Jennifer W. But the antitrust case seems clear. The only people not harmed by an Alden merger are shareholders of the acquired firm and I'm thinking of my former colleagues today as a newspaper-destroying hedge fund seeks to take over Lee. Stay tuned. I don't just live in the larger metro. I live in city we report. It's now known far and wide as the news industry's ever-more-engorged leech, a cost-cutting omnivore that makes every newsroom it touches worse, King Midas in reverse.
You might want to follow him. Axios : Notorious hedge fund sparks panic about death of local news. Washington Post : Alden hedge fund wants to buy one of the last independent newspaper chains. Subscriber growth is slowing down, and they need as many users as they can get. Stay tuned! Also, we are hiring!!! Congratulations to the staff on impressive growth in the last year. Her persecution continues I'm really glad it exists, because I think our media landscape was weirdly unable to tell her story in a way that held anyone's attention.
It's a claim The Intercept strongly denies. Not surprising. Number one, she did wrong. Number two, she was dumb in how she went about it. The only one she should be mad at is herself for doing the wrong thing the wrong way. Costs were imposed. I still teach from it in my election integrity course. I don't care what legal fees they paid, they should pay her for her time in jail. It was because of them. Worth a read. I knew what I was doing, I faced the consequences.
That's fine. It's their attitude towards it. It's the sloppiness I have a lot of bitterness in my heart towards them. He wants to hide out in Brazil on his private beach or whatever. Never hire a bad actor and never worry about ruining a client relationship. Virtual Badge has you covered. Defeat fraud by using technology that matches their photo to a government issued ID. Virtual Badge makes sure that they are who they say they are. Virtual Badge is more than an ID card system for businesses.
Virtual Badge secures your construction site. Digital ID cards solve problems related to identity, manpower tracking, safety, and compliance. Virtual Badge secures your vendor or contractor program. Issue ID badges that make sure your contractor force follows your rules. Keep your contractor force identified, compliant, and ready to work by: - Instantly issuing or revoking a contractor ID badge - Linking a background check or drug test to their ID badge - Communicating with any contractor via their ID badge - Receiving status updates on job completion or issues.
Virtual Badge improves management in the healthcare field. Virtual Badge has been named a "Best Practice" at more than 10 different disasters.
Virtual Badge is an all-in-one membership system. Make it easier for everyone in your membership organization to know what's going on. Ultimate provides HCM solutions designed to improve the employee experience by putting people first—HR, payroll, talent, time and scheduling, engagement surveys, HR service delivery, and more.
Kronos' unified HCM suite allows your people to work smarter, work their way, and work seamlessly in the modern cloud. Workday Human Capital Management empowers you to curate recommendations, suggest learning, and keep communication open. And do it at scale. All-in-one, open-architecture solution for strategic human capital management — talent, payroll, time and benefits — for large U. This turns badging into a one-step process. CogitoCogito 21 days ago root parent prev next [—].
This is quite a flippant response. These requirements are being put in place against some users' will. Simple changing email providers isn't exactly easy and maybe they need to access that account.
Maybe Google should allow users to turn this off? I've had the same experience. SpelingBeeChamp 21 days ago root parent next [—]. If you use a Google Titan Key with Apple devices, have you been able to pair and successfully authenticate using either 1 bluetooth only, or 2 NFC only, on any Apple device?
I have not, and it's frustrating that Google offers no support beyond their help pages for their own branded hardware. I use a few Yubikeys and a Bluetooth Feitian key with my iPhone 8. I believe Google phased Smart Lock out some time ago but I've not tried using it in a while, I don't use an iPad very often. Yes, the bluetooth titan key definitely worked for me and my wife on our iPhones. Many U2F devices cannot be backed up and they recommend that you register with 2 separate devices.
But while that is possible, it certainly doesn't scale and really is useless advice for the general case. I have 3 U2F devices. My wife has 2. For any U2F logins we have, we have enrolled all of our dongles in each login. At least one of each of our devices is always stored at home in a safe place, where we store other valuable documents. You can't backup a U2F dongle but so far everywhere I've enrolled to use one it always recommends you enroll at least 2 and keep one in a safe place.
