Sabaidee! (aka Hello!)
Sorry for this being long.
Background:I am a teacher, from USA. I used to teach English/ESL. (I hate teaching English). I've built a small computer lab to switch to teaching basic IT and electronics (repair, IoT, Arduino, etc). I'm just starting my hardware journey myself (getting into IoT, hardware repair, and the basics). At some point, I'd love to make my own custom hardware, for various IoT and sensor related projects. I'm not a total newb, but I'm no hardware expert, that's for sure.
Politics:I live and work in Laos, a communist country sandwiched between various other communist (Vietnam/China), somewhat communist (Cambodia/Myanmar), almost communist (Thailand) countries. I don't really have any grudges against communist governments, and whatnot. It's their place, not mine. They can do whatever they want (and they do anyways, regardless my feelings on matters). I'm apolitical in my work, and will remain that way.
In short, though I don't really care about politics; I do care about Laos and its people. Sometimes things can be strange and interesting...
IT Experience:My education is in "network admin/IT" with an associates / 2-year degree, but I've touched just about every general topic,
except advanced security. I have reasons for avoiding it, as a general rule (read
bottom if curious why). Let's just say I've seen what the dark side of IT can do to people on a personal level.
Concerns:That all said, I currently have some security concerns, but haven't been able to validate my concerns using anti-virus/malware detection software. I have some indicators that show something isn't quite right with a number of devices on my network, but can't clearly show the exact nature of any intrusion (though I have strong reasons to be suspicious). In short, something is fishy, and I can sure smell it, but I haven't quite found any fish as of yet. Paranoid? Maybe. Reasons to be? I think so.
Who knows? Maybe it's just the horrible electric grid burning up my stuff and causing my devices to be unstable (there are problems with the local grid here), or high humidity, or a coincidence of lots of software bugs, or all of it all at once... I'm not ignoring these as possibilities, but I'd like to rule out worst cases first.
I prefer not having people snoop around my network/devices, and cause problems (intentional or unintentional). I don't have great access to specialized equipment or specialized commercial software to deter them. I also have limits to what I can reasonably obtain, especially with mail problems due to COVID. In short, I'm looking for simple, open source, effective counter measures I can implement now, and ways I can monitor and verify what's going on, without having to break the bank or fly across the planet to get it.
Help Wanted:The questions: What recommendations are there for software inclined people (I have some Linux server experience, can do some programming, Windows admin, firewall, whatnot) who want to build a strong defense against intrusions? How does one effectively create an IoT network with some questionable Chinese hardware (DVR and bunch of Sonoff's programmed with Tasmota), WiFi network, and limited remote access (Home Assistant) without being invaded? What kinds of deterrents are available to defend against attacks to WiFi? What can be done if your ISP shoves a Huawei FTTH router on you, that hasn't had a firmware update in half a decade, and runs on default passwords?
I've done some things already (limited ports, changed the default router password, double-nat with port forwarding, using non-standard ports, using OpenWRT with reasonable iptables settings, using DoH, and on and on). But, I'm not sure it's enough - and some of my computers show signs of virus infection (higher utilization than normal, and misrepresented/inconsistent resource usage). Not sure what the process needs to be to identify and rid computers of current intrusions.
Bottom:For those curious, I used to hack (more like advanced script kiddie) in my younger years (mostly pranks). We are talking nearly two decades ago. It started out when I was taught at age 13 how to duplicate satellite card subscriptions using a Russian card programmer (aka carding). I started my curious adventures into computers. But, in terms of 'security', I mostly focused on the fun stuff... I'm talking like programming electric road signs to say "*** **** IT SLOW DOWN NOW!" (Safety first when driving people!). Or using netsend to broadcast messages across the whole domain of a college campus with the single word "penis" to every staff computer (it even waited until staff logged in later, and would show it on sign in - lol). Of course, remote admin teacher's and student's computers, change backgrounds, and all of that kid play stuff. Stuff hit the fan, I grew up quick, and it all stopped (even if I still own a 2600 t-shirt). Again, all fun and games until things hit home.
My first IT 'teacher' was an interesting 'fella' (a word which also rhymes with felon) Brett Shannon Johnson "Gollumfun". He was my brother-in-law as a kid. You can read more about his fall here:
https://www.wired.com/2007/06/secret-service/. This is the same guy who got us pirated videos games galore as a kid, helped us watch LoTR before it was officially released, etc. So, I gave the whole hacking things up when I realized how pointless and painful fraud/black hat garbage is - it destroys people. I got out of the 'security' arena, only learning what I needed to know to keep myself/my family safe.
In short, I don't really want to get back into it either, but I can't shake that feeling that I'm being monitored, and that somebody/somewhere considers me and/or what I am doing to be a threat. I get frustrated, and am tempted to go down the street and have some 'phun' myself as payback, but A) it's not going to help, and B) I can't even 'prove' who it is - suspicions aside. Given where I am, state sponsored doesn't seem unfounded. America has a great reputation right now.
I know stories of people who caught government informants snooping on them (via somewhat traditional means). Yeah...
Any advice is greatly appreciated.