Reference knowledge base on protecting identity, devices and data. Field-adapted.https://www.shield.travel/en-UShttps://www.shield.travel/en/analysis/musk-huang-burner-phones-beijing/https://www.shield.travel/en/analysis/musk-huang-burner-phones-beijing/May 2026: the American delegation visiting Beijing left their personal devices at home, operated on burner phones, and destroyed them upon return. What this protocol — applied to global C-suite executives — tells you about your own business travel.Thu, 28 May 2026 00:00:00 GMTAnalysistravelanalysisTrump Beijingespionageburner phonedelegationdata extractionChina travelhttps://www.shield.travel/en/travel/holidays-privacy/https://www.shield.travel/en/travel/holidays-privacy/On holiday, you drop every guard at the moment you expose the most: real-time geolocated photos, hotel Wi-Fi, children's devices, empty house announced publicly. The leisure threat model, handled without paranoia.Thu, 14 May 2026 00:00:00 GMTtravelprivacyholidaysgeolocationsocial mediachildrenpublic Wi-Fiphoto metadatahttps://www.shield.travel/en/travel/industrial-espionage-travel/https://www.shield.travel/en/travel/industrial-espionage-travel/Business travel is when an organisation is most exposed, and least suspicious. Real attack vectors, documented cases, and proportionate preparation for executives and teams travelling with valuable information.Thu, 09 Apr 2026 00:00:00 GMTtravelindustrial espionagebusiness traveldata extractionbordereconomic intelligencebusiness triphttps://www.shield.travel/en/organization/field-incident-response/https://www.shield.travel/en/organization/field-incident-response/What to do in the first 90 minutes of a security incident, in the field, without enterprise resources.Thu, 05 Mar 2026 00:00:00 GMTorganizationincident responseNIST 800-6190 minutescontainmentforensicshttps://www.shield.travel/en/organization/exposed-executive/https://www.shield.travel/en/organization/exposed-executive/Threats specific to the media or financially exposed executive, actual attack vectors, and proportionate measures.Thu, 19 Feb 2026 00:00:00 GMTorganizationexecutiveCEOspear phishingdeepfakeCEO fraudBEChttps://www.shield.travel/en/organization/corporate-travel-policy/https://www.shield.travel/en/organization/corporate-travel-policy/Building a travel policy that is actually used, with protection level calibrated by destination.Thu, 29 Jan 2026 00:00:00 GMTorganizationtravel policyNIS 2governancecountry tierCISOhttps://www.shield.travel/en/travel/return-from-mission/https://www.shield.travel/en/travel/return-from-mission/What you do when you come back from a high-risk trip: device audit, credential rotation, mission report.Thu, 08 Jan 2026 00:00:00 GMTtravelreturn from missionforensicscredential rotationdebriefincidenthttps://www.shield.travel/en/travel/pre-departure-prep/https://www.shield.travel/en/travel/pre-departure-prep/The exhaustive preparation checklist before a business trip, calibrated by destination country and profile.Thu, 11 Dec 2025 00:00:00 GMTtraveltravel checklistpre-departurethreat levelbackupemergency contactshttps://www.shield.travel/en/travel/hotels-security/https://www.shield.travel/en/travel/hotels-security/The real compromise vectors in a hotel: Wi-Fi, safes, locks, staff, a room left alone.Thu, 20 Nov 2025 00:00:00 GMTtravelhotelhotel Wi-Fihotel safelockUnsaflokclean deskhttps://www.shield.travel/en/travel/traveling-to-china/https://www.shield.travel/en/travel/traveling-to-china/What Chinese law imposes, what happens in practice, and the minimum hardware preparation for a business trip.Thu, 30 Oct 2025 00:00:00 GMTtravelChinaPIPLsurveillanceVPNtravel laptopGreat Firewallhttps://www.shield.travel/en/travel/borders-customs/https://www.shield.travel/en/travel/borders-customs/Your real rights, what customs can actually do, and practical preparation to minimise exposure without breaking the law.Thu, 09 Oct 2025 00:00:00 GMTtravelborder searchCBPcustomscompelled disclosuretravel laptophttps://www.shield.travel/en/connectivity/esim-travel/https://www.shield.travel/en/connectivity/esim-travel/Using a local data eSIM to travel without exposing your home number, comparing the options, managing the residual risks.Thu, 18 Sep 2025 00:00:00 GMTconnectivityeSIMAiraloHolaflyroamingIMEItravel numberhttps://www.shield.travel/en/connectivity/dns-hardening/https://www.shield.travel/en/connectivity/dns-hardening/Why cleartext DNS queries are an underestimated surveillance vector, and how to enable DoH or DoT in 10 minutes. Quad9, NextDNS, Mullvad, self-hosted: who does what.Thu, 28 Aug 2025 00:00:00 GMTconnectivityDNSDoHDoTNextDNSQuad9CloudflareISP surveillancehttps://www.shield.travel/en/connectivity/public-wifi/https://www.shield.travel/en/connectivity/public-wifi/The real risk level in 2025, what