Can you elaborate on it not scaling? Keeping a spare is a pretty common pattern; see tires, house keys, emergency supplies. SpelingBeeChamp 21 days ago root parent prev next [—]. Mind sharing which U2F dongle and phone you use? Both work fine, although I haven't used the Bluetooth one in a while. I use my Yubikey 5 on a regular basis. I use an iPhone 8. ABS 21 days ago parent prev next [—]. And authy has a desktop app too, which makes it much more convenient. With desktop Authy only one device - your computer - needs to be compromised.
This is correct but, in the vast majority of cases, attacks are carried out remotely. I would agree that where third parties have access to your machine, it would be not be a good solution. If someone controls your computer remotely, it's the same as if she controlled it physically, no difference from pownership point of view.
PikachuEXE 20 days ago root parent prev next [—]. Authy desktop app doesn't show some entries for me though. Dunno why. Gating 2FA behind a single password defeats the point. Two passwords - a master password, and a secret key. That's not how MFA works. Chaining just increases vulnerability. My password manager requires a hardware token to log in. So now the second factor is "has a device I've logged into my password manager with, or the hardware token for the password manager".
Which isn't something you have. It's something you know, gated behind something you have. TacticalCoder 21 days ago root parent prev next [—]. It doesn't solve all security issues, but it's already a great step forward. When you let people the choice, they'll pick the lazy, insecure, way. FWIW, you could use a different app, other than Google's.
For example, you could use an app called Authy or the Microsoft authenticator app. One alternative though it's absurd it has to be this way is to use two separate google accounts - one for your phone, one for everything else. If you are working in facility where you can't have a mobile phone nearby, it is incredibly frustrating.
Sure, just print out a long list of codes every week. Because your parents do not have cellphones, Google will conclude that it doesn't know a better way to authenticate them and they get to keep their existing poor security. As the article eventually explains.
If you would like your parents to have better security for these accounts, I commend Security Keys. Unless your parents aren't together any more, or are just really fervently independent, it's probably fine to buy them one each, but with the suggestion that they both enroll both keys. This way when Parent 1 loses the Yubikey you bought them, Parent 2 can use their Yubikey to save the day until a new one is purchased. Searches for "Security Key" on Amazon or your preferred site will give you a pile of products and review feedback across price brackets, the only thing your parents are likely to care about are the connector USB A is no use for a USB C MacBook for example and maybe other form factor concerns like can it hang from a keychain, or would it fit in a wallet?
For their purpose these things don't fill up, and shouldn't modulo physically smashing it wear out. Something like this is really going to be a challenge for them. Might be time to move them to fastmail. They are available everywhere, inexpensive, and if you're afraid it will be misplaced, there's always the option to glue the USB A key to the adapter Google discontinued the "read you a number over a landline" feature a little while back and only supports texting now.
Others have mentioned a desktop app, but how often do your parents have to 2fa? It's not every time they log in unless they're buying a new burner laptop every time they log in.
If they are, there may be other issues to discuss first. I've found Google asks for 2fa at pretty random times. I do travel a lot but still it happens at least once a month. I am curious about this as well parents in the same position. What happens now? My Dad is in the same boat. They are fairly easy to use - although you might have to help your parents with enrollement. Yeah they can barely manage email. I've taught them how to forward email a dozen times but that's a bridge too far for them.
My google account shows Security Keys as the default 2fa option. When I login it goes straight to the security key prompt. Security often comes at the cost of convenience. DoingIsLearning 21 days ago root parent next [—].
False dichotomy, these issues would be gone if google provided any meaningful customer service for edge cases. You can fill forms and feedback but I have never heard of free users ever getting as much as a reply back. Google doing it properly should not upset you this much. Please, no. Now you lose access to make a call too!
The last thing I'd ever trust security to is SMS. No matter what cellular service you use, you run a risk of being flagged as a false positive for fraud locks irrespective of SIM swaps.
If a SIM swap scam is happening and your account is locked, it is incredibly unlikely they'll be able to swap it out. Maybe just do that in the other case too. SMS 2fa is still multiple times more secure than no 2fa at all though. I sort of disagree. With social engineering, it could be easier to reset someone's password with a SIM swap than traditional means. Phone numbers are much easier to source through public records than many people realize.
