First of all, I can't stop staring at that stupid thread sticking out of my shirt sleeve. Sorry about that! Second, I'm open to debate here: do you agree with me that your own security practices are more important than the cloud service you use? Leave a comment below, and use these affiliate links to support this channel: ▶ Boxcryptor Paid Plan: www.allthingssecured.com/try/boxcryptor-yt ▶ Subscribe! ru-vid.com
Lol. Don't worry about it, Josh. Didn't notice until you told us! Thank you for this video. Topical for me, as I biffed the clouds above for my own WD My Cloud.
Hi. Another awsome video. quick question though. I have noticed that Boxcryptor has been acquired by Dropbox. I also noticed that there is no longer any price plans or relivent information except a notice bar at the top of their web page saying they've been acquired and the download links for various OS's. This to me is a red flag. My question, do you still recommend Boxcryptor? Thanks
Check the privacy polices of the provider you are considering. Look for ones that specifically state that they do not scan your data. Can can have 2FA but this won’t help you when the cloud provider is scanning your data to fill their pockets. Still, client side encrypt any file you wouldn’t want put on a public forum. That is the best piece of advice here.
You mentioned that you like having options available to you or something to that effect - for that reason I'm disappointed that VeraCrypt wasn't mentioned. It might be overkill for some of the less advanced users but it really lets you have control of all the knobs, is open source, free, and feature packed.
I've landed on also backing up my files the old fashioned way, to an external drive. These services don't generelly store revisions of files. My concern is that if e.g. ransomware messes up your data, those encrypted or otherwise damaged files are going to be synced to the cloud automatically, replacing the good version you originally had there in the process.
@@AllThingsSecured Looks like you're right, most providers seem to offer some kind of version history. They often have limitations though. I can't even make sense what the limitations are in the case of Onedrive.
Did this too, I created a script to zip the most important data, copy it to another folder in my HDD every night when I go to sleep, which I copy it manually to my external HDD tomorrow morning.
You mentioned what happens if Dropbox goes out of business but what about Boxcryptor? This is the second video I’ve watched tonight that mentioned Boxcryptor and so my question after watching the first and now this one is …. What if you use this company’s encryption product and then they go out of business? How would you be able to view or edit your encrypted files? Thankyou.
This is exactly what I wanted to ask also and this question from akaCamo was not answered for 6 months.. Author, please give us some idea what to do if we encrypt our data on the client side and move it to the cloud and after that Boxcryptor (or some similar service) goes out of business. Then all our encrypted data becomes useless because it can't be decrypted .anymore.
@@serge8397 I think encrpyting all files with a key which we keep with us would be the best solution or maybe we should use a different company decryptor
Thank You so much for giving the idea of encrypting the sensitive file before uploading to an online cloud storage. Also, backing up on a different online cloud storage is also a clever thing to do. Loved your video! 🥰❤ If possible please create a video, which describes a few latest online cloud storage options which are the easiest, safest, free, fastest, largest. And suggest the best practices so that our data never gets lost or compromised whatever the situation be! Please I am excited to watch that video if you make it.
Thank you for spending time on this subject. I've started taking security more and more seriously and seeing you jump on a topic makes me feel like I'm moving in the right direction in terms of safety. I have a quick question though, do you have any thoughts on home security and what would be a good rule of thumb for houses and apartments?
@@AllThingsSecured I was initially thinking something like the Ring Security Systems for the doorbell but if you have any other systems that fit the home security niche I'm more than willing to give you my watch time.😅
Dude, have you read the terms of services? They scan your files and photos, and if the algorythm scan find something "interesting" (which works as an industry secret) you will be manually reviewed! tHey wOulDn't bE aBle tO gEt aWay wIth lIeS.... Yeah, we heard that one before.
You'll never go wrong with a well-made SSD because servers will inevitably go down and you'll need to have a backup of your data, and for the average person it works fine
you said you store sensitive data “in a special encrypted vault backed up in 2 places”. can you elaborate on this more? I believe you’re referring to your hardware encrypted Aegis USB. What would the other place be (say, if you were to lose that USB or something)?
thank you for this in depth cloud storage security, privacy and encryption video. i recently moved out on google photos and rethinking my cloud storage game. i learned so much from you and will do 100% pf your recommendations. thanks m8
Another great entry! I don't know if you've ever covered this (didn't see it) but I was wondering how would someone setup their Ring or security camera without exposing their main Wi-Fi connection? I've heard that if you create another Wi-Fi connection just for the camera it's more secure that way. Don't know if that's on your to do list but it's security related. Nonetheless thanks for your content! Cheers.
