monitoring is possible. Exactly the same method for dealing with AI. They use your interactions to further train their models, so take action to break them with inappropriate feedback to the "AI".

These statements about whoever controls the last node on a Tor circuit, controls the network, is in sharp contrast with Dr. Mike Pound's(who appeared on this channel) video on the Tor network. Dr. Mike Pound states that if you control the last node and the Guard node(the first node), yes it's possible but VERY VERY hard to work your way back to the originator of the traffic sent. Occupy the Web makes it sound like it's could all be done from the exit node. This is blatant hyperbole and sensationalism. Dr. Mike Pound is one of the premier professors on the subject. I'm more encouraged to believe him over anyone else. Also, If the Tor network was that easy to compromise the identify of people just by controlling the last node, it would be useless.

Cookie is a a euphemistic rename of the word "tracker." Cookie = tracker.

great interview. as OCTW said...even he...is not anonymous to some people that have resources,time and skills. great interview Dave. Great presentation. i believe you must create a course for footprinting etc. or even as an end user..if someone attacks you , some basic forensics and if you have a chance to find by yourself this neighbour ...it will be valuable.

What I like about this episode, apart from all the very useful suggestions, is the constant warnings about how how difficult it is to be 'hidden' online! This is so very true. The mention of of having multiple identities and completely different behaviors in the different identities is very important.
Note: Having different identities for social media and emails is useful anyway to help protect you from 'trolls' and people who like to 'bully' you online.
Thanks for sharing this it really is very useful information indeed. :)

One thing that i’ve heard about cell phones is that they can be tracked even when you have the phone turned off. Two of the safest things you can do is simply remove the battery when you’re not using it and use the phone ONLY for outgoing calls. If you’re using a device such as a tablet and you simply can’t remove the battery to wrap it industrial grade tinfoil. Not the cheap stuff you get from the corner store. It will help block any incoming or outgoing transmissions. Keep it Wrapped up at all times unless you’re actively using the device. As far as protection on a laptop. Use an old laptop without any hard drives period and boot off a USB drive running a security version of LINUX. Tales is actually a version of Linux. You can also create a custom version of Linux if you’ve got the skills running off only a USB drive. Remember the laptop itself doesn’t have any operating system on it period nor any storage devices. Folks can’t steal information off of something that never existed in the first place. And when you remove the USB device you could hide it god knows where. It could be in a hut in Brazil or in a igloo in northern Canada. Thats for you alone to know.

Whoever controls the final notes controls the traffic. That's my
Golden Nugget

David's content should be getting at least 10k likes. He is literally giving out paid information for free.

This guy must work for the government, he's not really giving you anything that makes you truly anonymous!

Spent my young years finding people, before internet. So Groan.

First rule, always use a private DNS under your own control.
What isn't talked about is how quickly you are identified by your meta-data.
Lets say you go to a public terminal leaving all electronic devices at home. You will quickly be identified based on how you type and what sites you go to.
How fast you type, how you spell, your grammer and more are all part of "how you type". This meta-data is so unique as to be close to a fingerprint.
Combine that with which websites you visit in what order and you are known.
He talks about turning your phone off, that doesn't protect you. A smart phone has 2 cpu's. The one that operatea the smart phone and the SIM card. The only way to turn off the SIM card is to remove the battery, which most modern cell phones don't allow.
The SIM is "pinging" (not the ping command) nearby cell towers every few seconds. This means that every devIce with a SIM is continuously located. Most modern cars have a SIM.

This episode has confirmed many of my suspicions and opened my eyes to a few more. Thank you for sharing some really good information. Great video from an awesome channel 👏

Wild, I was JUST pondering this very question two nights ago. I've used Tor on and off since maybe around 2007 and since then, I've become a sysadmin. I'm always thinking about cyber security and how I can improve it. I figured the NSA pretty much had a handle on Tor. Good info in this vid, thanks!

The problem with disabling cookies is some websites will actually limit functionality or even make it impossible to navigate unless you turn on and accept cookies. How do you overcome that?