That's not really on the table though. We are not talking about your local tech illiterate bank here. We are talking about securing your Google account which is likely used to SSO authenticate with many other accounts.
The title is highly misleading, and is predictably being interpreted as 2SV becoming mandatory for everyone. Glad this is at the moment at least the top comment. Add another to the infinitely growing pile of HN news posts that are either out of date, massively misleading in making a calamity out of a non-issue, or both.
Not that it's HN's fault. This is just modern "media. Still, worth griping about 2FA while we're here. Not that it's HN's fault In a way, it is. A lot of people joined HN searching for a higher level of discussion and thought.
And HN is powered by submissions from its users. What would be nice is if we could get more high-quality submissions to drown out the bots and other low-grade content. Perhaps if users could filter out submissions by domain. For example, I don't mind seeing nytimes. But then we're just back to building yet another social media echo chamber. Life is hard. Do you think it would be better to filter the news as a group rather than individually?
I find it very frustrating not being able to trust titles. Google locking me out of my account, despite me providing valid credentials, was the catalyst in de-googlifying my life. The inherent tradeoff with information security is convenience. For a personal account, the user should decide where they want to exist on that curve.
Google's assumptions that I have perpetual access to a cellular device, or a consistent ISP, are user hostile. I also have an old account that despite knowing the correct password AND having access to the recovery email for that account, Google refuses to let me log in and there's no recourse.
It's frustrating to say the least. I've been through the process of recovering an old account and I can share some tips, feel free to email me if you'd like address in my profile. Please consider doing a write up on how you resolved this? There must be thousands of people impacted by this. I've also had this situation when relocating countries. I had to abandon a 15 year old account for which I also had a valid working recovery email with a lot of issues recovering online banking etc.
Had to physically travel to another country to restore multiple services associated with the account. I'm with fastmail now. I will never again depend on a mail service that I am not paying for. You need to own the domain in your email adress, then the email provider does not matter that much.
How did you regain access in the end? That's the only worry I have with relying on Google services so much I never regained access to it. It's just an old account that I only used for a brief period of time so I don't think there's anything valuable in there, but it still sucks nonetheless.
I think most users lack understanding to make an informed decision about where they want to be on that curve. KennyBlanken 21 days ago root parent next [—]. Cellular providers have laughable security when it comes to account access and changes.
The easiest way to get to someone's money and digital life is to figure out their cell phone company, and then convince them to send you a new SIM card for their account.
Presto, instant to their bank account and now their google account. This is about google wanting to tie more identifying information to a google account, and by way of making all but "install our app" incredibly annoying force iOS users to have a Google app on their phone so they know what IP address to associate with you at all times. I was in the process of stripping Google out of my life and this looks like excellent motivation to speed that along. I feel I'm the only one who absolutely hates the zoo of MFA I'm subjected to as part of the latest and greatest in security for the masses.
I hope something comes along to replace all of it soon. I feel like my PC is should be the source of truth for my identity, not my phone. Phones get lost, stolen, and destroyed at times and there's no guarantee that I'll have access to my phone number for the rest of my life. I'm already completely screwed if my phone number changes, because not every service offers one-time-use codes to bypass 2FA.
It is absolutely baffling that there's no desktop 2FA program that's widely used. I guess tech savvy people are using android emulators on their PC to run google authenticator, but that's such a pain. Has anyone had luck with yubikeys for personal accounts? There are many other TOTP generators for desktop.
No need for Google Authenticator. It has a desktop app that syncs to the Authy app on my phone. With Windows 11, you'll soon be able to run Android apps without needing to install an Android emulator, but that's not here and now, though I use Yubikeys for everything that allows them. Haven't had any problems. TeaDude 21 days ago parent prev next [—]. Don't worry. Many companies are already replacing it with a simple webcam image of your mug Hopefully directly stored on a server somewhere so it can be used for identity theft purposes.
Assuming you mean face and not a coffee mug, can you give an example? Most companies using facial recognition are using 3D maps of facial features using IR or other sensors, not a camera image. Windows Hello and Face ID come to mind, hence why they work in the dark. TeaDude 21 days ago root parent next [—]. I am fully aware that these algorithms use reference points on your face. I'm still not pleased with that data getting passed around.
