I have a phone with no sim that I use sometimes over wifi, but I have another one with a sim that I sometimes use as a wifi hot spot for the no-sim phone.

They backed off from this, I thought. It will probably be back of course.

Idk how stuff was done in Ireland but there weren’t so many computers then. It’s probably easier to install audio bugs than conduct an “evil maid attack” (infosec term for surreptitiously messing with someone’s computer, traditionally in the person’s hotel room) if they have taken any precautions.

I think those are two different things. They might do 1000s of secret break-ins per year, maybe 10,000’s. But probably not millions. OTOH, mass surveillance is used against just about everyone, i.e. billions. So the scale is different.

Here in the US, I suspect secret break-ins are rare, because they are risky (armed occupants etc). So they do SWAT raids instead. Abusive and too often fatal, but not that secret.

In the US it’s always been possible to do this with a proper warrant, though avoiding detection if the person expects something could be difficult. Security cameras and so on.

I’m not too bothered by this given how much work it is. They will only do it if there’s a criminal case or some other significant interest to work from. It’s not a tool of warrantless mass surveillance even though it’s been done abusively/illegally from time to time.

I’ve bought and activated several prepaid phones over the years, paid cash, obviously pseudonymous name, no ID. Last was several years ago, idk if you can still do that. When I did it, it was at phone stores and they told me it was ok.

That said, phones will never be private. There’s too much tracking and logging. People can’t accept that, because they love their phones too much. But you have to make a choice. Anonymous carriers are of almost no help because all the stuff about deanonymizing database records applies even more to phones. At best they help stay away from some marketing crap and stuff on that level. Government surveillance will see right through it.

Not privacy and tbh kind of creepy.

digital photo frame seems like an ideal way to do that.

What? What’s wrong with either just putting them on a web album and letting the family browse them, or else sending actual physical prints? I certainly wouldn’t want a digital frame in my living room with someone else controlling what it was showing.

I wonder if any comparable services don’t re-use the address when it’s on the service’s domain, maybe after a grace period. I use fastmail mostly for my own domains though I do have some addresses on theirs. Certainly if you let a domain expire, the registrar will sell it to someone else. Seems similar.

Someone once offered me a nice chunk of cash for one of my domains. I might have accepted it if they didn’t want the domain handed over immediately. It’s a domain I receive some email through, so would have wanted a shutdown period to prevent at least some of the email for ending up with the domain’s new owner.

Yes, I forgot Migadu. I played with it a little and it was nice, though I think it costs more now.

I’ve been using fastmail.com for a long time and am satisfied, though it’s on the expensive side and I haven’t looked into every alternative.

If you want cheap email hosting for your own domain, mxroute.com has been around for a while and cranemail.com is new, but both are small companies run by people who know what they are doing (online acquaintances of mine if that matters).

It will be back. Stay alert.

Just get some cheap web hosting.

There is a thing like that for Android but from what I can tell, it doesn’t work as well as the Apple version, at least so far.

Oh cool, someone finally did it. I’ve been wanting that for years!

My idea for a long time has been to connect my laptop charger to a pedal-powered generator, so I can still stay online for as much time as I want, but I have to get some exercise (by pedalling the generator) to keep the computer running. Let’s say 30 minutes of pedalling for a few hours of connection time.

I’ve tried to use it but it’s way too flaky. :(

I will check on that but I had thought that the point of moving from mag stripe to chip cards was to stop exposing the card number. The is instead a 2 way encrypted conversation between the chip and the bank server. I had expected the phone app to do about the same thing.

Also, payment terminals (I was once pretty familiar with them) are likely to be more secure than phones.

Just tap your card. I’m baffled about why people think it’s important to use their phones.

Lol a Google share link on the privacy forum. Anyone know where it goes? OP can you fix it?

Do you mean TOTP? FIDO? Or what? FOSS ones exist but they might not do exactly the right thing. I’ve had some ideas for self-built too. What would you do on the host interface side? Wouldn’t you want the host to not have the secret?

It’s an interesting question.

Self hosted or go home.

