Part 2 – Vulnerabilities

Step 4: When the previous process has been completed, participants will be asked to paste each piece on a long paper (from a roll) that will be left on the floor. At this point, the facilitators will go through the chain again, this time to point out and explain the vulnerabilities at each stage (and hint at good practices to keep participants calm and confident).

Step 5: Some of the vulnerabilities are mentioned next. You can also add any other practice or threat that is applicable in your own context or that is relevant to mention to the participants. You can also share a few examples of practices that other collectives you work with have to help participants think of what might be some of their own good or bad practices.

•Device 1 (computer/phone): Physical insecurity; loss of information
•Modem 1: WiFi sniffing; lack of encryption
•Telephone pole/optic fiber underground: N/A
•Internet Service Provider: Data and metadata requests from local/national governments
•Google Servers: International surveillance; password insecurity and phishing, requests from national governments
•Telephone pole/optic fiber underground 2: N/A
•Modem 2: Security problems using other people’s connections (like at Internet cafes)
•Device 2: Malicious software; insecure deletion