All articles

Complete knowledge base, sorted by topic.

• Travel General

  Holidays and privacy: the threat model you forget in a swimsuit

  On holiday, you drop every guard at the moment you expose the most: real-time geolocated photos, hotel Wi-Fi, children's devices, empty house announced publicly. The leisure threat model, handled without paranoia.

  May 14, 2026

• Travel Exposed

  Industrial espionage while travelling: what your devices reveal

  Business travel is when an organisation is most exposed, and least suspicious. Real attack vectors, documented cases, and proportionate preparation for executives and teams travelling with valuable information.

  April 9, 2026

• Organization Critical

  Field incident response: the first 90 minutes

  What to do in the first 90 minutes of a security incident, in the field, without enterprise resources.

  March 5, 2026

• Organization Critical

  Exposed executive: specific threat model

  Threats specific to the media or financially exposed executive, actual attack vectors, and proportionate measures.

  February 19, 2026

• Organization Exposed

  Corporate travel policy: beyond the 40-page document

  Building a travel policy that is actually used, with protection level calibrated by destination.

  January 29, 2026

• Travel Exposed

  Return from mission: the post-mortem nobody does

  What you do when you come back from a high-risk trip: device audit, credential rotation, mission report.

  January 8, 2026

• Travel Exposed

  Pre-departure preparation: a checklist by threat level

  The exhaustive preparation checklist before a business trip, calibrated by destination country and profile.

  December 11, 2025

• Travel Exposed

  Hotels: what can be compromised in 4 hours

  The real compromise vectors in a hotel: Wi-Fi, safes, locks, staff, a room left alone.

  November 20, 2025

• Travel Critical

  Travelling to China: an honest threat model

  What Chinese law imposes, what happens in practice, and the minimum hardware preparation for a business trip.

  October 30, 2025

• Travel Exposed

  Borders and customs: the routine nobody prepares for

  Your real rights, what customs can actually do, and practical preparation to minimise exposure without breaking the law.

  October 9, 2025

• Connectivity Exposed

  eSIM for travel: the discreet digital passport

  Using a local data eSIM to travel without exposing your home number, comparing the options, managing the residual risks.

  September 18, 2025

• Connectivity General

  DNS: the link no one hardens

  Why cleartext DNS queries are an underestimated surveillance vector, and how to enable DoH or DoT in 10 minutes. Quad9, NextDNS, Mullvad, self-hosted: who does what.

  August 28, 2025

• Connectivity General

  Public Wi-Fi: reasonable paranoia

  The real risk level in 2025, what changed with ubiquitous HTTPS, and the good practices that remain relevant.

  August 7, 2025

• Connectivity General

  VPN: 95% of the marketing is false

  What a VPN really protects, what it doesn't, and how to choose the right one for the right use.

  July 17, 2025

• Devices Exposed

  Hardening your OS: Windows, macOS, Linux

  The 10 hardening measures that genuinely change your security level, by OS, with no advanced technical skills required.

  June 26, 2025

• Devices Exposed

  YubiKey and FIDO2 keys: everything you weren't told

  Choosing, configuring, managing and not locking yourself out with hardware authentication keys.

  June 5, 2025

• Devices Exposed

  Travel laptop: the machine that can be lost

  Configuring a laptop that can be seized, lost, or stolen without operational consequences. Setup, preparation, behavior at the border.

  May 15, 2025

• Devices Exposed

  Work phone: Android, iPhone, or nothing

  An honest comparison of the two platforms for professional use in a constrained environment, with the real trade-offs.

  April 24, 2025

• Devices General

  Disk encryption, really?

  BitLocker, FileVault, LUKS: what's enabled by default, what actually protects, and the attacks that get through anyway.

  April 3, 2025

• Identity Exposed

  Defensive OSINT: what you let leak

  Using offensive intelligence tools on yourself to anticipate what an adversary will see in 2 hours.

  March 13, 2025

• Identity Exposed

  SIM swap: 4 hours to become you

  How a 4-hour attack can compromise your complete identity, and why SMS as MFA factor is a systemic risk.

  February 20, 2025

• Identity Exposed

  MFA: why your Google Authenticator app betrays you

  All MFA solutions are not equal. Anatomy of attacks bypassing TOTP, and migration path to FIDO2.

  January 30, 2025

• Identity General

  Your email address is your digital passport

  Why the main email is the root of all compromise, and how to harden access without locking yourself out.

  January 9, 2025

• Reality General

  Data brokers: the leak you pay for

  Who collects your data, how, why it's structurally hard to stop, and what you can reasonably do.

  December 5, 2024

• Reality General

  Identity compartmentation: operating with multiple yous

  Building watertight identities by use. The four-identity model, tools per compartment, the non-contamination rule, and rotation as maintenance.

  November 14, 2024

• Reality General

  The right to be forgotten: why it almost never works

  An honest anatomy of the GDPR right to erasure — what it covers, what it doesn't, and the pragmatic alternatives when deletion is out of reach.

  October 24, 2024

• Reality General

  The exposure audit: 2 hours to map what's leaking

  Step-by-step method to inventory what is already public about you. Free tools, priority order, decisions to make.

  October 3, 2024

• Reality General

  Your data is already public. What that really changes.

  The privacy-first fiction serves everyone except you. An honest inventory of what has already leaked, and the strategic shift to operating in an assumed-leaked state.

  September 12, 2024

No articles for this topic.