We LOST More of Our Privacy in 2023. A Bad Year: Year Review

00:00

2023 wasn't a particularly good year for

00:03

privacy particularly with government

00:05

intrusion to our lives as always the

00:08

narrative has been convoluted in such a

00:11

way that you actually think that things

00:14

are being done for your own good

00:17

worldwide there were some successes or

00:19

at least a delay in adopting privacy

00:21

invading laws but not entirely our

00:24

biggest privacy loss occurred in the UK

00:28

this can impact us even if we're not in

00:30

the UK the EU at one point pushed off a

00:34

dangerous bill that could have had major

00:36

effects on privacy however they have a

00:38

new move that will definitely increase

00:41

Mass surveillance with repercussions way

00:44

past the EU the courts were busy with

00:46

the January 6 Capital riots but that

00:48

exposed a kind of surveillance that we

00:51

can now attach a name to the mechanics

00:53

of warrantless surveillance become all

00:56

the more clear this December once again

00:59

the FIS of law was renewed and the

01:01

justification for surveillance is again

01:04

embedded in law without recourse to the

01:07

normal person and just as we thought

01:10

that that was it for the year we finally

01:13

get acknowledgement from Apple and

01:14

Google that surveillance of phone push

01:17

notifications has been in place for a

01:19

while let me explain to you what these

01:21

anti-privacy changes are and for the

01:23

most part they are the ones initiated by

01:26

the state the best ammunition against

01:29

these is to destroy the fake narratives

01:31

pushed by lawmakers and to make sure

01:34

those lawmakers do not get reelected

01:37

it's not an easy battle but our weapons

01:39

are based on education which I will try

01:41

to provide to you stay right

01:45

[Music]

