Why Use Virtual Machines for Privacy and Security? Not Obvious! Top 6 List!

00:00

some of you may already know that there

00:02

are cyber security benefits to using a

00:04

virtual machine in fact that's why some

00:07

security versions of Linux like cubes

00:09

and honix uses virtual machines but what

00:12

most people don't know are the specific

00:15

advantages of using a virtual machine

00:18

for privacy there are some particular

00:21

threats from the likes of the most evil

00:23

platform Facebook and meta in general

00:28

that you can't completely beat unless

00:30

you use a virtual machine in this video

00:34

I will discuss six specific advantages

00:37

to a virtual machine that make this a

00:40

privacy and security solution you cannot

00:44

ignore this is a moderately Advanced

00:46

topic since many of you may not have the

00:49

word withal to install a virtual machine

00:52

but to educate the beginners I will show

00:55

you how to install a simple virtual

00:58

machine this particular solution is

01:00

often overlooked as a privacy tool and

01:03

admittedly I don't talk about it as much

01:05

as I have introduced some less complex

01:08

Alternatives however the Alternatives do

01:11

not solve all the problems while a

01:13

virtual machine solution does if you

01:16

want to kick up your privacy skills up a

01:18

notch by knowing this Tech and how it

01:20

can benefit you stay right there to

01:22

learn the six extra advantages of a

01:26

virtual

01:28

machine

01:33

in this video I'm going to install a

01:35

virtual machine on a laptop running

01:37

Windows 11 the virtual machine software

01:40

I will use is the free Oracle VM virtual

01:44

box this same virtual machine can be

01:47

installed on Mac OS and

01:49

Linux on Linux you also have the option

01:52

of using the free software KVM to create

01:56

virtual machines I have a video on KVM

02:00

and I do have an older video on

02:02

installing VM virtual box which is more

02:05

detailed than what I will show here and

02:07

of course there are other options on

02:08

Linux like toot the main concept of

02:12

virtualization is that you can run a

02:14

child operating system under the host

02:17

operating system the main operating

02:19

system called The Host is Windows 11 in

02:23

this example today it will make the

02:26

child operating system which today will

02:28

be Linux Mint

02:30

think it is running inside an actual

02:33

Intel machine but really it will not be

02:36

directly running under the Intel machine

02:38

rather it will be running in a virtual

02:40

computer and the host OS will be an

02:43

intermediary by providing access to

02:45

Hardware like the display keyboard mouse

02:48

memory and peripherals in modern

02:51

computers the virtualization capability

02:54

is built into the CPU now so the host OS

02:57

barely interferes in the speed of

03:00

Communications between the actual

03:02

machine and the virtual machine so a

03:05

software tool like Oracle VM virtual box

03:08

using the virtualization features of the

03:10

CPU will make the OS think it is really

03:13

running inside a real machine so here's

03:17

a quick demonstration of that here I'm

03:19

running Windows on my host machine it is

03:23

the actual operating system then here

03:26

using virtual box I have launched my

03:28

pre-installed instance of Linux Mint so

03:31

it's like having multiple operating

03:33

systems at my disposal in this example

03:37

this virtual machine window is running a

03:39

YouTube video as you can see it's pretty

03:42

watchable however it's probably not that

03:45

great for used with 4K video so it has

03:48

limits by the way for better privacy it

03:51

is best to install Linux on your virtual

03:54

machines as I did in this example Linux

