Community Updates: Difference between revisions

From TCU Wiki
No edit summary
Victoria (talk | contribs)
No edit summary
 
(540 intermediate revisions by 5 users not shown)
Line 1: Line 1:
[[File:2022_Glitter_Meetup_EST.png|right|355x355px|caption]] 


The following are community updates from the weekly Glitter Meetup. If you need to connect to anyone mentioned below, please reach out. We do practice "consensual introductions," meaning we have to check with the person before doing so. No names are associated with the summary notes. Please contact us if you have any questions related to these notes.  team@internetfreedomfestival.org
<span style="font-size:larger">'''Glitter Meetup''' (GM) is the weekly town hall of the Internet Freedom community, attracting digital rights defenders from all corners of the world!! On this page you will find the notes or "minutes" from previous meetups, and information about upcoming ones. </span>


* '''Every Thursday''' at 9:00am EDT
* '''Where''' On the [[TCU Mattermost|TCU Mattermost?]] Secure an account [[TCU Mattermost|here]].
* '''Missed a Glitter Meetup?''' Don't worry the notes of each GM is listed below.


==August 30==
GMs are text-based chats, and provide digital rights defenders with space to share their work, personal, or regional updates, as well as ask questions; secure support or resources; share their expertise; and grow their human network! From time to time, we invite a featured guest who shares their expertise, and participants can ask questions to directly. Once a month, we also host a more social GM called '''The Social Networking Glitter Meetup''' where you can connect with others in a more organic, social way.
the Police Department of Bangladesh Government opens a tender. The tender notice is to procure IMSI mobile monitoring/tracking systems, including its ultra-portable backpack version. “IMSI” stands for “international mobile subscriber identity” and the devices in question are basically eavesdropping gadgets used for intercepting mobile phone and its data traffic, as well as tracking location data of mobile users. If I’m not wrong, they essentially create a "fake" mobile tower acting between the target mobile phone and the service provider's real towers to intercept communication related data.
View our [[Calendar of Events]] for a complete list of our virtual events


We would love to have featured guests! If interested, email [email protected]


=='''August 23'''==
== '''Upcoming Meetups with Featured Guests''' ==
{| class="wikitable" style="float:right; margin-left: 10px; width: 30%; background-color:#89dff7;"
|[https://www.digitaljustice.house/ '''Review our Digital Justice House Toolkit here'''], which proposes three transformations in the digital rights workplace to improve your team health:


* Someone is trying to apply SAFETAG for LGBTQ communities in South Asia.
* Right to disconnect
* Totem project is an online platform helping journalists and activists use digital security & privacy tools and tactics more effectively in their work by Greenhost and FreePressUnlimited.  https://totem-project.org/
* 4 day work week
* Malaysian Parliament passes bill to repeal Anti-Fake News Act last week  
* Unlimited vacations
* IFF Fellowship deadline has been extended to August 27.
* In Zimbabwe, there was a constitutional court hearing yesterday for the just ended elections where the opposition party is challenging the results that were announced. Judgement will be announced tomorrow at 1400hrs UTC+2
* Someone is working on a due process (appeals) campaign targeting social media platforms (primarily Facebook) and would love to chat off-list with anyone interested or working on similar things.
* The Tor meeting will be happening in Mexico end of September.


'''About Safetag:'''
|}
* SAFETAG is an assessment framework to work with organizations and help them build informed decisions about the risks they face. It provides a wide variety of different activities: some very research focused, like understanding the context the organization is working within -- each organization has a totally different set of risks depending on their context; Some are very technical, such as scanning office networks to understand what systems and traffic are on the network; and many are "interpersonal" -- simply talking to staff members, interviewing management, and running exercises to help the organization build a cohesive and shared understanding of their risks and which of them they accept, and which they want to prioritize to mitigate.


* In the best case, you should have a few people helping out -- one person who has a more digisec training background, and another who's happier sitting in the back room hacking around on things.  Often funding and scheduling mean that one person has to do all three, so careful planning and preparation are important -- you do NOT want to be researching how to nmap an organization without crashing their computers in the middle of an assessment. In addition,  there is value and more impact if the audit is done by more people with different skills other than a single person.
The following are upcoming Glitter Meetups with featured guests and/or topics every Thursday:


* SAFETAG scoping questions are really good to help people understand their risks.
'''[[January 9 2025 GM|January 9, 2025 Glitter Meetup]]'''


* Some folks have it customized for working with LGTBQ in West Africa.
''Welcome back Glitter Meetup''


* SAFETAG wants to be community owned, but depends on people taking ownership/participating.
'''[[January 16 2025 GM|January 16, 2025 Glitter Meetup]]'''


* Even though someone might be from a different parts of the world, so many common problems come up that are similar.  So you may think your approach only applies to some super specific situation, but almost guaranteed someone else is facing the same problem
Topic: '''Bitpart: Sending Secure Automated Messages Over Signal'''


* Best tips, for network scanning - (a) be careful and  (b) keep it balanced. A lot of the tools, even "simple" nmap, have a lot of super dangerous options, and you really never know if a computer is going to be vulnerable to a 10-year-old bug. Start super lightweight, and super low-impact, even flooding a system that may be a few years out of date can cause it to fail, and then you're suddenly halfway through an audit and have to stop to fix something you broke. Look at software versions, and peek via nmap on weird ports being open before doing anything more intense
Featured Guest: Throneless Tech


* The other big tip is to not get trapped in any one approach.  People with hacking/pentesting backgrounds tend to ignore the interactive parts, and people with training backgrounds tend to shy away from the technical pieces. It takes both, plus a solid base of research, to really understand an organization. Also, and super important, you can also spend a LOT of time digging in to some really obscure tech things, and lose the opportunity to ensure you have a holistic view of the org.
'''[[January 23 2025 GM|January 23, 2025 Glitter Meetup]]'''


