Resources

Below is a list of some of my favorite web resources on security and privacy. Most of these were in my book, but I’ve added some others here and plan to keep this list up to date. You can also check out my Data Privacy Checklist and my annual Best & Worst Gifts Guide.

• Web Tools & Guides
• Blogs & Other Resources
• Podcasts
• Technical Web Sites
• Books
• Movies/Documentaries
• Online Training
• Fighting the Good Fight

Web Tools & Guides

• Ars Technica published a nice series of articles on security: Part 1, Part 2, Part 3
• Apple’s Personal Safety User Guide
• Mozilla’s Privacy Not Included. A crowd-sourced list of products and their “creepy” factor, which a standardized breakdown of the important factors to consider.
• Consumer Report’s Security Planner. This is a wonderful tool that provides you a custom checklist after you answer a brief questionnaire. I highly recommend this tool to everyone.
• Cybersecurity & Infrastructure Security Agency tip sheets.
• Restore Privacy. Another great site for finding secure and privacy-respecting tools and services.
• Tips from US-CERT. A site from the US government with lots of tips and info on computer security.
• Simple Opt Out. It’s anything but simple, but nice to have some much info all in one spot.
• EFF Surveillance Self Defense. Tips and tools for safer online communications.
• EFF’s Cover Your Tracks tool. This replaces their previous Panopticlick tool.
• Duck Duck Go’s privacy guides.
• Persona based training matrix. This is an interesting guide with a slew of tips based on who you are and who you’re trying to hide from.
• No More Google. A nice list of Google alternatives for all the many services they provide.
• Switching Software. Another great site for finding private alternatives to popular websites and software.
• Two-Factor Auth. A handy website that tells you which sites and services support 2FA (and what forms).
• Router Security. Excellent site with lots of great tips for securing your home router.
• Defensive Computing Checklist. Another great list of ways to improve your security.
• Check Short URL. This handy site will expand shortened URLs for you (like bit.ly and Facebook/Twitter URLs), even showing you a screen show of what the page looks like.
• No More Ransom. A non-profit devoted to helping break ransomware crypto so that victims don’t have to pay.
• ID Ransomware. A tool for identifying which ransomware you’ve been infected with and then guiding you to other resources for help.
• Privatiiz. A tool for rating a company’s privacy policy, in terms of length and difficulty to read. Doesn’t make it easier, but still interesting to see.
• Digital Breakup: Tools and info for breaking off a relationship with someone
• Internet Smarts: Surfing and Shopping Safely Online – a comprehensive, categorized list of online safety resources
• A Brief History of Hacking – nice concise timeline of important events in computers and hacking
• Surveillance Technology Oversight Project (STOP) – doing some great work to curb the use of mass surveillance by law enforcement

Blogs & Other Resources

• The Value of Privacy. This is a particular blog entry by Bruce Schneier that is a must-read.
• Naked Security. Run by Sophos, so keep that in mind – but still a great source for security info, written in accessible language.
• Duck Duck Go’s Spread Privacy blog.
• Privacy Guides. An amazingly-comprehensive site devoted to the best of the best everyday tools for privacy.
• Techlore. Another great site with great training and tutorials. Check their “resources” page, too.
• The New Oil. Yet another awesome site with lots of recommendations and resources.
• The Hitchhiker’s Guide to Online Anonymity. An incredibly comprehensive guide to understanding how you can be tracked online and in real life, and how to prevent or mitigate it.
• Terms of Service; Didn’t Read. You read the terms of service before clicking “accept”, right? Neither did anyone else.
• Defending Digital blog. Focus on protecting kids online.

Podcasts

• Security Now! This is where I really got into security. While it can get a little technical sometimes, it’s always fun – and full of random other fun stuff like sci-fi books and movies.
• Firewalls Don’t Stop Dragons. (Tooting my own horn proudly.)
• InfoSec podcast list. Extensive list of other great podcasts (and conferences).

Technical Web Sites

These web sites are geared toward more technically-savvy types.

• Schneier on Security. Security expert Bruce Schneier’s excellent blog.
• Gibson Research. Great site containing free web security tools from my favorite security podcaster, Steve Gibson. Includes ShieldsUp!, SpinRite (hard drive rescue utility), and lots of other cool stuff.
• Project Zero. Google’s security initiative, promoting web security and privacy.

Books

• Privacy is Power by Carissa Véliz – see my review
• Data and Goliath by Bruce Schneier – see my review
• Click Here to Kill Everybody by Bruce Schneier
• No Place to Hide by Glenn Greenwald – see my review
• Spam Nation by Brian Krebs
• Crypto by Steven Levy
• The Code Book by Simon Singh

Movies/Documentaries

You can learn a lot from these documentaries. I highly recommend them.

• Glenn Greenwald’s TED Talk on Privacy. It’s only about 15 mins long and a must-watch.
• The Social Dilemma (Netflix). A must-see documentary that shows how social media has created serious problems in its overzealous and callous quest for more attention. There’s an overly-dramatic fictional depiction woven throughout the movie, but it does help to illustrate the key points of the documentary.
• The Great Hack (Netflix). Another must-see documentary that explains how Cambridge Analytica used Facebook to seriously influence voters in the 2016 US election, Brexit in the UK, and many other elections around the globe.
• Terms And Conditions May Apply – about online privacy and what sorts of things you’re signing away in End User Licensing Agreements (EULA’s). (View on Amazon Prime.)
• CITIZENFOUR – about Edward Snowden and how his initial information was given to reporter Glenn Greenwald.
• The Minority Report. This movie is an excellent action-thriller sci-fi movie in its own right, but it also clearly depicts the dangers of handing over life-altering decisions to AI algorithms.
• ANON (Netflix). As a dystopian sci-fi movie, it’s so-so; but it serves as an insightful criticism of ubiquitous facial recognition systems.
• Frontline: The United States of Secrets – Great two-part show from PBS.

Online Training

I’ve recently created a one-hour video on secure communications for my publisher, Apress. I hope to do more in the future. I also will try to find some other good online content to post here.

• Maximum Privacy with End-to-End Encryption

Fighting the Good Fight

The following organizations are doing some excellent work on behalf of everyday people. Take a look at their web sites, and if you like what you see, send them a little money. If they send you a sticker or magnet, proudly display it where others will see.

• Electronic Frontier Foundation
• Electronic Privacy Information Center (EPIC)
• Center for Democracy and Technology
• Consumer Reports