03:57

will be the most privacy safe

04:00

as I'm showing here the host system is

04:03

Windows Windows has a lot of spyware

04:06

most can be turned off but there are

04:08

more being added by Microsoft constantly

04:11

just recently Microsoft enabled co-pilot

04:15

on this computer which is basically an

04:17

AI that I can talk to and who knows what

04:20

other surveillance it is doing on this

04:22

machine now I haven't had a chance to

04:25

study this yet on Mac OS aside from the

04:29

continuous monitoring by Apple of data

04:32

like location and usage statistics Mac

04:35

OS just like iOS are currently the main

04:38

devices that support client side

04:41

scanning meaning the AI in the device

04:43

can search your local content and

04:45

reported to HQ if a match is found

04:49

pretty invasive but when you're running

04:51

inside a virtual machine what you're

04:54

doing is not directly visible to the

04:56

host OS so this should blunt any AI B

04:59

content or usage scanning this is one

05:03

benefit that I will tell you right now

05:05

but there are very specific things that

05:08

will not be obvious that I'll tell you

05:11

about later so this is a bonus benefit

05:14

now before I get too deep let's begin by

05:16

doing a quick install of a virtual

05:18

machine I won't get into too much detail

05:21

here and I will speed up the video just

05:23

to give you a quick picture I downloaded

05:26

a couple of things in advance first I

05:29

downloaded the latest version of Oracle

05:31

VM virtual box which as of the time of

05:34

this video is

05:36

7.0.1 4 then I also downloaded an ISO

05:40

image of Linux Mint which I got from the

05:43

Linux Mint website I chose Linux Mint in

05:47

this example because it is a popular

05:49

drro with

05:51

beginners now in my experience it is

05:54

problematic to have the files in some

05:56

download folder because it causes

05:58

permission errors in Windows so I found

06:01

that the easiest way to avoid problems

06:03

is to make a folder and put all the

06:05

files we are going to install in there

06:08

and you need to be logged in as the

06:10

admin user so here it is in my case I

06:14

have the virtual box files and the Linux

06:16

Min files ready to go now let's do a

06:19

quick install of virtual box this new

06:22

version gives a warning message about

06:24

python core which we are not going to

06:27

care about since we are not running

06:29

python so just ignore that just accept

06:32

the defaults and continue the

06:47

installation now when you are done and

06:50

you run the virtual box application you

06:53

will see this UI of virtual box what we

06:57

are going to do is click on new then we

07:01

will fill in the name and the folder

07:04

where we will install the virtual

07:05

machines and then we specify the Linux

07:08

Mint ISO file we need I'm just going to

07:11

specify this as Linux

07:19

64bit I did an unattended installation

07:22

here it's took a while so I'm speeding

07:24

up this portion of the install here

07:26

quite a

07:28

bit

07:37

[Music]

08:07

next I will turn on the virtual machine

08:10

by double clicking the one I want and

08:13

this will boot the virtual machine into

08:16

a child OS this will basically start up

08:19

Linux Mint again make sure to remember

08:23

the user and password you've given to

08:25

your Linux user I won't show this in the

08:28

video but I installed a Chromium browser

08:30

on the VM I find that this is less buggy

08:33

than the default Firefox browser and

08:36

seems faster as well for watching

08:39

videos I also adjusted the screen

08:42

display size so it is larger my host

08:44

computer has Invidia so this VM may not

08:47

be completely using the GPU features

08:49

right

08:58

now

09:00

[Music]

