Josh Mountain

People should report suspicious emails and texts by forwarding to report@phishing.gov.uk and 7726 respectively. Anybody who thinks that they’ve fallen victim to a cyber crime should report this to Action Fraud (for England, Wales and Northern Ireland) or Police Scotland (for Scotland)

So that hackers cannot spam you if/when there’s a data breach. You can buy them without ID from the phone shop or have them sent directly to your address but the supplier could still have a supply-chain attack.

I use one for Signal, one for banking and another for friends and family but signal is quickly becoming the primary.

I recommend using https://hushed.com you can get discounts through ‘The Hacker News’ website: https://deals.thehackernews.com/sales/hushed-private-phone-1-line-plan-2500-mins-12500-sms/

Lifetime access was $600 but now it’s $54.99 (£40.11). You can also get a free disposable from hushed as well.

You could also use a Pay & Go SIM card from many networks not this enhances security, not privacy in some cases where KYC and AML biometrics are mandatory.

Some U.K. providers include:

  • o2
  • EE
  • 3
  • Smarty
  • Vodafone
  • Giffgaff
  • Lebara

https://www.gsma.com/publicpolicy/wp-content/uploads/2016/04/Mandatory-SIM-Registration.pdf

The countries that currently have biometric registration laws are Afghanistan, Bahrain, Bangladesh, Benin, China, Nigeria, Oman, Pakistan, Peru, Saudi Arabia, Singapore, Tajikistan, Tanzania, Thailand, Uganda, United Arab Emirates, and Venezuela. Those who are in the planning stages of implementing biometrics are Jordan, Lebanon, and Liberia. In Mozambique, subscribers can provide their fingerprints if they don’t have adequate ID.

In China, anyone registering a new phone number now needs to submit a facial scan. This is also happening in Singapore. Singtel, which has a market share of 50 percent, introduced facial scanning to its ID-verification process. All of this can be done from an app on the user’s phone. Nigeria also requires both fingerprints and a facial image.

https://www.comparitech.com/blog/vpn-privacy/sim-card-registration-laws/

https://www.trulioo.com/blog/phones-sim-registrations-kyc-compliance

Email and VPN’s:

There’s no coupon code or referral, I’m suggesting these providers because they are the best, though if you wait until Black Friday there’s usually a discount for new account members.

Protonmail:

Protonmail is a Swiss based email provider that promotes privacy and security as its business model. https://protonmail.com/pricing

Tutanota:

Cheaper but equally as good so good it’s often debated which is better. Tutanota is a German based email provider https://tutamail.com/pricing

When signing up to either service I recommend making your username different to the email address you want to use and only use the username to login and contact support to avoid phishing attempts it will also give you freedom when choosing an alies as your primary email.

As soon as the DNS changes propagate, your setup will be complete. If your domain gets leaked simply delete and make a new one.

If your preferred aliies isn’t available you can make one by using a domain name you can buy from a registrar like Godaddy, Namecheap or https://domain.com then apply some records to the DNS


Applying DMARC to your email domain can help thwart phishing attacks.

VPN:

https://protonvpn.com https://vpn.mozilla.org

If possible use a PO Box, not your real physical address.

A PO Box or Post office box is just a letter box where you can get your post delivered instead of your real address; they’re easy to get and you can pay in 3 month, 6 month or yearly.

It’s like a VPN but for your physical address only the Post office can see how much traffic is going in and out.

It’s especially useful for online services you don’t want knowing your real address because of a questionable or unknown reputation i.e how well will they keep your data secure.

PO Boxes are provided by the postal service which is a branch of the government so you will likely have to provide ID depending on the country you’re located in.

For more information see the links below:

https://relay.firefox.com or https://omg.lol so if the service has a data breach you can just re-generate the alias if you're using Relay and change the forwarding address if you're using https://omg.lol.

