We knew this was coming, but now the clock is running.
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
@briankrebs A couple of thoughts:
1. Other countries may, and I think probably, will impose similar requirements on US people trying to enter those counties. In other words, the US would approach becoming a closed kingdom, like N. Korea.
2. Just wait until someone remembers Little Bobby Tables (image below).
3. The data will leak (or more likely, be sold.)
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
@briankrebs I have never travelled to the US and never will. I wouldn't know what to do in a fascist country.
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
@briankrebs In EU countries, it wouldn't be legal to give out family members' details if they didn't consent I think.
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
This is populating the databases and a govt subsidy to Big Tech. No doubt, Big Tech promised that its new, improved, sudsier AI can troll through that information in less time than it takes Trump to eat a Big Mac, and reveal...reveal who the big bad guys are.
It will do nothing of the kind. Its false positives and negatives will go through the roof, but they'll make billions. Meanwhile, the millions of visitors to the US will have their privacy destroyed.
-
@briankrebs If the EU were any use, it would protect my fucking Email from being handed over to the USA by any idiot family member who thinks it's an ok idea to travel to the USA. I'm sure they'll be fine with it.
@Giliell @briankrebs If you didn't consent I think it would be contrary to GDPR to give it.
-
@ojensen @briankrebs Do you even remember them all? I certainly don't.
@derickr @ojensen @briankrebs Password managers! They can hold unique email addresses as well as the expected passwords and user names. Every account should have all three of those unique.
Gmail, firefox, duck, and pretty much all commercial email providers let you generate more email addresses than you'll ever need. Having hundreds of active email addresses is a normal thing. I tell myself that
. -
@darwinwoodka @hypostase @briankrebs
I remember reading a discussion on Reddit a decade or two ago in which a British business traveller explained that immigration at Imam Khomenei Airport, Tehran, was *welcoming and friendly* compared to JFK—and the USA (under Bush II) was about as pleasant to enter as Moscow during the Brezhnev years.
By all accounts it is now much, much worse.
@cstross
My dad was in a plane crash in Moscow in the 70s, due to refueling, and we visited in the 80s.Even then I wondered why it wasn't safe to put a visa stamp directly in the passport. Nowadays if I did ever have to visit the US, I think I'd want a clean passport to do so with.
It's been increasingly difficult to see the difference, unless you are part of the ruling classes, or can fake it for just long enough.
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
@briankrebs One more reason as a Canadian I will not be crossing the usa border
-
I feel for anyone in the travel, tourism and hospitality industries, which make up ~ 10M jobs and ~ 3 percent of the nation's GDP. From the U.S. International Trade Administration (trade.gov)
"Inbound international travel to the United States plays a vital role in the Nation’s economy and promotes cultural exchange and understanding. Travel and tourism is the largest single services export for the United States, accounting for 22 percent of the country’s services exports and 7 percent of all exports in 2023. The travel and tourism industry contributed $2.3 trillion to the U.S. economy in 2022 (2.97 percent of the country’s GDP), supporting 9.5 million jobs."
@briankrebs The US have been fingerprinting for over twenty years. Each time I complained about it, Canadians and Americans looked at me like "what are you talking about". And no reciprocity either because Europe is a bunch of cowards.
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
Peter Thiel maw into Palantir is getting insatiable.
-
@briankrebs A couple of thoughts:
1. Other countries may, and I think probably, will impose similar requirements on US people trying to enter those counties. In other words, the US would approach becoming a closed kingdom, like N. Korea.
2. Just wait until someone remembers Little Bobby Tables (image below).
3. The data will leak (or more likely, be sold.)
@karlauerbach @briankrebs LOL. As I just said in the thread. They will not reciprocate. They haven't in the last 20 years
Hubert Figuière (@hub@cosocial.ca)
@briankrebs@infosec.exchange The US have been fingerprinting for over twenty years. Each time I complained about it, Canadians and Americans looked at me like "what are you talking about". And no reciprocity either because Europe is a bunch of cowards.
CoSocial (cosocial.ca)
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
@briankrebs I don't think they realize that 1984 wasn't an instruction book.
-
@Stevenheywood @briankrebs Looks like even Nige has cooled off a bit lately - after being snubbed maybe.
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
@briankrebs Great way to cut travel into the U.S. down to a small trickle of people who simply must come for whatever urgent reason.
-
@briankrebs
Why didn't they just require everyone get chipped also?@RealGene @briankrebs they already did the chips in the covid vacine
-
@briankrebs wait, thats awesome! that means they are still not capable of finding this out on theirselfes!
@koratex @briankrebs They can, they're just placing the burden on the individuals now. But I think the more sinister thing is that they are going to use this to disallow those with viewpoints contrary to the regime narrative (ie, people with a fact-based understanding of the world). They'll also deny entry to those from disadvantaged backgrounds. If you don't have the luxury of a smartphone, how can you have a social media presence? And of course that's suspicious if you don't provide that info.
-
I feel for anyone in the travel, tourism and hospitality industries, which make up ~ 10M jobs and ~ 3 percent of the nation's GDP. From the U.S. International Trade Administration (trade.gov)
"Inbound international travel to the United States plays a vital role in the Nation’s economy and promotes cultural exchange and understanding. Travel and tourism is the largest single services export for the United States, accounting for 22 percent of the country’s services exports and 7 percent of all exports in 2023. The travel and tourism industry contributed $2.3 trillion to the U.S. economy in 2022 (2.97 percent of the country’s GDP), supporting 9.5 million jobs."
@briankrebs I keep thinking about how Florida has repeatedly shot themselves in the foot.
-
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
@briankrebs
sounds familiar to me...
have seen similar in another palantir country
-
I'm British, white, male, aged 60-ish.
Prior to February 2016 I typically visited the USA 3 times a year for up to six weeks.
Since February 2016 I have visited the USA twice in a decade, for a total of 10 days.
Entering the USA as a foreigner, with a Republican POTUS in the White House, *never* felt safe, but under Trump it looks diabolically dangerous. (And to a glance I resemble "one of them": I'm not female or dark-skinned.)
@cstross @briankrebs I am Canadian the last time I was over that border was in the mid 80s. My sons were in a swim tournament just across the border. I never felt safe in america even back then.
-
@briankrebs and coupled with immigration law having provisions that classify any kind of omission on an immigration, visa, or entry form as potential immigration fraud and grounds to disqualify the individual from ANY future status = anybody that forgets one email address or social media account they’ve had years ago is suddenly easily turned into an “illegal immigrant” and passed into the jurisdiction of ICE for deportation and potentially a permanent life ban from the US.
@mariyadelano @briankrebs being deported by ICE is the least worst option. Its the in country shootings, death camps or illegal rendition to el salvador that would not be ideal because you forgot to include your microsoft online account that was force made when you attempted to log into your laptop with a local account.