* The SAFETAG translation in Spanish is out of date. Ping them if you can help identify chunks to prioritize for funding.
''The collaborative community discussion on what is Happening in Digital Rights around the world''


* Re: network scanning, a super fun thing to do (but requires a system with a decent chunk of RAM and a few hours of access to a lot of bandwidth) is to download some vm images. vulnhub is a good repository, and MS has some testing images for old versions of windows (see the safetag reference file here for links: https://github.com/SAFETAG/SAFETAG/blob/master/en/references/network_env.adids.md).  Use virtualbox to run them locally and have them all on your local network, and then you can use nmap and such locally (do this at home, you can even have it set up to truly be a "fake" network on your computer only -- do NOT do it on a shared or work network!!) This is a great way to get started exploring and using different scanning options
'''[[January 30 2025 GM|January 30, 2025 Glitter Meetup]]'''


Topic: '''Undersea Cables in Africa - New Frontiers for Digital Colonialism'''


=='''August 16'''==
Featured Guest: Laurisha Rampersad and Kayee Au


* New org in latin america in the works ( Con-nexo). They will be developing projects on capacity building on security, research, security support to organizations, tool development and community generation around communities at risk and security in general.
=='''Notes from Past Glitter Meetups'''==
* Lots of love happening for SAFETAG fellowship
 
* Zimbabwe still doesnt' have a president even after voting
The following are community updates from the weekly Glitter Meetup. If you need to connect to anyone mentioned below, please reach out. We do practice "consensual introductions," meaning we have to check with the person before doing so. No names are associated with the summary notes. Please contact us if you have any questions related to these notes: team@digitalrights.community
* Found out Digital Society of Zimbabwe was born in the IFF :)
 
* Folks working on security investigation framework in tails. Prototype coming soon! Github here: https://gitlab.com/scif/whiskers
----
* Blog posts coming out taimed at helping new auditors get in the SAFETAG mindset; as it can be very overwhelming to try and tackle the guide as it exists now
'''[[Glitter Meetup Notes 2024]]'''
* Someone who did research on digital censorship in post-soviet states and how each country's approach differs (about a third have very free internet and about a third have internet censorship in place), is currently talking to a publisher about turning it into a book on the history of censorship in the region.  
 
* Someone is cultivating digital security trainers to assist HRDs in Southeast Asia as many trainers are still flown in.  
'''[[Glitter Meetup Notes 2023]]'''
* Past DIF Folks asking that a community is created so they can further connect.
 
* Various games made by people in the community such as BLOOG: how formal and informal groups interact in crisis. we called it ENCAPE http://blog.bl00cyb.org/2017/08/interfaces-between-formal-and-informal-crisis-response/, Malicious Content, the infosec card game like Cards against humanit, and the depressing, Cards against Humanitarians" -- now JadedAid -- http://jadedaid.com/).
'''[[Glitter Meetup Notes 2022]]'''
* First alpha version Tor Browser coming out soon!
 
* Maybe a hackathon with artist, process oriented.
'''[[Glitter Meetup Notes 2021]]'''
 
'''[[Glitter Meetup Notes 2020]]'''
 
'''[[Glitter Meetup Notes Before March 26, 2020]]'''

Latest revision as of 15:40, 18 December 2024

caption
caption

Glitter Meetup (GM) is the weekly town hall of the Internet Freedom community, attracting digital rights defenders from all corners of the world!! On this page you will find the notes or "minutes" from previous meetups, and information about upcoming ones.

  • Every Thursday at 9:00am EDT
  • Where On the TCU Mattermost? Secure an account here.
  • Missed a Glitter Meetup? Don't worry the notes of each GM is listed below.

GMs are text-based chats, and provide digital rights defenders with space to share their work, personal, or regional updates, as well as ask questions; secure support or resources; share their expertise; and grow their human network! From time to time, we invite a featured guest who shares their expertise, and participants can ask questions to directly. Once a month, we also host a more social GM called The Social Networking Glitter Meetup where you can connect with others in a more organic, social way.

View our Calendar of Events for a complete list of our virtual events
We would love to have featured guests! If interested, email [email protected]

Upcoming Meetups with Featured Guests

Review our Digital Justice House Toolkit here, which proposes three transformations in the digital rights workplace to improve your team health:
  • Right to disconnect
  • 4 day work week
  • Unlimited vacations

The following are upcoming Glitter Meetups with featured guests and/or topics every Thursday:

January 9, 2025 Glitter Meetup

Welcome back Glitter Meetup

January 16, 2025 Glitter Meetup

Topic: Bitpart: Sending Secure Automated Messages Over Signal

Featured Guest: Throneless Tech

January 23, 2025 Glitter Meetup

The collaborative community discussion on what is Happening in Digital Rights around the world

January 30, 2025 Glitter Meetup

Topic: Undersea Cables in Africa - New Frontiers for Digital Colonialism

Featured Guest: Laurisha Rampersad and Kayee Au

Notes from Past Glitter Meetups

The following are community updates from the weekly Glitter Meetup. If you need to connect to anyone mentioned below, please reach out. We do practice "consensual introductions," meaning we have to check with the person before doing so. No names are associated with the summary notes. Please contact us if you have any questions related to these notes: [email protected]


Glitter Meetup Notes 2024
Glitter Meetup Notes 2023
Glitter Meetup Notes 2022
Glitter Meetup Notes 2021
Glitter Meetup Notes 2020
Glitter Meetup Notes Before March 26, 2020