feed on feeds - 2019/06/02 - items 0 to 15

Donald Trump threatens levies on Mexican goods if Mexico doesn't stop flow of undocumented migrants.

Opposition New Democracy party won in most regions, routing ruling left just a month before the general elections.

New Delhi alleges guests were turned away and some of its diplomats were "threatened" during iftar dinner in Islamabad.

An anonymous reader quotes the Verge: YouTube, Snapchat, Gmail, Nest, Discord, and a number of other web services are suffering from outages in the U.S. today. The root cause appears to be problems with Google's Cloud service which powers apps other than just Google's own web services. Google has issued a status update on its Cloud dashboard, noting that issues began at around 3:25PM ET / 12:25PM PT. The issues appear to be mostly affecting those on the East Coast of the US, but some YouTube and Gmail users across Europe are also reporting that they're unable to access the services. Discord and Snapchat users are experiencing issues logging into the apps, and these both use Google Cloud on the backend.

Read more of this story at Slashdot.

Bob Stepno recommends watching Meet John Doe.

Cori's smoothie recipe.

Ars Technica documents "a new breed of digital fraudsters" using a complicated scam to prey on white-collar job-seekers. It involves setting up a fake job interview process and the promises of high-paying work: Like most successful cons, this one involved gaining the willing consent of its victim through some combination of greed, fear, or desperation... The recruiter was responding to the application I had submitted a day earlier for a remote-work tech writer position at a biotech firm... The following day, I logged onto Google Hangouts, properly dressed and groomed for the video chat I'd been preparing for. To my surprise, I learned that the interview would be conducted using Hangouts' text messaging service... After a long briefing about the company, its research, and the oncology treatments it was developing, Mark began the formal part of the interview by introducing himself as the assistant chief human resources officer of the company and describing the duties I'd be expected to fulfill... But there were two questions that seemed out of place. They wanted to know which bank I used and whether it supported electronic deposits, a process in which you deposit checks by taking pictures of them with your Smartphone. It seemed like an odd thing to ask, but I told them that my bank did accept electronic deposits and moved on to the next question... Within a few minutes of submitting my answers, Mark informed me that I'd passed the interview and would receive a formal offer to work from my home as a copywriter/proofreader. My pay would be $45/hour during my one-week training and evaluation period, stepping up to $50/hour when I became an employee. The scammer even assigned fake work -- editing a monograph on cancer treatment protocols following the company's style guide -- while casually promising to send along a check to purchase the necessary high-end equipment for the job. The job-seeker was instructed to scan their deposit receipt and then email the image to the scammers. (And the check was issued from a private Catholic girls' school in Southern California -- while the job-seeker was instructed to make their purchase from "preferred vendors.") Though the scam ultimately wasted 'more than two days worth of my time," at least it revealed something about today's online job sites. "After some more digging, it quickly became apparent that the False Flag Employer scam I nearly fell for is an increasingly common type of cybercrime."

Read more of this story at Slashdot.

Last year, Trump avoided central London where hundreds of thousands took to the streets to protest against his visit.

In his TechCrunch column, software engineer/journalist Jon Evans writes that last month "marked a victory for sanity and pragmatism over irrational paranoia." I'm talking about Microsoft finally -- finally! but credit to them for doing this nonetheless! -- removing the password expiration policies from their Windows 10 security baseline... Many enterprise-scale organizations (including TechCrunch's owner Verizon) require their users to change their passwords regularly. This is a spectacularly counterproductive policy. To quote Microsoft: "Recent scientific research calls into question the value of many long-standing password-security practices such as password expiration policies, and points instead to better alternatives... If a password is never stolen, there's no need to expire it. And if you have evidence that a password has been stolen, you would presumably act immediately rather than wait for expiration to fix the problem... If an organization has successfully implemented banned-password lists, multi-factor authentication, detection of password-guessing attacks, and detection of anomalous logon attempts, do they need any periodic password expiration? And if they haven't implemented modern mitigations, how much protection will they really gain from password expiration...?" Perfect security doesn't exist. World-class security is hard. But decent security is generally quite accessible, if you faithfully follow some basic rules. In order to do so, it's best to keep those rules to a minimum, and get rid of the ones that don't make sense. Password expiration is one of those. Goodbye to it, and good riddance. Instead the column recommends password managing software to avoid password re-use across sites, as well as two-factor authentication. "And please, if you work with code or data repositories, stop checking your passwords and API keys into your repos." But if your company still has a password expiration policy, he suggests mailing Microsoft's blog post to your sys-admin. "They will ignore you at first, of course, because that's what enterprise administrators do, and because information security (like transportation security) is too often an irrational one-way ratchet because our culture of fear incentivizes security theater rather than actual security -- but they may grudgingly begin to accept that the world has moved on."