On a dedicated flash drive, run a trimmed OS, custom configured for only the interface you plan to use. Complete with only the drivers for the exact devices installed, and any additional drivers for hardware you might use. Cut the OS to the BONE. Pre config to he is your swap file, set to a second flash drive, yes, a separate drive, not a separate drive volume on the same physical drive. Use Tor or another alternate connection method,, ( if using the neighbor's wifi, use at least 3, hopping thru three different homes, ideally choosing neighbors w/ 3 different ISPs ,)then running the chain link, then, share your connection to a secondary device, connect to the Internet thru the provided link, then , run tor, run chain link...profiles are the key. Create profiles of people who naturally would be searching for what you'll search for. Health- a mother, "how to.." a tinkerer, a 'maker", a jr reporter. Don't forget to make a few with your same name, and build them up on social media. Because they know you exist. You HAVE to be on the internet SOMEWHERE, right? Or dead....

This is so interesting and informative! I’d love to hear more about using Linux as I’m a newbie :D this was so interesting and remaining anonymous is definitely not something you can do by purely using a vpn and I’m so glad you touched on that ! 🙌 great video

Arguably the best technology and security TH-cam channel. You cannot find this much quality content,even if you are ready to pay for some dollars.

Is it safer to set the exit node of TOR in a country like Iceland or Switzerland because of the data laws there?

Occupy The Web is a guy I could see myself having a beer with.

Thank you two for this interview and the hard "pills".
Also, I still stick with FF. Not only for "privacy", to avoid monopoly of "chromium" as well. Use Brave is keep the monopoly of Chromium.

So in a nutshell, the only way to stay 100% anonymous is to not use digitally networked devices.

How come the NSA, CIA, & FBI act like it’s so hard and damn near impossible for them to bust these child SA groups and sites that organize, sell, and meet up through online platforms but they can get anyone else’s info when it comes to anything else while online in the US?

I think that it might be impossible to be anonymous, because at the Hacker conference we talked about a lot of other things, VM's,Screen Size, hardware heuristics, browsers. And the US three letter folks can crack all of these. The speaker was hiding from Russia and other cartels that his jobs was to attribute crimes to. He said he could not defeat the US cyber hounds. Even if you beat them, your traffic is the only one that is Anonymous. You then stick out and they can watch for that traffic. Hiding in plain site is the concept that would be the best chance of obfuscation. And staying on the move. And like the guest mentioned using starlink. And please don't do bad things in cyber space. Thanks for the great content.

- Starlink (can't use, dont have access to full sky view)
- Mullvad VPN
- Kali Linux
- Brave
- DuckDuckGo
- Proton mail
Would this keep me private for everyday regular use? I dont do anything illegal i just like privacy

45:30 Wasn't there a case in 2021 where Protonmail logged a French activist's IP-address and handed the data out to the swiss police, which in turn sent the data to the french police?
I know that one can't really compare this case to "normal" users of Protonmail, but one should not forget that Protonmail (or any other encrypted mail provider) will have to comply with law inforcement, if they want to or not (even if the are not able to read your E-Mails).

Glad someone spoke clearly about the use of AI in assessing & using our data. It does seem like AI tries to think ahead for us. It does seem intrusive. Just because I'm thinking about holiday cookies, doesn't mean I want them to pop up in adds everywhere. At first it made me scared that some mind-reader or psychic was harassing or targeting me via my phone. That's just how it can really feel. Especially if "push alerts" are not controlled.

I don't buy FBI's neighbour's WI-FI argument for several reasons. Instead the claim is constructed to spread fear, uncertainty and doubt. This is often enough to deter criminals from doing nefarious things. Moreover if suspicious activity is emerging from an IP, they have to thoroughly test the theory that it's not actually the IP's owner who did the malicious thing. With that aside, sure, it's a nice idea to knock on doors. But if the police knocked on _your_ door checking on "nefarious internet activity," would you tell them outright that, "Ya, sure, it was me! I hacked into the neighbours Wifi. Here are muh hands, just cuff me nauw pls!" Not very likely.

I love what you do boss , always I have to come to your channel at least once a day , one of the people that making change for the good in this world . I really have an immense respect to you Sir .

One of the best shows, by far, that I've had the pleasure of watching. He presented so much honest and factual information that one would be neglectful for not heeding his advice.Very good show, David and I look forward to more in the future.

One thing I've kind of been concerned about (although I personally don't have anything to hide, but stay anonymous anyway) is communication analysis.
Especially with how much more more work on AI is occurring recently (but even really before that), it seems quite easy to have a bot go through vast amounts of scraped data (be that on a relatively private chatroom, or public website) and analyze their writing style (or voice when applicable) and tie it to other accounts which would otherwise be impossible to tie together (due to taking extreme privacy measures).
I would expect that government orgs would have this tech, but I'm surprised that I've never heard about it, because we've had this capability for well over a decade, easily.
I'm wondering when it might become more common and/or when privacy-minded or paranoid people start using AI scramblers to re-word every single thing they say.