changed with ubiquitous HTTPS, and the good practices that remain relevant.Thu, 07 Aug 2025 00:00:00 GMTconnectivitypublic Wi-FiMITMcaptive portalVPNHTTPShttps://www.shield.travel/en/connectivity/vpn-reality/https://www.shield.travel/en/connectivity/vpn-reality/What a VPN really protects, what it doesn't, and how to choose the right one for the right use.Thu, 17 Jul 2025 00:00:00 GMTconnectivityVPNWireGuardprivacyIPthreat modelMullvadhttps://www.shield.travel/en/devices/os-hardening/https://www.shield.travel/en/devices/os-hardening/The 10 hardening measures that genuinely change your security level, by OS, with no advanced technical skills required.Thu, 26 Jun 2025 00:00:00 GMTdeviceshardeningCIS BenchmarkWindows DefendermacOS GatekeeperLinuxhttps://www.shield.travel/en/devices/yubikey-fido2/https://www.shield.travel/en/devices/yubikey-fido2/Choosing, configuring, managing and not locking yourself out with hardware authentication keys.Thu, 05 Jun 2025 00:00:00 GMTdevicesYubiKeyFIDO2WebAuthnPIVbackup keylockouthttps://www.shield.travel/en/devices/travel-laptop/https://www.shield.travel/en/devices/travel-laptop/Configuring a laptop that can be seized, lost, or stolen without operational consequences. Setup, preparation, behavior at the border.Thu, 15 May 2025 00:00:00 GMTdevicestravel laptopborder searchencryptionMDMminimized datahttps://www.shield.travel/en/devices/work-phone/https://www.shield.travel/en/devices/work-phone/An honest comparison of the two platforms for professional use in a constrained environment, with the real trade-offs.Thu, 24 Apr 2025 00:00:00 GMTdevicesiPhoneAndroidGrapheneOSMDMmobile securityhttps://www.shield.travel/en/devices/disk-encryption/https://www.shield.travel/en/devices/disk-encryption/BitLocker, FileVault, LUKS: what's enabled by default, what actually protects, and the attacks that get through anyway.Thu, 03 Apr 2025 00:00:00 GMTdevicesBitLockerFileVaultLUKSTPMDMA attackcold boothttps://www.shield.travel/en/identity/defensive-osint/https://www.shield.travel/en/identity/defensive-osint/Using offensive intelligence tools on yourself to anticipate what an adversary will see in 2 hours.Thu, 13 Mar 2025 00:00:00 GMTidentityOSINTreconnaissanceMaltegoEXIFmetadataSherlockhttps://www.shield.travel/en/identity/sim-swap/https://www.shield.travel/en/identity/sim-swap/How a 4-hour attack can compromise your complete identity, and why SMS as MFA factor is a systemic risk.Thu, 20 Feb 2025 00:00:00 GMTidentitySIM swapcarrierport-out PINSMS MFAsocial engineeringhttps://www.shield.travel/en/identity/mfa-google-authenticator/https://www.shield.travel/en/identity/mfa-google-authenticator/All MFA solutions are not equal. Anatomy of attacks bypassing TOTP, and migration path to FIDO2.Thu, 30 Jan 2025 00:00:00 GMTidentityMFATOTPFIDO2phishingEvilginxadversary-in-the-middlehttps://www.shield.travel/en/identity/email-is-passport/https://www.shield.travel/en/identity/email-is-passport/Why the main email is the root of all compromise, and how to harden access without locking yourself out.Thu, 09 Jan 2025 00:00:00 GMTidentityemailMFAFIDO2recoverypassword managerhttps://www.shield.travel/en/reality/data-brokers/https://www.shield.travel/en/reality/data-brokers/Who collects your data, how, why it's structurally hard to stop, and what you can reasonably do.Thu, 05 Dec 2024 00:00:00 GMTrealitydata brokerAcxiomopt-outGDPRIncogniDeleteMeOpteryhttps://www.shield.travel/en/reality/identity-compartmentation/https://www.shield.travel/en/reality/identity-compartmentation/Building watertight identities by use. The four-identity model, tools per compartment, the non-contamination rule, and rotation as maintenance.Thu, 14 Nov 2024 00:00:00 GMTrealitycompartmentationidentityaliasSimpleLoginemailOPSECnon-contaminationhttps://www.shield.travel/en/reality/right-to-be-forgotten/https://www.shield.travel/en/reality/right-to-be-forgotten/An honest anatomy of the GDPR right to erasure — what it covers, what it doesn't, and the pragmatic alternatives when deletion is out of reach.Thu, 24 Oct 2024 00:00:00 GMTrealityright to be forgottenGDPRCNILde-indexingerasureStreisand effecthttps://www.shield.travel/en/reality/exposure-audit/https://www.shield.travel/en/reality/exposure-audit/Step-by-step method to inventory what is already public about you. Free tools, priority order, decisions to make.Thu, 03 Oct 2024 00:00:00 GMTrealityauditexposureOSINTHIBPGoogle dorksthreat modelhttps://www.shield.travel/en/reality/data-already-public/https://www.shield.travel/en/reality/data-already-public/The privacy-first fiction serves everyone except you. An honest inventory of what has already leaked, and the strategic shift to operating in an assumed-leaked state.Thu, 12 Sep 2024 00:00:00 GMTrealityexposureleakdata brokerprivacythreat modelOSINTcompartmentation