Yeah I don’t currently use any ride hailing apps and haven’t posted to Craigslist in ages. Some services will be more paranoid than others. Depends on how much fraud they encounter I guess.

The thing in the US was about a sim farm in New York and the reporting was pretty stupid from what I could tell. At present you can get US mobile phones and sims without ID. Also, most services that send sms validation don’t care if it’s a real mobile number. I use a VoIP number and it’s usually fine.

If you’re using a hosted sim to forward SMS to your real phone # or email, you have to expect that a determined or powerful enough opponent will link the two. What happens then probably depends on what you were doing.

Interesting though as you say, also shady. Also seems marginal. Sending enough SMS to recover the monthly cost of the SIM cards seems likely to get the carriers’ attention after a while. Outbound SMS from Twilio are around 0.8 cents each in the US fwiw. Much less hassle. Maybe even less from carriers. No idea about EU.

The news article was about a specific incident in the EU and idk if it generalizes to “governments” but yes, sim farms, and in some cases racks full of real phones running apps, really do exist, mostly for skeezy if not criminal purposes. It’s not like some privacy conscious rando having a few burner phones for whatever. If they have 10,000 active phone numbers terminated in a warehouse, they are up to something sus.

The UN thing was stupid, it peddled a story about disabling the phone network bla bla. The real purpose of those sim banks is various forms of illicit scraping or click fraud, signing up for 100’s of fake SMS verified Facebook accounts so you can run sales scams, etc. That sounds like the nature of the thing that was just busted.

Article lede: European law enforcement in an operation codenamed ‘SIMCARTEL’ has dismantled an illegal SIM-box service that enabled more than 3,200 fraud cases and caused at least 4.5 million euros in losses.

I think you don’t want to know the real answer. It sounds like you want a phone app, but what you really have to do is flush your phone down the toilet and use a totally different approach. Also, there is absolutely no way to avoid difficult opsec. The communications technology is irrelevant since the greatest vulnerability in any security system is the people who use it. Do you think the private messenger software will free sessions with your therapist from spying? Guess again.

As the saying used to go, you’re seeking a Star Trek solution to a Babylon 5 problem.

Old.reddit.com works fine with ublock for now.

IDK how it works exactly, maybe the secrecy only counts when you confess your own sins, not someone else’s. I’m sure there is theological doctrine one way or the other.

I don’t know, it might depend on the crime. I believe that clergy get a higher level of privilege than therapists. You can literally confess a murder to a priest and they aren’t allowed to (and won’t) tell anyone.

Famously, in the 1970s, Daniel Ellsberg stayed out of jail after it emerged that Nixon’s fixers had broken into Ellsberg’s psychiatrist’s office to get his case files. These days they would just break into a computer.

I agree with that. I also get ill at the thought of posting a facebook meme, or even having a facebook acccount.

https://reason.com/2025/10/10/tennessee-man-arrested-gets-2-million-bond-for-posting-facebook-meme/

If you go to a therapist, make sure they don’t keep any computerized records of your therapy sessions. :(

https://en.wikipedia.org/wiki/Vastaamo_data_breach

I don’t have working cell service in my burner phone at all right now. I just use my regular phone as a wifi hotspot and run the retail app on the burner. But tello.com has some low cost pay-as-you-go plans. They are a T-mobile MVNO and are supposedly ok. I’m on a redpocket monthly plan and am fairly happy with it despite horrible reports about them in the past. Look at r/nocontract on spezzit for more ideas.

I’ve managed to avoid banking apps altogether but I know they often want you to be running stock Android, no rooting or whatever. There is a retail app that I sometimes use but I relegate it to a burner phone. If I had to run a banking app with any regularity, I’d probably do the same thing.

What? Lol.

ONE participant of the phone call is getting paid. It’s unclear if the other one is even being informed. Anyway apparently the app shut down today because of a huge data leak, but I haven’t looked into the details.

Spotify

You had me going til that one.

For sharing with your friends you might look into Magic Wormhole. In my case I just put the file on a personal web site, usually.