Can you guys make a video on people search and how to OSINT other people, including yourself? Not like hide from the FBI privacy, but to show the kinds of tools and techniques someone doing the investigation would use. I think it would fill in some gaps.

I’m super critical when it comes to seeing how someone “moves” around the file system using the terminal. I hope he was being deliberate about everything just for the sake of being clear to people watching because it was telling if not haha

Thank you David and OTW . I have already received the the books you mentioned. Best teacher and best IT youtuber. Waiting for more episodes like Pegasus.
Thanks for your information and knowledge.

46:42 I'm surprised he didn't mention OpenBSD, which is known to be the most secure BSD operating system, even more secure than HardnenedBSD, which is more or less FreeBSD with a lot of security patches...

So in a nation with burner phones and prepayed sims, mobiles are not an issue. But What can you do in a nation here the law mandates that numders are registered? This is an issue in more than one nation. Online solutions are highly traceable since you have to leave your infomation and pay digitaly. How would you solve that?

Needed all the content that he tells in this video to learn for free. And thanks for uploading the important information for learning. ❤

The Mr.Robot scene was actually one of the few inaccurate ones in the entire show. The dude was running a HS, it had nothing to do with exit nodes. The actual attack on an HS is traffic correlation, that if you own a substantial part of the network to become the last relay (not exit, there are a lot more relays) and provoke a lot of traffic, you can see a spike to the probable HS. That still wouldn't give you the HS descriptor. You'd have to know that first. So the investigation would start with the site and not the network it flows to. The extreme high level of observability to deanonymize a HS outright are only available to state actors (or someone dropping a few grand on Tor relays, but that's less effective, you'd notice and it'd be expensive)

I think it goes without saying that you need to cover the camera of any burner phone and never let that thing get near your house or work.
But if you use it to make a call, your voice will be captured and your identity revealed.

Great info. One counter argument - An anon VM is way easier to quickly/cleanly nuke and dispose of than a separate HW rig is.

I just want to tell you OTW, that you are a great source of information and knowledge. I now understand how dangerous is the web.
Please keep giving us more feedback on forensics/wifi hacking/ tracing bitcoins and tracing scammers!!!

I have to say something about turning off cookies or services. Those are only visual representations that seem satisfying to the end user. There is absolutely no guarantee that choosing any of those options does anything at all. It could be easily programmed to show a graphical slider showing "off" while literally not affecting the coding underneath. Even a Visual Basic programmer knows that progress bars are totally fake.

There is some misinformation / bad advice on some of the topics, e.g. the subject line in ProtonMail is not end-to-end encrypted, only the content and attachments.

I think it would be a good idea ro invite some of these scammer hunters, and ask them few question on how you can really try to track them.
These guys are really like the cancer of the internet, and unfortunately most often are placed in countries with corrupter gov and police.
I think if more people would know some basic tools and techniques to make their life litrlebit harder, it would benefit everyone.

The NSA also has a free reign in the Five Eyes countries. I learned that when I joined the New Zealand Navy a long time ago.

2 million soon! Can't wait to see what you have planned! Congrats David. You're awesome.

In now-days world it is practically impossible to stay anonymous. There huge number of cameras outside and every computer transaction is logged on multiple of devices. If you want to stay anonymous then you can kind of get lost on crowd for moment. But it is only matter of time and resources poured on searching when you get tracked. Best way to be anonymous is not to do any major things what other people do not like and/or have powerful ally to protect you.

I'm someone who greatly values privacy and take many measures to protect my privacy. I don't do it because I have something to hide or whatever. I do it because I find it greatly disturbing the amount of data these companies are harvesting off me. Also, even if you claim to have "nothing to hide" and that's why you don't care about privacy, you're putting yourself at risk by potentially getting framed or arrested for something you didn't do, all because you're in a vicinity of the actual culprit or you simply look suspicious or even just look like the actual guy people are going after. There have been plenty of real life cases where unsuspecting innocent people are getting charged for crimes they didn't commit.
That being said though, I'm not someone who's aiming to be completely anonymous. You have to sacrifice far too many things, I'm not willing to give up. I try to strike a healthy balance between convenience and privacy. Even just doing the small stuff can make a big impact. Like using a privacy respecting browser on top of using privacy enhancing extensions, or using a trusted VPN like Proton VPN or Mullvad VPN. If you're on Windows and don't like Microsoft spying on you, then you can harden Windows by using free tools and disabling all the telemetry they're gathering off you. For even more privacy, you could go with a privacy respecting Linux distro. Speaking of OS', you can install a privacy respecting android OS on your phone. These things for the most part are pretty small, but they all add up.