Make a Firefox account if you don’t already have one and use the omg.lol email forwarding service to sign up to it then when you want to buy something and have to give your email use the alias from Firefox relay so if they have a data breach you can delete it and generate a new one. Relay also blocks incoming emails as well as forwarding them with with a toggle switch. You can use Firefox relay for deliveries and mailing lists you authorise.

At the absolute very least 2FA via SMS as it’s better than nothing but I would suggest using a separate phone number to avoid a sim swap attack.

https://cybernews.com/privacy/the-biggest-flaw-of-sim-based-2fa/

Most of the markets are in the U.S. or Europe so you would need need a Euro account which is easy enough to get if you don’t live in the Eurozone. There’s a few options:

If just Bitcoin I recommend https://xsats.com/ you can pay euro and pound sterling which uses FPS so the order would be complete in less than 2 hours rather than waiting 2-3 working days for SEPA payments to clear before buying.

You also could look at https://bitcoinsuisse.com/ which is a Swiss based exchange uses Swiss privacy laws and has been operating since 2013 without any hacks. You can call customer service or email them they’re very good. You can trade in EUR, GBP, CHF, USD DKK and SGD. Also uses FPS to do sterling transfers. They sell Bitcoin, Ethereum and other alternatives. Haven’t used much because the minimum is £50 I can’t afford that so I haven’t used often but from what I have used their customer service is 100%.

If you want more than that I would recommend kraken https://kraken.com/ which is very secure and has a long reputation for being trusted. hasn’t been hacked and has pledged to help victims of the MtGox hack in 2010 where it either got hacked or embezzled [the owner of the exchange just stole everything he’s the first but definitely not the last so should look out for reputations of other exchanges and the type of data they require to open an account.]

When you make an account with Kraken you will make a username and password like the other but the difference is when you need support, the exchange generates a reference key unique to your account to share with the support admins. This reference does not log you in, only your username can do that. even your email is not used for that but only to communicate with support if the live chat can’t help.

For reference – https://mtgox.com/

https://litebit.eu/ sells pretty much everything else useful to have if there’s something you want to buy which you can’t buy anywhere else. also has phone and email support.

So 5 exchanges with a possible 6th. https://binance.com/ is good for BTC and ETH pairs. I bought Firo (at the time it was called Zcoin) from their by trading USDT which is supposed to be a decentralised version of USD. But the exchange has been accused of dodgy stuff like wash trading especially since it bought https://coinmarketcap.com/ so it can say in the metrics that their exchange has the most trade volume when it doesn’t. Do not verify you ID with this exchange. I don’t know where their servers are located but before China banned digital currencies they were located there the CEO & Founder is from China. I think now in Singapore which isn’t much better. So banks to use with sending money to and from exchanges. If using my referral link you can get free money from that service.

[WARNING] Litebit has been in a recent data leak. https://www.litebit.eu/en/blog/litebit-update/

Revolut is an option I would recommend for this which is available across Europe and Australia. It’s great for when you go on holiday, they support currencies from over 20 countries and an account will enable you to trade US stocks and commodities as well as precious metals and digital currencies. BE AWARE: you cannot withdraw your digital money to a non-custodial wallet which essentially makes it an I.O.U. Alternatively you could use https://privacy.com/ as well but only if you live in North America.

It makes you a target to hackers and scammers. Anyone can see your complaint and attempt a social engineering attack if your account is public so it would be better to e-mail or call them using the office information provided via their website.

The messages are not encrypted, meaning Twitter, Facebook and Instagram can see your messages if they wanted to they could impersonate you.

Earlier this month Twitter was hacked impacting accounts belonging to Barack Obama, Joe Biden, Bill Gates, Elon Musk, Kanye West, Kim Kardashian West and Warren Buffett.

The attacker infiltrated the high profile accounts targeting their followers using the common Bitcoin giveaway scam, “Send 1 Bitcoin to the displayed address and receive 1.5 Bitcoin back.” It's a social engineering method attempting to gain money off of unsuspecting victims.