this post was submitted on 10 Feb 2025

31 points (97.0% liked)

Ask Lemmy

28210 readers

3415 users here now

A Fediverse community for open-ended, thought provoking questions

Rules: (interactive)

1) Be nice and; have fun

Doxxing, trolling, sealioning, racism, and toxicity are not welcomed in AskLemmy. Remember what your mother said: if you can't say something nice, don't say anything at all. In addition, the site-wide Lemmy.world terms of service also apply here. Please familiarize yourself with them

2) All posts must end with a '?'

This is sort of like Jeopardy. Please phrase all post titles in the form of a proper question ending with ?

3) No spam

Please do not flood the community with nonsense. Actual suspected spammers will be banned on site. No astroturfing.

4) NSFW is okay, within reason

Just remember to tag posts with either a content warning or a [NSFW] tag. Overtly sexual posts are not allowed, please direct them to either [email protected] or [email protected]. NSFW comments should be restricted to posts tagged [NSFW].

5) This is not a support community.

It is not a place for 'how do I?', type questions. If you have any questions regarding the site itself or would like to report a community, please direct them to Lemmy.world Support or email [email protected]. For other questions check our partnered communities list, or use the search function.

6) No US Politics.

Please don't post about current US Politics. If you need to do this, try [email protected] or [email protected]

Reminder: The terms of service apply here too.

Partnered Communities:

Logo design credit goes to: tubbadu

founded 2 years ago

MODERATORS

[email protected]

Dilemma: Online vs. Offline Privacy & Security of Personal Family Photos/Videos – Balancing Risks & Protection (lemmy.world)

submitted 4 days ago* (last edited 4 days ago) by [email protected] to c/[email protected]

20 comments fedilink hide all child comments

Dear Friends,

I just wanted to take a moment to sincerely thank you everyone for your incredibly thoughtful and detailed responses for the films in general, while I find myself in a difficult situation when it comes to safeguarding the PERSONAL FAMILY PHOTOS and VIDEOS.

On one hand, if I choose to store them online/cloud encrypted / (edit: encrypt first then upload it), I face significant privacy concerns. While they might be secure now, there’s always the potential for a very near future breaches or compromises, especially with the evolving risks associated with AI training and data misuse.

The idea of the personal moments being used in ways I can’t control or predict is deeply unsettling.

On the other hand, keeping these files offline doesn’t feel like a perfect solution either. There are still considerable risks of losing them due to physical damage, especially since I live in an area prone to earthquakes. The possibility of losing IRREPLACEABLE MEMORIES due to natural disasters or other unforeseen events is always a WORRY.

How can I effectively balance these privacy, security, and physical risks to ensure the long-term safety and integrity of the FAMILY’S PERSONAL MEMORIES?

Are there strategies or solutions that can protect them both digitally and physically, while minimizing these threats?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 2 points 4 days ago (8 children)

If you don’t mind having to take an extra step to access them and probably not having the convenience of online sharing, you can encrypt your photos/videos before uploading them to online cloud storage.

[–] [email protected] 0 points 4 days ago* (last edited 4 days ago) (2 children)

Thank you for that, I'm afraid I have mentioned the "encrypted" word in my post :

(ie. if I choose to store them online/cloud encrypted, I face significant privacy concerns. While they might be secure now, there’s always the potential for a very near future breaches or compromises, especially with the evolving risks associated with AI training and data misuse),

but haven't detailed/highlighted/clear enough

Yes "encrypt them first then upload them" is the situation I meant

p.s edited the post now

[–] [email protected] 3 points 4 days ago (2 children)

there’s always the potential for a very near future breaches or compromise

That is a goalpost that will never stop moving. There is always a potential threat and you can never reduce your risk to zero. Right now, encrypting the data yourself before uploading it is your best option outside of encrypting AND hosting the data yourself. You’re basically anticipating that the well-known secure encryption algorithms will eventually be broken, which is not impossible no doubt, but at the moment not likely. You also have to step back and figure out your threat model, in order to come up with an adequate solution.

[–] [email protected] 1 points 1 day ago (1 children)

Recent News: If VPNs are targeted, cloud accounts could be compromised too Massive brute force attack uses 2.8 million IPs to target VPN devices https://www.bleepingcomputer.com/news/security/massive-brute-force-attack-uses-28-million-ips-to-target-vpn-devices/

[–] [email protected] 2 points 1 day ago

The attacks in that article pertain to edge devices in corporate networks that they are attempting to hijack to use as proxy/exit nodes. That’s not really related to getting cloud accounts compromised which is not the motive of those attacks. The primary goal is to gain control of those devices and sell/rent them to malicious actors (since traffic coming from known corporate addresses are mostly trusted). I doubt the attackers care about someone’s photos/videos in the cloud. Brute force attacks can be thwarted in several ways, and as the article mentions, just making sure those edge devices are updated and patched with the latest security updates will largely protect them. Besides, any corporation with a competent security team will be able to recognize if their network devices are being used maliciously.

[–] [email protected] 2 points 4 days ago (1 children)

While they might be secure now, there’s always the potential for a very near future breaches or compromises, especially with the evolving risks associated with AI training and data misuse

You're more likely to get a malware on your device and have it steal all your photos, more than AES 256 being broken.

I mean, encryption is not foul proof, but your device is more vulnerable than AES 256. If someone is going to steal your photos, they'll just infect your device(s) with malware, if that happens, it's irrevelent whether you used cloud or local storage, they'll get your data either way.

[–] [email protected] 1 points 3 days ago

I completely agree. The potential for breaches is always there, and the goalpost for security is constantly moving. Encrypting data before uploading is a solid strategy, and while encryption algorithms may eventually be broken, Defining the threat model is key to finding the best solution which I cannot find and answer yet

load more comments (5 replies)