when bad people exposing themselves out in the open in broad daylight proudly doing bad while people against them has to be shady, creeping, tip toeing in the dark like thieves. upside down world and you comply

David Never fails to deliver Great Cybersecurity Knowledge! Thanks

Wow, I unfortunately was the last generation as a kid that didn't have internet. When I was 7 i had my 2nd major surgery for a serious heart defect at birth, I had a tutor and was very smart, I seriously still remember my 2nd grade teacher's name b/c I completed all of the assignments she gave my tutor. I got to school in October and My class was on Long division and double digit multiplication , long division. I wasn't. I tried so hard , My big brother was in HS and homework would 6 hours 3 of which crying. Teacher said I wasn't trying or disrupting the class and put me behind the filing cabinets. ( i was on high school reading & writing level and my grammar was far ahead of a grade school kiddo). They wouldn't keep me back and that was their error, They kept passing me through grades even though I sucked at math & science since 2nd grade, I begged to be kept back. Most of my friends were one or 2 yrs ahead or one below, ALGERBRA KILLED ME, and I struggled with geometry. I just stopped going to classes b/c i liked algebra and with my brother I could do it but w/o at school the teacher called me a pot head. We got computers and were on Dos. I to this day understand what you are saying completely but have no patience b/c my accounting math is to the penny, I think it's because NO ONE HELPED AND I ASKED. WHEN WE GOT COMPUTERS IN HS. DOS SYSTEM, I HAD ONE YEAR AND MY BROTHER HAD MOVED OUT WITH HIS FIANCE and my home life was so messed up I spent 2/3 of that yr with my best friends family and was put in senior math, The teacher pulled me aside and asked all the right questions , He went through my records and knew I was in rock bands playing adult venues since I was a kid, I had had a scoliosis brace for 4,5 years as a result of my two open heart surgeries which done differently for aesthetic reasons 90% of young girls had to be braced , not all followed the directions or wore theirs, My Mother caught mine young but technology wasn't then what it is now. He pulled me aside about two weeks later. I was a day dreamer, on drugs, didn't pay attention, and many other behavioral issues were in there, along with school psych evals that didn't match up at all to statements made by half of my teachers and no one looked at the ones from classes i aced. He WAS FURIOUS B/C he found that I had been ambidextrous and forced to use only my right side , had photographic and eidetic memory last checked at in grammar school and serious dyslexia post 2nd heart surgery. None of which was used to after how I was taught, He went right to my computer teacher after he and I talked and I ended up in tears and between the two of them luckily because Intro to 'computers was new it was Pass or Fail, she passed me through so I could go to math with him for senior math but instead of computers and during MY LAST SEMESTER I WAS IN HIS FRESHMAN MATH FUNDAMENTALS. I did horrible in computers in College but was only until I could change my major. Im definitely one who learns by all my senses and I know Govt & Politics like back of my hand. and One math teacher is reason that I passed math part of Real Estate on first shot and was a nurse who had no issues with medical conversions. I am glad I found you.

How can David's guest be anonymous if he doesn't mask his voice? Anyone who knows him personally can recognize him. Or even if he uses software to mask his voice, how can he be so sure that the output of the tool he's using can't be reversed to reveal his true voice? Or maybe the guest actually types out his answers into software that reads text out loud, and the interviews are edited to give the appearance of a fluid conversation? At 4:19 he says that from his American accent it's obvious he's from the US, so either he's using his real voice, or what he said was just to throw people off.

Seems like this guy is really smart one second, and BSing the next. Maybe it was just me picking up on that vibe. It kinda caught me off guard when he mentioned arch as a privacy distro, and when he was showing us a terminal tool, but couldn’t tab complete the config file. Also… brave?! That’s one of my last choices for a private browser. It’s based on google chrome (chromium), and is made by a company I find creepy. Not to mention the fact that he suggested starlink as something that helps your security! It’s just as identifying as a normal internet connection with the info it requires, that’s simply no better.