01:54

there this year there was an almost

01:57

coordinated Push by the US Congress the

01:59

UK and EU lawmakers to battle the

02:02

so-called threat of cesam which are

02:05

photos related to child abuse the reason

02:09

this wording was specifically used is

02:12

because our gut reaction is that we need

02:14

to protect our kids and I'm sure the

02:16

focus groups measured the reaction of

02:19

the average person to see Sam and

02:21

without explaining the repercussions of

02:23

what they're selling it was an easy

02:26

thing to

02:27

push so let's dive deep been through

02:30

this specifically the claim is that each

02:32

platform needs to be proactive in

02:34

identifying child abuse photos and

02:37

Reporting these to law

02:38

enforcement however what a suspect is

02:41

that it was almost completely

02:43

coordinated with the EU UK and US

02:46

completely in sync with this messaging

02:49

the claim about cesam is that it is

02:51

something that cannot be observed on

02:54

encrypted platforms so the solution is

02:57

to break into to an encryption and that

03:00

will supposedly allow the policing of

03:03

cesam now this is the most important

03:05

part here supposedly in order to protect

03:09

kids from cesam they need to break into

03:12

an encryption right and the way to

03:14

implement this is through a technique

03:17

called client side scanning this is

03:20

something that Apple pushed in the prior

03:23

year in 2022 and they were left with a

03:27

decision to set this aside for now

03:29

because of the user backlash they

03:32

encountered now this triggered the

03:34

various State players to push this

03:37

Solution by embedding it into law

03:40

basically each state was pushing that

03:43

the responsibility for the presence of

03:45

cesam on their platforms belonged to the

03:48

platforms and if they took no action

03:50

they could be sued for the liability of

03:53

having such content many platforms

03:56

include some form of endtoend encryption

03:59

such as WhatsApp iMessage signal to name

04:03

a few this also exposes any cloud-based

04:07

feature like iCloud Microsoft One Drive

04:11

Google Drive Google photos and so on

04:14

though these are more easily surveilled

04:17

these platforms would be forced by these

04:19

laws to scan for Content supposedly that

04:22

could contain csab except here's the

04:26

main problem client size scanning is

04:29

basically a sledgehammer approach to

04:31

surveillance where only a tiny fraction

04:34

of it would apply to

04:36

cesam at least in the US so this whole

04:40

thing was about creating an

04:42

infrastructure that didn't exist before

04:45

I repeat the story because it showed the

04:47

history of three-letter agency thought

04:50

processes if you recall the 2015

04:52

terrorist shooting in San Bernardino

04:55

California Apple was being forced by the

04:57

FBI to Aid and unlock blocking the phone

05:00

of the terrorist Apple refused to comply

05:03

and I can understand why if they

05:05

provided a way to break into the iPhone

05:08

then no one would trust apple and it

05:09

would have been a major impact on their

05:12

business image but over the years

05:15

following the 2015 incident various CIA

05:17

directors took to the press and stated

05:19

that the solution to end to an

05:21

encryption was to collect the data prior

05:24

to

05:26

encryption this would then in theory

05:28

solve the encryption problem as it

05:29

relates to terrorists but terrorists

05:32

have not been common lately saying new

05:34

Boogeyman was needed and that's the

05:36

child

05:37

Predators the dangerous thing about this

05:40

that you should be aware of is that

05:42

apple found a way to have the AI on the

05:45

phone scan the content of the phone and

05:48

have that reported to HQ without a human

05:52

involved at least

05:54

initially this is the Apple

05:56

implementation of client side scanning

06:00

their argument is that no human is

06:02

examining the photos though the logic

06:04

for determining the content in a photo

06:06

is built into the phone AI chip itself

06:10

the problem once again with this

06:12

Sledgehammer approach is that the AI can

06:14

find any kind of content it did not be

06:17

connected to Children whatsoever or it

06:20

could be parents taking pictures of

06:22

their children and causing false

06:24

positives but the reality is that client

06:26

side scanning just requires Specific

06:27

Instructions to the AI to search for any

06:30

content for example it wouldn't be too

06:32

much of a stretch to assume that the AI

06:35

could identify subversive content at

06:37

least as it relates to the government in

06:39

power let me first tell you the status

06:41

of these various bills as they progress

06:43

through the various chambers of

06:45

lawmakers the EU failed to pass a cesam

06:49

law the US has not yet successfully

06:52

passed any of this laws however the bad

06:55

news is that the UK did pass the Online

06:58

safety act which basically embeds the

07:01

responsibility for building client size

07:03

getting to each

07:05

platform even if only the UK puts this

07:08

into law the problem is that each

07:10

platform has to build their own

07:11

mechanisms for scanning content pre-

07:15

