67
While it can be a hassle, reducing your attack surface is always recommended (lemmy.zip)
submitted 1 month ago by Carbophile@lemmy.zip to c/opsec@lemmy.zip
6 comments fedilink hide all child comments

Even though Bluetooth is designed to be secure, vulnerabilities can sneak in. We saw an example of that with the Flipper Zero being able to spam Apple devices, and while that was relatively harmless, that doesn't mean the next vulnerability will be.

you are viewing a single comment's thread
view the rest of the comments
[-] mctoasterson@reddthat.com 5 points 1 month ago

This is a pet peeve of mine.

I recommended people turn off Bluetooth and WiFi when they're outside the house (and not intending to connect to a network) merely as a battery saving measure if nothing else. Several people in the thread told me to eff off and they couldn't be bothered.

Now we know modern iOS products don't even really allow you to turn off your radios without arbitrarily re-enabling them.

this post was submitted on 11 Jul 2024
67 points (94.7% liked)

Operations Security (OPSEC)

200 readers
1 users here now

Welcome to the first operations security (OPSEC) community on Lemmy!

This is a space dedicated to discussing, sharing, and learning about operational security practices. Whether you are a business owner, a cybersecurity expert, or just a regular person, you can always benefit from a little extra OPSEC in your life.

Community Guidelines

As we belong to Lemmy.zip all of their guidelines apply on top of ours.

  1. Stay on topic:

    • Keep discussions related to OPSEC only
    • If your post is about this community instead of OPSEC prepend [META] to the title

  2. No illegal content:

    • Do not discuss, promote, or engage in illegal activities
    • While OPSEC can be used for criminal activity, we will not offer assistance to anyone planning to use it for such

  3. Quality Content:

    • Provide only good, factual and credible advice
    • Avoid spreading misinformation or unverified claims
    • Avoid low-effort posts, spam and sensationalism
    • Copypastas are allowed only as comments and if related to the post or parent comment.
    • Do not post AI-generated content; anyone can ask ChatGPT for assistance so do what you do best: be a human
    • Anyone giving blatantly false advice will be permanently banned

  4. No Self-Promotion:

    • Refrain from excessive self-promotion or advertising
    • Occasional sharing of personal projects is allowed if it benefits the community

  5. Threat Models:

    • Do not ask for advice without mentioning your threat model
    • Do not provide advice ridiculously outside the asker's threat model
    • Do not provide advice without knowing the asker's threat model (except when providing general advice to the community)

What is OPSEC?

Operations security (OPSEC) is a process that identifies critical information to determine whether friendly actions can be observed by enemy intelligence, determines if information obtained by adversaries could be interpreted to be useful to them, and then executes selected measures that eliminate or reduce adversary exploitation of friendly critical information.

In simpler terms, it is the process of finding vulnerabilities that an adversary could exploit and patching them, thereby reducing your attack surface.

OPSEC is NOT a synonym for cybersecurity. It can encompass it; however, it also revolves around physical security.

Useful resources

founded 1 month ago
MODERATORS
Carbophile@lemmy.zip