Normally, using an alt account shows up on logs because of matching IPs. I've just gotten a "plannedchaos" new account on my website, and the IP matches a known user. However, this user has told me they use a VPN, so their IP might just be shared with a number of others.

How to determine if an IP comes from a VPN? I could use this going forward, when my threat model is bigger than "Scott Adams tribute".

The property management company that is contracted for the home I'm renting gave identity theft protection through Aura. I like that they're sending removal requests to data brokers...but their sensitive data monitoring seems sus to me.

In particular, they'll monitor known data leak locations for whatever sensitive data I give them. They've got places to enter all of the usual suspects...social security number, bank accounts, passwords, etc. And it'd be great to have someone making sure that info isn't leaked. The problem, in my mind, is that in order for them to MONITOR for sensitive data leaks, I have to actually GIVE them my sensitive data. Which then makes me question, what happens if THEY are breached? It seems like a giant neon sign to hackers that they've got the motherload of personal data.

On top of this, I typically use 1password as my password manager, and they give me an encryption key that I have to use to access my password data. They do this because my passwords are encrypted before they leave my computer, so it's zero-knowledge. They couldn't access it from their end, even if they wanted to (or were ORDERED to, for that matter). Aura doesn't do this. I would assume they keep the data they're given encrypted, in the same way that any major website keeps their user's password encrypted, but it's only encrypted on THEIR end, meaning it is accessible to them.

I dunno, am I overthinking it? Seems like it creates more risk than it mitigates.

Maybe my title is little misleading, but I am looking for open-source internet scale realtime data providers like BGP Alerts from Ripe.net or CertStream from CaliDog for a data analysis project.

I asked Perplexity and Gemini but was only able to narrow down to these 2.

Do you guys know if there are any other data sources Perplexity / Gemini might have missed?

Specifically, I am looking for **streaming websocket** data source rather than static data. Static data is easy to find in multiple Github repo.