I think there is no absolute perfect way to protect your data, there’s just relatively stronger security systems to adopt in protecting your data. Cloud Storage may be better than your average Joe saving his stuff on a computer. But storing it physically is safer than having it on a device it’s all pros and cons. I think having as many layers of security is the best possible protective practice because you want to approach your data from a risk analyst point of view. Cloud Storage isn’t bad but it’s not perfect either. All it takes is a few employees to exploit their authorisation to transfer data from the server to some external drive over the internet or high-speed cable to leak terabytes of data in minutes
I weekly put my important data in an openssl-encrypted tar file and then sync it to my cloud-storage with duplicati (aes256). The cloud-storag is protected with complex password and 2fa. I think, this is a quite good option to get a remote backup working securely.
@Vijay 1. You can compress a folder with data to a tar-file (*.tar.gz) and use further tar-options to encrypt this file (openssl enc -aes-256-cbc). So you have created a compressed and encrypted file localy 2. Next you can encrypt this file again and upload it to a cloud-storage like dropbox or google-cloud. This can easyly done with duplicati (can be used in docker). 3. The result is that you have double encrypted data (with different passwords!), that can be securely stored in public cloud-storage
@@Glatze603 Hi Markus. What software do you use to make a .tar.gz file with password? I tried to use 7-Zip but for the .tar file, there is no option to set a password. I tried WinZip and no option to make a .tar file. So do the WinRAR. Thanks for your suggestion about Duplicati! I tried and I love it so much. It worked perfectly. I just need to know how to make a .tar.gz file with password protection. Thank you.
My setup * IDrive (paid) for continuous background backups of all the files on my computer and home NAS with end-to-end encryption. * MEGA (paid) for (mostly) manual backing up of irreplaceable and "dead file" data with end-to-end encryption. * Dropbox, OneDrive, and Google Drive for non-sensitive files only. The hard truth is that you're not going to get adequate storage space + encryption for free. You get what you pay for.
you can probably use any service even for sensitive data as long as you encrypt it all with a strong password before uploading it, that way you can take control over your data and make sure that it is actually getting secured since it is you doing it
@@chickerinoradio6617 That is true and a good point. And I do that in some cases, like with my KeePass file which I keep in unencrypted storage because it's easier to sync between two computers and a smartphone. But the nice thing about MEGA is that I don't have to separately encrypt and decrypt data before uploading and after downloading.
Hi and thanks for this informational video! What would you say about Raven Cloud? They offer a very interesting concept in combination with there really great scanner. Is it secure to save all personal documents in their cloud? They offer HIPAA Compliance and Encryption (Transport ans Rest). Thanks for a short reply 😊
It looks as if Boxcrypter is insolvent. The company behind it is Secomba GmbH i.L. (German company) and the addition "i.L." means: In liquidation. Are there any other alternatives?
Too bad Boxcryptor is no longer available because they sold out to Dropbox and now Dropbox is going to offer it but only to those on a business plan. So thanks Dropbox for taking away something valuable to the masses and making it only available to the few.
In the last year I got security letters from two hospitals telling me my data was taken by criminals. A year ago Home Depot sent me one too. So, for cloud storage, I say go to hell. I won't give them any of my data. I also don't own a smart phone for the same reason. I back up my data in physical storage no one can access.
Google drive and Dropbox probably worse choice you can make, not great track record of data safety, but I would be interested how OneDrive compares to rest
I'm planing to split my information between 1password and the "personal vault" of onedrive, all the information that needs autofill I'd keep it on the password manager and the rest on the cloud, I mean its more practical but I think thats enough right?
Thanks for the question, Joseph. I intentionally omitted iCloud from this video because I feel like it's a completely different beast (i.e. you can't control how the files are uploaded to iCloud like you can with these other services). I only use iCloud for very specific purposes and not to sync all my files/backups. As with all Apple products, it's very well done, I just wish there were alternatives.
use MEGA's free plan, get 20GB data, which can be extended to 30 GB if you do certain tasks, backup important data on other online cloud storage as well (for a situation that data gets lost from MEGA servers, although it's extremely impossible with MEGA), use 2FA, safely keep recovery key with you, and for sensitive content create another account on MEGA, and store you content after encrypting it with a key from a service like an encryptor shown in this video. This will be enough for anyone keeping their sensitive personal information safe without paying any fee.
@@AllThingsSecured Oh sorry, did not realized I had typos. I just wanted to ask if you know any security issues about other Services like Box, MEGA or Amazon Prime storage. Just out of curiosity
Yes, because it is its own separate product. iCloud is a service integrated with Apple products and doesn’t allow you any sort of control over your data.