encryption Apple already has this so

07:18

that is a big evil right there many

07:20

Apple Fans actually believe in the Apple

07:23

respon that they put this project on

07:25

hold what Apple did not acknowledge is

07:29

that the API or programming interface to

07:32

scan for images was already put into an

07:35

earlier version of iOS even

07:39

earlier and lately we've heard that this

07:41

API was also added to Mac OS so forget

07:45

about cesam now the tools to do client

07:48

size scanning are now part of every

07:51

Apple

07:53

device some testers were able to

07:56

intercept calls by the file manager to

07:59

use some of these image scanning apis

08:02

this was discussed heavily in a Louis

08:04

Rosman video again because of the UK law

08:08

likely each platform will need to build

08:11

their own infrastructure too so this is

08:13

just the beginning of this watch out

08:15

folks if you hear C Sam then assume

08:19

you're being fooled the state wants to

08:21

break into an encryption generally this

08:24

is the only thing important to them and

08:27

this technology already exists on Apple

08:30

products and likely coming to other

08:32

platforms near

08:39

you while Cam and client ey scanning are

08:42

on the Forefront of future actions it

08:45

was recently revealed and wired that our

08:48

push notifications are being surveilled

08:50

by law enforcement the thing about push

08:53

notifications is that in most cases

08:56

these are completely unencrypted so simp

08:59

simply by knowing which device to track

09:01

it becomes easy for a state to review

09:04

all push notifications to your device

09:08

this was revealed in court record and

09:10

brought to the Public's attention by

09:12

Senator Ron weiden and as usual when

09:16

these actions take place it is often

09:18

accompanied by a gag order on the

09:20

platform so we would not know about this

09:23

and other surveillance methods obviously

09:26

we already know from Snowden that there

09:28

are bunch of surveillance methods like

09:31

capturing email texting and phone

09:34

records the point is that these are

09:37

always stated as necessary for

09:40

protection against terrorists though it

09:42

will be interesting to note that the use

09:44

of these surveillance methods are not

09:46

connected to terrorists or foreign

09:48

persons one specific case used

09:51

notifications in a January 6 Capital

09:53

Riot case and I have more to say about

09:56

that

09:58

later

10:02

so beyond notifications the court record

10:06

specifically for the January 6 Capital

10:08

Riot cases showed that close to a

10:11

thousand people have been charged in the

10:13

capital riots based on location data

10:17

acquired from Google this is important

10:19

to understand Way Beyond the capital

10:22

Riot cases it's just that the government

10:24

was very eager to prosecute individuals

10:27

found in a capital building on January 6

10:30

though I do not recall where governments

10:33

have identified people involved in riots

10:35

and destruction of property in the

10:37

various riots around the country so

10:40

governments can use location data

10:43

selectively depending on their political

10:46

expediency or purpose this method of

10:49

identifying people's locations based on

10:51

the presence of their phone is called

10:54

geofencing you mark GPS coordinates of

10:57

the area you want to surveil and then

11:00

determine a time span and you can then

11:03

ask Google and apple to supply this

11:05

information I don't have specific

11:07

information on Apple's response to Geo

11:09

fencing since nothing is public that I'm

11:12

aware but Google has been providing the

11:14

data on locations willingly and even

11:17

gave the database of locations a name it

11:21

is called the Google sensor Vault we

11:25

know this because it is in the court

11:27

records I've discussed this in various

11:30

videos and I won't go into detail on

11:33

this in fact I explained it again in

11:35

last week's video but generally be aware

11:38

that your location is constantly tracked

11:40

on a phone

11:42

24/7 and you cannot turn this off unless

11:46

you have a the Google phone and worse

11:49

iPhones can be tracked even if you turn

11:51

the phone off since they turn into air

11:54

tags so just be aware of this technology

11:57

because it is used for for Dragnet in

12:00

many areas I wouldn't be surprised if a

12:02

large portion of the population has been

12:04

part of search results just by being

12:07

near places where crimes have occurred

12:10

this would victimize average citizens in

12:12

many big cities this would fall under

12:15

the category of warrantless digital

12:22

searches while the EU did us a good turn

12:25

by not passing the cesam related laws un

12:28

un fortunately we did not pass 2023

12:31

unscathed apparently the EU wants to

12:33

implement standardized national identity

12:35

cards for EU citizens now that part is

12:38

the business of the EU but they are

12:40

apparently implementing something else

12:42

that will impact us all the EU wants to

12:45

create a root certificate for the EU

12:48

entity and then this root certificate

12:51

will grant intermediate root certificate

12:53

authority to each country just so you

12:56

