012: Back to the Basics, Back to the iPhone, Authy API Abuse

07/19/24 • 32 min

The Lockdown - Practical Privacy & Security

This week we go back to the basics of privacy and security for the average Joe or Jane, and discuss the latest iPhone settings for privacy. I also discuss the Twilio Authy API abuse that resulted in 33 million phone numbers for Authy accounts being exposed. Huge thank you to the Patreon supporters!
In this week's episode:

Back to the basics
Advice for the 'average Joe'
The Twilio Authy API breach
iPhone privacy settings
Listener question on doorbell cameras

Show Links:

1Password Security Audits: https://support.1password.com/security-assessments/
Bitwarden Security Audits: https://bitwarden.com/help/is-bitwarden-audited/
Twilio Breach: https://www.bleepingcomputer.com/news/security/hackers-abused-api-to-verify-millions-of-authy-mfa-phone-numbers/
MySudo: https://mysudo.com/
ProtonMail: https://protonmail.com/
StrongBox: https://strongboxsafe.com/
KeepassDX: https://www.keepassdx.com/
Amcrest Cameras: https://www.amazon.com/gp/product/B07ZJS3L5Y

"I don't want to live in a world where there's no privacy, and therefore no room for intellectual exploration and creativity."

- Edward Snowden

Podcast music: Recluse by Ray Heffer

Back to the basics
Advice for the 'average Joe'
The Twilio Authy API breach
iPhone privacy settings
Listener question on doorbell cameras

Show Links:

1Password Security Audits: https://support.1password.com/security-assessments/
Bitwarden Security Audits: https://bitwarden.com/help/is-bitwarden-audited/
Twilio Breach: https://www.bleepingcomputer.com/news/security/hackers-abused-api-to-verify-millions-of-authy-mfa-phone-numbers/
MySudo: https://mysudo.com/
ProtonMail: https://protonmail.com/
StrongBox: https://strongboxsafe.com/
KeepassDX: https://www.keepassdx.com/
Amcrest Cameras: https://www.amazon.com/gp/product/B07ZJS3L5Y

"I don't want to live in a world where there's no privacy, and therefore no room for intellectual exploration and creativity."

- Edward Snowden

Podcast music: Recluse by Ray Heffer

Previous Episode

011 - Living Like a Recluse, Living Trusts, GrapheneOS, and Listener Questions

After escaping to the mountains and living like a recluse for the past few months, I am back. In this week's show, I discuss my latest experiences in purchasing a home and titling in a living trust, along with the potential obstacles with title deeds and mortgage lenders, and avoiding data breaches with utility companies. I also revisit GrapheneOS after using it daily for the past year, and answer listener questions.

In this week's episode:

Living in the mountains
Buying a house with a living trust
Potential pitfalls with title deeds and mortgage lenders
Balancing privacy and security
The 'All or Nothing' approach
Why I still use Obsidian over Standard Notes
Revisiting GrapheneOS and the Play Integrity API
Baby Reindeer
Listeners Questions

"Privacy is rarely lost in one fell swoop. It is usually eroded over time, bit by bit."

Daniel J. Solove

Next Episode

013: iCloud Private Relay, Complete pfSense Guide, and Privacy for Kids

In this week’s show, I take a deeper dive into Apple’s iCloud Private Relay, discussing who should and who shouldn’t use it. I then discuss my latest article, “The Complete Setup Guide to pfSense for Privacy and Security,” and the benefits of an always-on VPN. Lastly, for those who are parents, I offer a discussion on privacy for kids and some non-invasive techniques for protecting them online.
In this week's episode: