The Complete Android Privacy & Security Guide: Your Best Protection!

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Are Android One Motorola smartphones considered type 2?

👍︎︎ 1 👤︎︎ u/Accurate-Fisherman80 📅︎︎ Aug 07 2020 🗫︎ replies

Captions

[Music] Android is the most popular operating system in the world and in most instances Google a privacy invading company tracks you the manufacturer of your device like Samsung tracks you and sometimes even your carrier through pre-installed bloatware privacy on android may seem impossible but there are steps to improve it and several ways to make it an extremely private device arguably the most private device you can get your hands on today your data and privacy are vital we live in the world where everything there is to know about you is discoverable to people you know companies governments and everyone in between we have a whole lesson covering why privacy is important check that out we also recommend glenn greenwald's ted talk about this today i'm gonna show you exactly how to make your android device as private and secure as you need it to be from beginner to extreme in the same format as our recent iOS version of this video so give that a watch if you are on iOS we have three zones zone one shouldn't impact day to day usage so I recommend you implement everything within it zone 2 will require some small changes that may impact convenience and zone 3 is zone 3 it's for those looking to go above and beyond this is mostly a guideline and your specific needs may vary depending on your threat model if you want to learn how to threat model and develop a plan and deciding what you want to protect refer to this great source in the description you'll find links for resources in the description we discussed throughout the video sorted by zone as well as a checklist PDF that corresponds with all the steps to keep you organized along the way final note before starting this video will cover custom roms like lineage OS and graphene OS in zone 3 but it'll also cater to a more traditional lockdown Android device that doesn't allow custom roms this video will refer to Android as three different types type 1 Android is your run-of-the-mill phone from a cell company these typically involve Google the manufacturer and yourself company tracking you as well as poor security update support and typically locked boot loaders preventing any modification type 2 Android is stock Android or close to stock these normally have Google tracking and minimal third party tracking which is already a huge improvement most close to stock devices are open the some roms and get much better update support type 3 Android will be referred to as custom Android Rob's which is essentially flashing a new operating system on your phone which typically has no tracking out of the box most type 2 Android devices can become type 3 and even type one can become type 3 depending on your device and whether it's locked or unlocked it's a big video so let's get into zone 1 your device's password is your first form of protection on your device making it not only an important thing to secure but it's also easy to implement use a strong password if your device is locked out and requires a password having a strong one will be your first line of defense as a side note makes your notifications as well as any voice assistance and settings toggles are not publicly accessible on your lock screen once you set a strong password there are likely some options to utilize biometrics these typically suffer three major issues one that can be cracked fairly easily two they fall under different legal jurisdictions in some countries meaning you can be forced to unlock your phone if it's utilizing biometrics in the u.s. specifically passwords have historically been protected under both the Fourth and Fifth Amendment's but this rarely if ever extends to biometrics and three some users have privacy concerns behind biometric data stored on their devices if you want the convenience of biometrics feel free to use them just remember to disable them in high-risk areas like airports protests borders and other places with heavy law enforcement where you may be forced to unlock your device as for Android lock patterns they have been shown time and time again to be incredibly insecure as we discussed in our passwords go incognito lessons so avoid this at all costs lastly some Android devices have something called screen pinning which locks the phone to a specific app if you're letting someone else use your device and want to keep them inside just a singular application it's just a fun tip password do you use on websites are a commonly left out part of your security if you use the same or similar password for all of your services one breach can very easily lead to the others being breached since they utilize the same or similar credentials weak passwords are in general very easy to crack make sure at least in zone 1 that you are using a strong unique password I'll leave a source on what that means and different methods of doing it zone 2 will go further - this your browser has the ability to track everywhere you go in the internet ensuring you are only using something with proven security and privacy is paramount to protecting your web traffic the main reason to use multiple browsers is to separate your traffic and add additional features having a browser like DuckDuckGo or firefox focus for non personal disposable searches which auto-delete when you're done away from your normal web browser is fantastic not to mention they add tracking and add protection I recommend having at least one disposable browser as discussed in your arsenal and more is always an option bromides is a fantastic browser with an emphasis on security and privacy and tor does have an official app for Android to help anonymize your web traffic significantly I'll have a guide on our channel talking about mobile browser compartmentalization and how to do it so subscribe to catch that but hopefully this gets you thinking about separating your searches and web traffic across different browsers that are designed to do different things similar to your browser your search engine also has the capability of tracking everything you do on the Internet which major companies like Google do Android browsers tend to offer you a lot more customized ability here over iOS the two main stream recommendations are DuckDuckGo and start page so see if you can implement one of those within your browsers as the default or use something else with privacy in mind your IP address uniquely identifies you on the Internet and it's used by websites to track you a simple way to prevent this is by utilizing a trusted VPN provider to not only hide your IP address from sites but to also gain some additional protection on public Wi-Fi networks to prevent attackers from snooping on your traffic as for which VPN to choose we do systematic community driven VPN reviews on our channel I'll leave our most current top 5 best VPNs video as a card and in a description our current highest rated is proton VPN so I'll leave a link for that below which even has a free limited plan for you to try out if you want to know more about VPNs check out our video where I break down what a VPN is and what they do as well as don't do before someone asks about neck guard sure neck guard has a use case as an app firewall but since it uses the only VPN slot our opinion is that most users are much better off hiding their IP address from the websites they're visiting adding additional encryption to prevent direct access to web traffic from your ISPs cell companies and other snoops and many VPNs include additional protection like private DNS Maur and ad blocking and more if you're using trusted and mostly open source applications that guard loses some of its use case so analyze the apps you have on your phone on App Census and Exodus privacy for insight into background activities we recommend VPNs over net guard for most users but just know you can use in that guard if you have a specific reason to and yeah just know that's an option available to you DNS is a domain name service and they are like a phonebook for the internet directing you to the sites you visit every day the problem is most default DNS providers track your browsing so try using a DNS provider with privacy in mind if you're using a VPN service it likely includes its own DNS server meaning you don't need to worry about this if you aren't using a VPN check out the DNS servers on privacy tools IO and manually set them on your phone this will vary depending on what version of Android you're running this is broad but less is almost always more when it comes to security and privacy each additional application and setting you utilize increases attack surface and the possibility of abuse with your personal information if you're a person with pages and pages of apps that you mostly never use they are likely not just doing harm in the background with your data but also negatively impacting things like battery life and storage space so delete them or for stock apps disabled as many as you can some applications like Twitter have amazing mobile sites so if you can utilize the web app within your browser and add it to your home screen that's a great way to separate the app and keep it within your browser which is typically safer than the application there's also apps like Web Apps and frost for Facebook and lots of other versions of that on places like f-droid which is an app store we're gonna cover very shortly outside apps try to frequently clear data you don't need it like old text messages phone calls and especially temporary data like browser cache history cookies and other temp data within your applications tying its minimalism there are lots of settings on your phone and within applications you may never use and are pointlessly collecting data about you as an individual we have a go incognito lesson covering this more thoroughly if you're looking for more specific settings to disable do not forget to go through each individual application settings as well to ensure nothing is needlessly tracking you within the application on a similar note app and os permissions should not be taken lightly calculator apps don't need your contacts and the FBI workout app doesn't need your location dig into the privacy settings and revoke any permissions that seem questionable keep in mind there are workarounds to abuse permissions that you disable check out some of the awesome research being done at Berkeley it's pretty spooky and shows it better to not have the app at all if possible web apps will prevent this kind of abuse like we talked about in the minimalism section one of the most forgotten things to do is set a password on your SIM card if it's store in your contacts someone can just pop out your SIM card and view the information even without contacts if your phone is stolen someone can send fraudulent messages using your phone number and no one wouldn't know it isn't you you can do this quite easily within your settings most things you read about like the newest Android exploits are almost always patched through updates the best thing to do as much as they can suck is utilize automatic updates for Android as well as your applications I personally like reading changes being made and if you are in that boat or simply prefer the manual route make sure to at least check for updates frequently I'd say probably about once a week keep in mind most type 1 Android devices like Samsung phones and others get both delayed security updates as well as lack of security updates after normally just a couple years a good reason to avoid these type of devices if possible type 2 and type 3 devices tend to have quicker updates with longer update support finishes own one rooting you can root to gain additional functionality and if you really know what you're doing you may be able to accomplish some things for your privacy you wouldn't otherwise be able to do on Android however for the overwhelming majority rooting will only lower security and open your device off so we recommend almost all viewers to just avoid rooting unless you know exactly what you're doing ah stands for free and open source software this means the software's code is publicly viewable and theoretically modifiable by the community this ensures you can verify the security and privacy behind the software we have a whole video covering this born thoroughly in general I just advise moving from proprietary to Foss applications as much as possible signal is Foss as well as some VPNs like proton VPN and I VPN and email providers like to denote ax and protonmail vas will typically honor you and your data much better than proprietary solutions to find calls alternatives to apps you use check out alternative to net for recommendations Android is wonderful as it has a fantastic app store called f-droid which exclusively hosts open source applications that you can use on any Android device alongside the Play Store your phone is predominantly used for communication so ensuring you're communicating as securely as possible is quite important the biggest know is to avoid SMS and standard phone calls at all costs SMS can be unencrypted and they are stored by your cellular provider indefinitely meaning government entities as well and any random person can likely intercept them phone calls are similar the goal is to move to something that implements proper encryption with privacy of the user in mind you can find some messengers on privacy tools i/o as well as this site the highlights bank signal briar and riot signal being the simplest and easiest recommendation we have for you which can even replace your default SMS application on android outside texting and phone calls if you're looking to implement encrypted emails check out protonmail to denote a-- both have very generous free plans and offer a fantastic user experience to denote a-- is already on f Droid and protonmail is supposed to be coming soon I'll leave links to both of those in a description avoiding Google is a great step for controlling your data as Google is not a privacy friendly company whatsoever for zone to disable as much as possible related to Google in your settings like cloud backups device syncing and ideally other cloud providers as well this will require manual backups so you'll have to either find ways of backing up your raw data or use a third party solution to do a device backup to your computer outside using strong and unique passwords which we covered in zone 1 where and how they're stored can be incredibly important as well password managers are a commonly recommended way to go we have covered what password managers to use an a lesson of go incognito so that lesson out for a long answer in short avoid storing your passwords within your browser if you want simple cloud syncing between your devices check out bit warden on the Play Store or f-droid if you want a more DIY password manager there's key pass to Android from the Play Store with in-house cloud syncing and key pass DX with an F droid gear currently for more local usage I have a whole guide to keep ass on our channel for those who want to learn how it works beyond having a strong password implementing two-factor authentication is arguably just as important to F a combined something you know like a password with something you have ideally a code generated locally on your device at the very least SMS to FA which are those texts you receive with a code is better than nothing although there are a couple issues with SMS to FA such as the risk of sim swapping the better and more recommended option is a local Authenticator app that uses a QR code not every site supports this but many do so look for it and use it instead of SMS when available some notable Android apps are and OTP and aigis both of which are open source and available on the Play Store and F droid radios apply to anything that gives off a signal on your phone this means predominantly cellular Wi-Fi Bluetooth NFC and GPS will cover the more extreme solutions in zone 3 but for zone 2 try disabling Bluetooth and NFC when they aren't being used Bluetooth for one is an insanely and secure protocol not to mention Bluetooth being an instrumental tool used to track your movements it's even being implemented in stores like Target Walmart and more where beacons are used to track where you walk throughout the store which is then fed to advertisers who target you with the products you viewed within the store as for Wi-Fi it's good practice to disable it when you are using cellular and vice versa for GPS leaving it off when not in use and disabling as many permissions related to it in the settings for both the operating system and specific applications is highly advisable the general rule of thumb if it doesn't need to be on turn it off most Android devices offer something very neat multiple user accounts ones Apple gonna catch up you want to know what iPhone users have that Android users don't have friends you can use these to compartmentalize or separate different aspects of your life maybe you have a business account a school account ain't dating account and then your personal account you can have two or more the options are limitless the goal here is to separate aspects of your life that don't need to be intermixed within the same operating system for both privacy and security benefits it's a spectacular feature currently exclusive to Android for mobile devices most people are aware of this one but covering your cameras can prevents the theoretical camera hack or someone spies on you through your camera cover them up if you never use your cameras and don't want to just use tape if you are a standard user who uses their cameras frequently there are some sliding covers you can implement which will block them when not in use but will allow you to still use the cameras easily I'll leave some of these options in the description that you can use the last step for zone 2 is another physical mod and it's a privacy screen protector these make it so it's very difficult to view your phone screen from side angles protecting your personal information from snoops and shoulder attacks I will leave a link in the description with some privacy screen protectors I cannot recommend them more than the peace of mind they give me in public spaces is fantastic this is it everybody zone 3 and like I said earlier this is for the extreme users looking for the utmost security and privacy on their devices first disable GPS and location altogether it is easily abused by your operating system and applications to track everywhere you go throughout the day when disabled entirely you have to manually enter addresses for navigation and/or relying on a separate device this will obviously mean any software used to find your phone if it's lost will not work so again zone 3 is for extreme usage which can oftentimes have negative consequences keep in mind that just because GPS is turned off it doesn't mean apps can't access a general location of where you are as your IP address can narrow you down pretty well again go to zone 1 for VPNs which combined with disabling GPS will prevent most people from tracking your location most people if you want a guaranteed method of cutting out all radios from your device without just using airplane mode look into Faraday pouches and backpacks they are designed to fully eliminate communication your device has with the outside world they do have to be used properly and I'd recommend looking at the sources for some tips on doing so I'll also leave some products to check out in a description that seemed to be great options to take Google a step further you can fully logout and it will still be a usable phone you will lose google specific features and the Play Store but Android still allows you to use third-party app stores like Aurora from f-droid that gets you apps straight from the Google Play Store without needing a Google account not to mention F droid if you want to stick to just 100% open-source software the one downside is that even after logging out Google Play services will still undoubtedly track you and build a shadow profile on an account indirectly tied to you which is an improvement but still a concern if you want to fully get away from Google there are some people who may find luck removing both Google Play services and/or the stock applications on their phone using ADB but this is a pretty messy solution that only more advanced users should take a look at for their specific device if this is an all too extreme at the very least and sure you've handed over as little personal information as possible to Google disabled analytics performed by them in the settings disabled as many features as possible logged in to your Google my activity page and disabled everything along with the other stuff we covered in zone 2 similar to some cards your cellular provider is likely something you forgot about in the u.s. they are all universally bad for privacy your best bet is to at least sign up with as little personal information as possible my personal favorite provider is mint mobile which is a prepaid cell plan meaning you pay for however long you want up front no contracts or payments all they require is an email payment method and an address to send you the SIM card I was able to use a mail drop a pseudo email and a non relatable vanilla Visa Card paid for in cash to obtain the SIM card I use everyday mint has no direct information about me and I'd recommend you go this route or similar one as well with whatever provider works best for your needs there are also those pesky cameras and mics if you really don't want them consider removing the cameras depending on your phone model this may be extremely simple you can also snip the microphone and stick to only using the microphone on your earbuds this is for very extreme threat models but the option is available notes that opening up your device may void its warranty and finally we saved the best for last custom roms are what we classify as type 3 Android these roms generally don't come with Google Play services making them a fantastic option for privacy as you get an open source Android device where you can use open source apps like f-droid and aurora to get most of your open source applications with utmost privacy probably the most well known custom ROM to date is lineage OS which is great if your device is supported however be aware that lineage OS requires an unlocked bootloader which lowers the security of your device to attackers as well as some other things that decrease security almost all custom roms are in this boat of typically being good for privacy as there's zero Google at the cost of having a drop in security but not so fast there are two options for users who want to do --gel without sacrificing security first calyx OS is based on the mother Android open source project and maintains its strong security model with micro G an open source alternative to Google Play services this will still technically contact Google but in a much more controlled and open-source fashion you are able to know exactly what's being sent over without needing to be logged in calyx OS is a great ROM for those of you who can't live without an app reliance on Google Play services as most apps will work great on calyx OS because of micro G we are planning on covering calyx soon on the channel so make sure to subscribe if you want to see a full review of that ROM the second drum is graphene OS which is similarly based on a OS P and it actually improves on its security model this is one of if not the most secure operating system you can run on a mobile device with zero Google out of the box we covered graphene more thoroughly on our channel which we'd heavily recommend checking out it's even been endorsed by people like Edward Snowden both graphene OS and calyx OS are both fantastic roms mainly geared towards Google pixels which are ironically the devices most open to flashing roms 2d Google with some of the strongest security models and open-source hardware and firmware I'll leave some links to pixels you can grab in the description if you're interested in either of these roms and you're willing to go out of your way to set these up we have a guide on installing graphene for those intimidated by it and that my friends was the end of zona free if you enjoyed this guy - make sure to give it a like below and especially share to reach and educate more people about privacy and subscribe to watch our newer content if you want to support us further we are on patreon where you get to directly give back to what we do and enable us to help spread privacy and security to the masses by funding things like the editor who put together this video outside of patreon we are on brave rewards as well as many other support methods you'll find on our site thank you to everyone who has already supported us and thank you in advance to all of our future supporters it really does help us out that's it for this video thank you the viewer for watching and I hope you're leaving a little bit more private secure than when you got here see you all next time [Music]

Info

Channel: Techlore

Views: 127,347

Rating: undefined out of 5

Keywords: android security, phone security, privacy settings, android security settings, android security apps, security, privacy, guide, video, tutorial, techlore, samsung, HTC, oneplus, Google, anonymous, password, 2FA, VPN, biometrics, search engine, startpage, duckduckgo, Tor, GrapheneOS, LineageOS, CalyxOS, Go Incognito, FOSS, F-droid, f droid best apps, keepass, bitwarden, security settings, android privacy, best vpn, deep web, tor browser, free vpn, the hated one, surveillance report, open source, iPhone

Id: dMWEym0KPcA

Channel Id: undefined

Length: 21min 46sec (1306 seconds)

Published: Fri Jul 10 2020