What a lot of people seem to know intrinsically but may not think about is that the new front line of the culture war is digital. Ironically, that digital frontier is where YOU, the user, have the most power. You don’t have to march, you don’t have to donate, you don’t even have to leave your house, and you can still do a ton of good. The added bonus of this is that you’re protecting yourself and others at the same time.
I’m a techie. Always have been. I got my first computer, a Commodore VIC-20, when I was maybe 8. By the end of the first day, I had written a BASIC program. This September will mark 27 years since entering the IT field, so I’ve learned a few things along the way, and I think some of my experiences might help YOU protect yourself in the coming weeks and months. The BEST part is that you don’t need any background in IT to do it. A lot of what I’m going to recommend is simple, but it may require a little time to adjust to a new way of doing things.
DISCLAIMER
Before we begin, I want to make a couple things clear. I am NOT a security expert. These suggestions are a basic starting point, and I would recommend consulting with professionals if you need enhanced security or privacy. The Electronic Frontier Foundation (EFF) has many resources in that vein, and it’s their whole raison d’être. Furthermore, I’m a PC/Android guy. I’m pretty sure most of what I’m about to tell you will work on iOS/OSX, but I can’t make any promises because I don’t have those devices. Your mileage may vary. Lastly, I want to point out that I am in no way compensated for any of this and my opinions are my own. Many of the tools below are non-profit and/or open-source, so it’s not like they could pay me anyway.
Some quick links if you’re impatient…
ON YOUR DEVICE: Browsers – Firefox Plugins – Search Engines – Messaging – VPNs
ON THE INTERNET: Stop Spying – Federated Login – Diversify
IN THE SOCIALS: No Clicks – No Ads – Block & Report
On your device…
- Your web browser is probably the biggest data collection tool on your device, assuming you don’t already have some sort of malware. Everything you do through it is meticulously logged, aggregated, and used to hyper-specifically tailor your online experience to what you’re wanted to see. Google Chrome, Apple Safari, and Microsoft Edge are all collecting your data. USE SOMETHING ELSE!
- Brave is a fairly new entry to the market, but it’s widely regarded as one of the most secure browsing experiences available. It requires very little setup, and has ad blockers and privacy apps built in.
- The Tor Project requires a little bit more tech savvy, but it uses something called “onion routing” to prevent you from being tracked. I honestly put this here for completeness, but wouldn’t recommend it unless you need something more advanced. Tor browser was widely used during the Arab Spring and was deemed “uncrackable,” so do with that what you will.
- Then, there’s good ol’ reliable Firefox, my tool of choice. Mozilla, who produces Firefox, is a non-profit whose sole, stated goal is to make the Internet better for everyone. Firefox is not perfect, nor is it as out-of-the-box ready as Brave. But with a little care, and a few tweaks (see more below), it’s one of the most trusted mainstream browsers out there. It has roots going all the way back to Mosaic in 1993!
- If you want to see what else is available, check out this article: https://cyberinsider.com/browser/secure/
- If you choose to go with Firefox, I recommend the use of some additional plug-ins to enhance and secure your experience. I also recommend keeping your add-ons list light, because each of them will add some time to your browsing. Here’s a screenshot of my trimmed down list.
- Also, if you choose Firefox, this article may provide you some additional security settings, but be careful with some of these. Not recommended for novices. https://cyberinsider.com/firefox-privacy/
- DuckDuckGo (I’ll say more about them later) is a search engine that doesn’t track you. This plugin is more of a meter to show you how secure you are.
- Facebook Container keeps Meta from inspecting your other tabs. AFAIK, no other browser offers this.
- LastPass (or others) is just good practice. Browser password stores are convenient, but not very secure.
- Privacy Badger is produced by the EFF, and blocks a lot of tracking cookies that advertisers use to follow you.
- uBlock Origin is one of the best ad blockers out there. Some sites will stonewall you for using one, but that’s on them, not you.
- Speaking of DuckDuckGo, it’s an alternative search engine that doesn’t track your behavior through searches (probably very useful for us authors!). They’re not zero-collection, but they do not tie search queries to individual users or IP addresses. I have found it every bit as useful as the big G, but with a lot less garbage.