09:14

after the install I will shut down the

09:16

VM and adjust a few settings as you see

09:20

here I just want to check the amount of

09:22

memory it allocated you can play with

09:24

this later I have a lot of memory so I

09:26

can give it a bunch I took a quick

09:29

glance at the other resources given and

09:31

they appear to be

09:33

fine so here's the final result I have

09:36

the host machine on the main screen and

09:39

you can see the window in the middle

09:40

which is running

09:41

YouTube this window is Linux Mint in

09:45

actual use it can be seamless you can

09:47

run your normal stuff on Windows and

09:49

then you also have the option to run a

09:51

virtual machine for when you want

09:53

privacy or Security benefits now that we

09:57

have the tools we need let me tell you

10:00

why you would use a virtual machine and

10:03

what the benefits are I'm going to list

10:05

cyber security and privacy

10:12

benefits number one have a safe OS copy

10:17

this will be important for later you can

10:19

clone your virtual machine that you have

10:22

set up the way youd like and when you

10:24

clone it you can easily restore it if

10:27

and when your OS gets infected Ed with

10:29

some malware so if you're in doubt as to

10:32

the safety of a prior action you can

10:35

stop immediately and restore the latest

10:38

clone copy of your OS this will wipe out

10:41

any malware

10:43

immediately number two sandbox your

10:49

email you can install your email client

10:52

inside the virtual machine and not

10:54

install it on your host machine this is

10:57

a fact that the average person doesn't

11:00

know probably 90% of all malware comes

11:03

from attachments and email the biggest

11:06

source of attacks is when through social

11:08

engineering some attacker makes you

11:10

click an attachment and in this process

11:13

infect your device would malware

11:16

fortunately if your emails inside the

11:18

virtual machine it cannot infect your

11:21

host machine all you have to do is

11:23

restore your clone copy of the virtual

11:25

machine and you are assured that your OS

11:28

is clean one again number three isolate

11:32

your data in the

11:36

VM if we have to worry about the AI in

11:39

Windows or Mac OS looking at our content

11:41

then the best way to prevent this AI

11:43

scanning is to put your content inside

11:46

the virtual machine this would be

11:49

important if you're a whistleblower a

11:51

journalist or maybe an activist of some

11:53

sort this type of isolation keeps your

11:56

content away from malicious spying

11:59

usually the OS will give you the option

12:02

to encrypt your VM hard disk so if this

12:06

is a concern in your particular instance

12:09

then this is how you handle that by the

12:11

way I don't usually worry about any AI

12:14

scanning if my host system is Linux

12:17

Linux is open- source and very safe but

12:20

the proprietary OS is from Microsoft and

12:23

Apple do unknown things however

12:27

sometimes we have no choice but to

12:28

install Windows in our devices or we

12:30

have a Macbook in which case it will be

12:32

running Macos the good news is that we

12:36

can always install a virtual machine

12:38

even in these

12:39

cases number four Mac address

12:45

collection let me tell you about a

12:47

surveillance scheme used by meta it's

12:50

specified in the data policy of Facebook

12:53

so this is something I've always known

12:55

about a Facebook app if you use an app

12:58

will run ARP address resolution protocol

13:01

which is a command I will demonstrate

13:03

here on the command line if I go to a

13:05

command line on Windows and run ARP it

13:08

will actually show all the devices on

13:10

your network and all the Mac addresses

13:13

well these Mac addresses are unique

13:15

identifiers and they are assigned to

13:17

your specific devices if ARP detects

13:20

your mobile devices Facebook Instagram

13:23

and WhatsApp will actually identify your

13:26

presence near a group of either other

13:28

men users simply by the MAC address

13:31

announcements in any other network you

13:34

happen to be in this is a huge privacy

13:37

Invasion Danger from the most dangerous

13:40

app ever now let me show you what

13:43

happens when you run ARP in a virtual

13:45

machine look at this because the virtual

13:47

machine network is isolated it acts as

13:50

its own network subnet and thus other

13:52

devices will not be visible on the host

13:55

Network this is also very important

13:57

because if some app runs AR on your

14:00

network finding the same combinations of

14:02

Mac addresses is like a fingerprint and

14:06

it will match each and every one of you

14:08

in the network as part of a set this

14:11

will allow identification even if you're

14:13

using a VPN at the moment the only party

14:16

that states they are using this Tech is

14:19

meta but obviously anyone can do this

14:21

without telling you number five computer

14:26

identity this is a problem on Windows

14:28

and Mac ma OS any app can find some

14:31

unique identifier on your device this is

14:34

equivalent to iOS or Android reading the

14:37

IMI on your phone I will specifically

14:40

demonstrate this on Windows let me show

14:43

you the most obvious identifier on

14:45

Windows and this is the unique thing on

14:48

your device which is the Windows product

14:51

ID any app can read this data in the

14:54

Windows registry to demonstrate this I

14:56

will go to the command line and run reg

14:59

edit then going through the indices hkey

15:03

local machine software Microsoft Windows

15:07

NT current

15:10

[Laughter]