know it is very unusual to have a root

12:59

certificate be forced Upon Us by a

13:02

democratic government this is a policy

13:04

implemented in countries like Iran Cuba

13:07

China and so

13:10

on but the presence of a root

13:12

certificate that is not a valid rot

13:15

certificate Authority is very dangerous

13:17

as I explained in multiple recent videos

13:20

it allows that government to issue fake

13:22

certificates which can then be used to

13:25

break web encryption in cyber security

13:28

speech it allows a man in the middle to

13:31

capture Network traffic and observe it

13:33

this capability will be in the hands of

13:35

each EU country when this law gets

13:38

implemented apparently the browsers

13:41

would be banned by law from removing

13:43

these root

13:44

certificates and these are not really

13:47

true root certificates issued by valid

13:50

authorities they would be impos

13:53

certificates the same way Google Apple

13:55

and Microsoft imposes their root

13:58

certificate

13:59

on their devices without any check and

14:01

balance so in addition to the already

14:04

dangerous Ro certificates from Big Tech

14:07

we now will have governments to worry

14:09

about selective surveillance of web

14:12

traffic would become easy to do anywhere

14:14

in the world as long as you are in

14:16

cahoots with one of these EU countries

14:21

scary stuff and I personally feel that

14:23

web encryption is completely broken I

14:26

made a proposal to change the whole

14:28

public infrastructure to defend against

14:31

mitm or man in the middle that was in a

14:34

recent

14:40

video another highlight of 2023 is that

14:43

once again the fisa law has been renewed

14:46

by Congress fisa means the foreign

14:49

intelligence surveillance act originally

14:51

from 1978 it was meant to provide

14:54

judicial and congressional oversight on

14:57

investigations on foreign person

14:59

in the name of National Security this

15:02

law was changed rapidly though with the

15:03

passing of the Patriot Act as a result

15:06

of 9911 under Section 702 of the foreign

15:10

intelligence surveillance act the US

15:12

government engaged in Mass warrantless

15:16

surveillance of Americans and foreigners

15:18

phone calls text messages emails and

15:21

other electronic

15:23

communications information collected

15:26

under the law without a warrant can be

15:28

used to prosecute and imprison people

15:31

even for crimes that have nothing to do

15:33

with National Security First of all fisa

15:37

is implemented in secret second though

15:40

the original intent was to spy on

15:42

foreign persons the reality is that fisa

15:45

was used to spy on 200,000 us persons

15:48

fisa was abused constantly and fisa

15:52

courts really rubber stamped every

15:54

request once again Congress was weak

15:57

privacy group groups including the ACLU

16:00

and the Electronic Frontier Foundation

16:02

have lobbied for reform of fisa to put

16:05

limits on the surveillance but once

16:07

again they

16:08

failed it failed because we as a people

16:11

accept surveillance as a fact of

16:15

life yeah yeah you have nothing to hide

16:17

so you don't

16:18

care got

16:25

it these are the events highlighted for

16:29

2023 each year a further reduction in

16:32

privacy occurs and this year we took

16:34

another big hit I thought there was

16:37

going to be a positive in 2023 with the

16:39

introduction of past keys and I've

16:42

learned recently that even that's a fake

16:44

so I thought that was going to be a

16:46

privacy positive but apparently not I've

16:49

said over and over that my goals are

16:51

very simple I don't care that I have

16:54

nothing to hide I care that it's none of

16:57

their business as a law abiding and

16:59

taxpaying citizen I just want to be left

17:07

alone I started a company to provide

17:10

solutions to the average person instead

17:11

of just talking about problems privacy

17:14

is a changing Battlefield and approaches

17:17

always change so I've studied the

17:19

Privacy problem and I came up with a few

17:21

things that will greatly help the

17:24

primary solution to use is still a

17:26

degoogle phone as as I discussed in

17:29

other videos it is immune from Geo

17:31

fencing and also protects your identity

17:34

since it does not have a Google ID check

17:36

that out these phones are around $400 so

17:40

they are cheaper than normal phones I

17:43

have a VPN product that protects you

17:46

from Mass surveillance and even hackers

17:48

doing man in the midle attacks they also

17:51

protect your IP address so this solves

17:54

one of the issues I mentioned in this

17:56

video which is the EU root

17:59

certificate and the solution is the bvpn

18:02

service which I started a few years ago

18:04

we have worldwide coverage and a known

18:06

entity providing the service me

18:09

hopefully someone you can

18:11

trust we have a bra Mill service that

18:14

highs identity information from your

18:16

email we offer unlimited aliases seven

18:19

domains and web mail check that out for

18:22

$50 a year all these are on my store on

18:26

bra me sign up on there and you will not

18:29

be asked for personal information to

18:31

sign up thanks for watching and see you

18:35

next

18:36

[Music]

18:41

time