- If DDG isn’t secure enough for you, or you’d just like to try some other options, here is a great list of Google alternatives: https://cyberinsider.com/private-search-engine/
- If you use WhatsApp or Messenger for chatting with people, don’t. They’re both owned by Meta, and although they’re end-to-end encrypted, I don’t trust them. Besides, there are better performing, more secure apps out there. Many people have probably heard of Signal and Telegram from coverage of world conflicts, and they are the most safe and secure, but maybe not the easiest to get used to. One that often gets overlooked, and which I use extensively is Rakuten Viber. It’s end-to-end secure, and they have stickers and such. Who said security couldn’t be fun too?
- GET A VPN!!! VPNs (Virtual Private Networks) protect snoopers from finding out where you are or what you’re
transmitting across the wire. This is critically important on public Wi-Fi networks, where you don’t know who’s running what. Many also have worldwide endpoints which can help you circumvent geofencing, or blocking content based on location. Back in ye olden times, VPN was the exclusive domain of the techie nerd (like me) building network devices on Raspberry Pis and such. These days, it couldn’t be simpler. In fact, many antivirus packages, like McAfee, offer a secure VPN service built in. That said, we all know that Swiss Army knives can do a lot of things, but they don’t always do them well.- NordVPN is probably the most trusted name in this space, and they often run deals and money-back guarantees. They sponsor a lot of YouTube content, so you can probably find discount codes just about anywhere.
- Honorable mention to Proton, a Switzerland-based company that offers tons of secure tools, including a VPN and secure mail.
- I’ve also used Mozilla VPN, but TBH, it can be a little wonky. Check out your options here: https://cyberinsider.com/vpn/best/
On the Internet…
- Of course, the big guys are spying on you, and they automatically opt you into a lot of these schemes. They allow you to opt-out, but you have to wade through dozens of menus four clicks deep. Fortunately, some really smart people have already figured this out for you, and brought receipts: https://www.pcmag.com/how-to/how-to-stop-facebook-from-spying-on-your-internet-activity
- Furthermore, if you’re using Facebook/Instagram/Meta to log you into other sites (what’s called “federated” login), disconnect those, and use a user/pass, preferably with multi-factor authentication (MFA). Probably the one exception is for other Meta apps, like Instagram to Threads. Same goes for Google, but if you’re an Android user, you may not be able to escape this entirely.
- Diversify your online presence, particularly if you’re a business. If you put all your eggs in the Meta or TikTok basket, you’ll be devastated if they suddenly disappear or radically change. Bluesky, Mastodon, and Substack are all close to becoming very realistic options, but they’re not all there yet. Decentralization is going to be the keyword moving forward, and that’s what the Fediverse is for. NOTE: Threads is Fediverse-capable.
In the socials…
- DON’T CLICK ON THE ADS! I really can’t stress this enough. This is important for two reasons:
- First, Meta, X, and others get paid for click-throughs by their advertisers. By robbing them of clicks, you’re hitting them where it hurts most: their pockets. Sure, they can “astroturf” clicks with their AI “users,” but when conversion rates go down, advertisers are gonna start asking questions.
- Second, with few exceptions, the mobile apps of these platforms will open the link in THEIR INTERNAL BROWSER, thus defeating much of what I’ve explained above. Bluesky gives you the option to use your device’s default browser, but it’s the only one I’ve seen that does it.
- Stop paying for ads and boosts. I know, if you’re using socials for a business, this one hurts. They’ve started burying non-paid content, creating a “fast lane” for paying posters, but I’m not convinced that small spending moves you up that much. This is more an opinion than a recommendation, but again, you’re taking money out of their pockets. Voting with your wallet.
- Block and report EVERYTHING. Don’t give an inch. If people run up in your Threads causing trouble, use the “Hide for Everyone” option before you block them. Fire requires fuel, oxygen, and an ignition source. In social media, the fuel is the troll, the oxygen is the audience, and the ignition source is engagement. If you starve them of their audience, they’ll get bored and walk away, or maybe have to start over with a new account.
This is meant to be a living document, so I’ll leave comments open for suggestions or corrections. Remember, this is based on my experiences and what has worked for me. It’s not meant to be prescriptive, but more to help you think about how you engage with our digital world. I hope, in some small way, it has helped.
Don’t give up. Stay and fight. This is resistance by non-compliance. Their way is not the only way. We choose how we consume, when we consume, and who knows about it. I choose to take that away from them. If you’re with me, try some of the things I’ve mentioned. See how deep the rabbit hole goes.