277
New US visa rules will force foreign students to unlock social media profiles
(www.theguardian.com)
this post was submitted on 19 Jun 2025
277 points (99.6% liked)
Privacy
39003 readers
1172 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
The modern Internet is essentially about spying on you as much as possible and then selling the data to whoever wants to buy it. Linking identities with devices/browsers is worth a lot of money and so most every website/app has a way of linking you to the devices and software that you use.
Unless the user took some pretty extreme measures to create the account, they've likely logged in from a phone/ip/browser that has been linked to their real identity at some point in its lifetime. That link will be sold to data brokers and used to tie the random handle to you, the person. Then the State Department just buys that information.
Alternatively, you should be assuming that sovereign entities with the means are reading all public network data. There's a lot of information that you can learn from that as well. Like, over time, the posts from the 'random' account could be strongly correlated to the times that you were accessing the site even if all of the data was encrypted with HTTPS.
Alternatively, alternatively. There is a threat known as Store Now Decrypt Later (SNDL). The idea is basically: Quantum Computers are coming and they can break some cryptographic primitives. If someone saves all of the encrypted traffic that they would want to read, in a few years they will have the means to read that data. We won't know when this moment occurs, because it'll likely be a secret, but we do know that it will happen and so you should additionally assume that anything that isn't using post-quantum encryption, which transited a public network, will be read and used to link you to your identities.
This is, essentially, the core thing that the Privacy community is attempting to mitigate.
I’m not a privacy expert.
And I know that, sadly, they probably have a lot more data on me than I’d like. Even though I don’t have traditional social media anymore, and I use VPNs to access Lemmy, that’s just normie precaution stuff. Anyway I do have a Google, Apple, accounts and the like.
My question is this: what do you / y’all think about the prospect of “poisoning the well”?
Meaning: you set up multiple traditional social media accounts, generate fake profile photos for them, give them the same real name as you and part of the country as you live in, and have AI chatbots fill ‘em up with generated posts matching a particular “personality profile”?
Would that be an effective countermeasure against this sort of data collection? Increase the noise-to-signal ratio?
Just thinking out loud here.