For commercial privacy use different browsers for different things: Chrome only for youtube and gmail. Firefox for surfing, Brave for shopping etc.

I like the way that you gather things for good purposes and you do. It encourages me to see any video you create, Sir. I highly appreciate your work. Keep going on.😊👍

You know this guy is really a hacker, because he wears a hoodie. ALL hackers wear hoodies. X D

After studing this mans voice patterns. I have come up with the strong conclusion that this man is Norm Mcdonald. ;)

This is my favorite TH-cam channel. Most informative and thought provoking hands down.

Occupy the web is amazing. Listening to the two of you on the stream has been one of the best streams I’ve ever listened to. Great content David.

My favorite thing to do is have a open network to just see what people do. Always fun to look

Proton mail has been giving up people's information when requested fyi.

Some useful info not mentioned: A potato chips bag with a shiny inside works well as a Faraday cage (if in doubt test it yourself). Also, just having your phone off in some cases is not enough. Because if you are being targeted your phone can be remotely turned on to eavesdrop (unless it's in a Faraday cage).

You did mention this but still: There is no such thing as truly being anonymous or safe. It's all about making it as hard as possible to find you and hoping that the person or thing trying to find you will not have enough knowledge or motive to find you.

I would love to see more content like this but also discussing stingrays... Because stingrays play a huge role with the government tracking cellphone data... A burner phone may make no difference if being monitored by a stingray

Yes, really appreciate your work guys. Please bring all those topics starting with Bitcoin tracing/anonymity.

I love what you do boss , always I have to come to your channel at least once a day , one of the people that making change for the good in this world . I really have an immense respect to you

I'd love to hear his thoughts on the additional security of using a Virtual Browser for secure surfing (Network Chuck created the concept and made a video on it).

Love seeing OTW on the channel! Great interview and information, thanks so much David!

So how can I get your help to get the Target off my back and any electronic device I’ve owned? I have nothing to hide but when coworkers and the like, hack into everything, it’s a no go for me.
Been targeted for over 6 years.

The ubiquity of video surveillance (at least in developed countries) has a huge impact on this topic. For example, buying a burner phone with cash and leaving your primary device at home is great, but much less effective when there's HD footage of you buying the device, marked with a handy location and timestamp. The more this type of footage is stored in the cloud (and is therefore accessible to gov't agencies) and the more accurate facial-recognition tech becomes, the easier the task of associating you with particular purchases gets. Hell, retailers are trialing these sorts of systems themselves, so they can push ads to you in-store based on what you're looking at. So, unless you wear an "AI-proof" disguise when you buy that burner, sooner or later you'll get tagged.

14:30 surprised he didn't mention Brave browser's option to block cross-site cookies here.
By blocking only cross-site cookies (and still allowing same-site cookies) you can prevent websites from profiling you, without sacrificing functionality in the vast majority of cases.

Something that (OTW) said doesn't make sense. if you don't take your normal phone to get your burner phone. when you come back home you're gonna have the phone side by side/same location eventually so wouldn't that give the metadata away?

I really enjoy these podcasts, when i have long drives i always put yours on. Thank you for doing what your doing David. Im really excited about the Pegasus video. All the best!

As always good content, I'm impressed with you I really like your videos usually with videos longer than 10 minutes I watch them between days but yours almost always keep me engaged.

Even if you THINK that your mobile is off, it can be activated remote.
The safest methode is removing the battery or a SAFE Faraday cage, Chip bags are NOT a Faraday cage

as soon as he said brave i lost all belief in him

Mr. David I absolutely love your shows and try to do my best in viewing them all. I'm kinda new to this field but have found it to be what you could call an obsession/passion in everything to do with hacking. I've never heard of OTW and find him truly fascinating and informative. I appreciate all your efforts and the things you share with us all. Maybe you could have him or even yourself doing a show on AndroRAT, Android-RAT Hawkshaw, Dendroid, HaxRat, LaRat, Mass-Rat, Teardroid-phprat and WH-RAT. Maybe all the RAT's? I apologize if you've covered these already. As I said, I'm new in this field and to your channel as well. But thank you none the less for all that you do. It's greatly appreciated.

Pump up the volume. In the movie he used the neighbors phone over wireless. Ahead of his time I guess.

There was a mafia guy during the flip phone days who was out on a golf course, the FBI knew he was there, they sent a signal to his phone from a satellite signal, turned on the phone and the FBI listened to his conversations on the course. He was convicted not long after.