15:18

version you can see these digital

15:21

product ID digital product

15:24

id64 product

15:26

ID but these ones I'm showing you are

15:28

pretty obvious and I will be frank with

15:30

you I have personally programmed apps

15:32

that read these identifiers to check

15:35

software licenses to apps I've made this

15:37

match to the product ID is unique now

15:40

since any app can capture this product

15:43

ID easily as you can see here then it's

15:45

very easy to capture the device identity

15:48

at all times however if you're running

15:51

Linux as we are demonstrating in our

15:53

virtual machine example then you do not

15:56

have a unique identifier in Linux

15:59

certainly nothing as permanent as a

16:00

Microsoft product ID this is a huge

16:04

Advantage with privacy using a virtual

16:07

machine you can protect the device

16:10

identity I'm actually concerned if

16:12

Chrome or other browsers read these

16:15

identifier so understand that they can

16:18

whether they do or not I don't know but

16:21

better be safe than

16:23

sorry number six Microsoft ID or Apple

16:27

ID there are are other identifiers in

16:30

the registry that I've demonstrated in

16:32

other videos for example you can see the

16:34

product name and registered owner here

16:36

now I've cleansed my system as I

16:38

explained in a video last year so I

16:40

removed all references to registered

16:43

owner which is the Microsoft ID in this

16:46

case but again realize that this data

16:49

can be captured again we show the

16:51

advantage of a virtual machine here even

16:54

if your host machine is running Windows

16:57

but whatever you deem could be a buing

16:59

app like a Chrome browser for example

17:01

will be sandboxed in Linux and will not

17:04

be able to acquire the Microsoft ID your

17:07

name and other little goodies in the

17:09

Windows registry and of course the

17:12

equivalent Apple ID will not exist in a

17:14

virtual machine running

17:17

Linux just to make this little

17:19

discussion complete if you're on a home

17:22

network you need to run a VPN on the

17:24

host Os or use a VPN router like bra

17:27

router in your networ networ then the

17:30

virtual machine will also use the VPN

17:32

since it gets its internet access from

17:34

the host machine there are more

17:36

sophisticated techniques for connecting

17:38

the virtual machine to another Network

17:40

in the cloud I haven't tried that yet

17:43

but I can see that as an available

17:45

feature on Virtual

17:49

box the reason I've not been promoting

17:52

the use of a virtual machine too much

17:54

even though I've made several videos on

17:56

it is that I've been talking about about

17:59

the simpler solution which I call

18:01

browser isolation use multiple browsers

18:05

and partition your activities into

18:07

Google and non- gooogle using these

18:10

browsers this will isolate the Google ID

18:13

and prevent your activities outside of

18:15

Google from being tracked however this

18:18

is not foolproof since some of the

18:20

identifiers I mentioned here can be

18:22

captured by Rogue apps specifically like

18:26

Facebook so if you Pur in using Facebook

18:30

the only solution I can offer you is to

18:32

isolate that use in a virtual machine it

18:35

is not necessary to use a virtual

18:38

machine for every activity but isolating

18:41

email Facebook and Google in separate

18:43

virtual machines is a very sophisticated

18:45

protection method and will protect you

18:48

both from cyber security and privacy

18:52

threats I hope this information has been

18:56

helpful folks I have a company that

18:58

creates products made to protect your

19:00

privacy this is available through my

19:03

privacy focused social media site bra me

19:07

we have now exceeded 100,000 active

19:10

users so join us there our store There

19:14

features products like the Google phones

19:17

the bra virtual phone bvpn Brax mail bra

19:22

rers and more I've created most of these

19:26

products myself and you can discuss them

19:28

with the community over at brme those

19:32

are the actual users of these products

19:33

so they will be honest with you thank

19:36

you for watching and see you next

19:38

[Music]

19:43

time