New Video from @NoLimitSecu: Experts Discuss the Dangers of OSINT

In this episode of the No Limit SQ podcast, cybersecurity experts discuss the dangers of OSINT (Open Source Intelligence) with Sylvain Ageri, alias Navelis. Sylvain, a security specialist with expertise in GRC (Governance, Risk, Compliance), Red Team, OSINT, and social engineering, shares his knowledge and experiences in the field. OSINT, or open-source intelligence, involves collecting and analyzing freely accessible information. Sylvain explains that OSINT can be used for various applications, ranging from employee background checks to investigating criminal groups. However, this practice carries risks, particularly for physical security and the protection of ongoing investigations. Vladimir Cola, one of the contributors, emphasizes the importance of OPSEC (Operational Security) when practicing OSINT. He recounts an anecdote where an investigator compromised his security by incorrectly using a disposable SIM card, leading to threats and a forced relocation. Sylvain reinforces this idea by explaining that OPSEC is essential for protecting against potentially dangerous adversaries, such as Mexican cartels or Italian mafias. The experts discuss best practices in OPSEC, such as using fake accounts (sock puppet accounts) and disposable phones to avoid being tracked. They stress the importance of not reusing the same identifiers and always considering that confidential information will not remain so forever. Sylvain also mentions the legal risks associated with OSINT, citing cases where companies have been convicted for illegal investigations. Another crucial point discussed is the use of OSINT tools. Sylvain, who sells investigation tools, insists that OSINT is primarily a mindset and a hunter's skill. He warns against using tools without understanding their operation or origin, citing examples where tools have been compromised by malicious actors. The participants also discuss the ethical implications and cognitive biases in OSINT. They highlight that errors can lead to unjustified accusations or the compromise of evidence. Sylvain mentions cases where investigations were blown because tools alerted the targets or because human errors were made. Finally, the experts talk about the importance of civil society in OSINT. They cite examples where communities of enthusiasts have helped law enforcement solve complex cases, such as the Skripal case. However, they insist that these activities must be regulated and comply with the laws in force. In conclusion, this episode highlights the challenges and opportunities of OSINT, while emphasizing the importance of OPSEC and best practices to avoid risks. The experts encourage listeners to train and remain vigilant in this constantly evolving field.