As for the part of my comment in parentheses; I'm graciously awaiting the facial equivalent of "passwords in plaintext on the server". It's rather uncommon these days but I can almost guarantee it'll happen at least once. My point is that generalizing it as a "webcam image on a server" is not only disingenuous, it's incorrect. It's not from the webcam, it's not an image, and it's not on any server except your own local device. Unless you have an example of a company doing this, which I did ask for.
As far as I know companies are not storing that data in the cloud, at least the major ones I'm aware of. This seems pretty worrisome if you have ANY non-Apple device.
So if I create an account using PassKeys, but at some later date, I need to log in using a browser on a Windows or Linux box, what do I do? I don't have a password, since one was never created. Q: Why didn't I get paid this week. Q: How do I earn more money.
Q: How do I change the email address on my account. You can change your account email address by going to Settings and clicking on Change Email. Q: Do you have a referral program. Q: Can I choose a different currency. Q: What is the minimum amount I have to reach to be paid. Q: My currency is not listed when I enter my payment details, what should I select. Q: Why did my earnings all of a sudden disappear.
Q: How do I refer my friends. Q: I completed an offer but my account was never credited, what do I do. Q: How do I get started. Q: Why did the rates for slideshows drop. Q: I installed an app on my mobile but it didn't credit, why not. What do I do now? How do I start.
Q: I want to get paid to watch videos and do surveys! Q: Where can I download the Timebucks app. Q: For the Register Domain task, it's coming up with invalid nameservers when I enter them but they look correct. Q: How do I appear on the Ladder. Q: I'm trying to sign up but it says you can only have one TimeBucks account at a time, what do I do?
Q: How do I withdraw my money. Q: How do I withdraw my earnings. Q: Where is the withdraw button. Q: I didn't receive the confirmation or verification email to verify my account. Q: I need to update my profile but it won't let me, what do I do.
Send the new details to support and we will change it for you. Q: How do I earn money. Q: What do I do if one of the usernames to follow in the Instagram task is Private or unavailable, as it won't let me verify. Q: I did a quiz offer and it did not credit.
Q: Where did the Mining tab go. We removed it because it wasn't performing well. Q: I'm trying to change my payment method but it's asking for a password, and I signed up with Facebook so I don't have a password. Q: I did a survey on Your-Surveys and have not received my credit yet. Q: Why is the unfollow limit in the Instagram task so small compared to the Follow limit.
Q: My Follows are not verifying in the Instagram tab. Q: Why do I have to unfollow people now in the Instagram tab. Select Wales from the Country list instead as it is listed as it's own country on our website.
Q: I did a JungleSurvey survey and I didn't get credited. Press the Report A Bug button on their website. Q: Instagram has disabled my account, what do I do. Q: I did a Jungle Survey task and they did not pay me. Q: Why don't I get any surveys available? Why are there never any surveys. Q: How do I delete my account permanently. Q: Why is my bonus or referral commission showing a negative amount.
Q: Instagram won't let me follow it says Action Blocked, what do I do. Your Followers count only gets updated every time you Verify your Follows or Unfollows. Q: Why is there a timer between follows in the Instagram tab. Q: I can not work on the tab Jungle Survey. At first, the money was not credited and wrote that it was suspicious activity.
Then I could not log into my account at all. Now it says my IP is blocked. Q: On RevenueWall I get a message saying "Account under Review Due to your quality score falling below 1, we require you to communicate with the support team to rectify the situation.
To get in touch, please use the form on our Contact Us page. Q: There are no surveys available. Why do I never get any surveys available. Q: My Instagram post is not verifying. Q: My surveys are in the wrong language. I am in this country for work but I don't understand the language so how do I change the survey language. Q: Today is pay day and I haven't received my payment yet.
Q: How do I see a list of all my individual task earnings. Q: When I post my link on Facebook or Instagram, I get a messsage that my post is against their community standards on spam. Q: I am doing the Sponsors task, and after scrolling to the bottom of the page there are no thumbnails showing it's just a blank page.
Q: How do I do the Smart Link task? Q: I lost all my sweepstakes entries, why? Sweepstakes entries are reset every time the prizes are drawn. Q: How do I change my username for the Instagram Task? Q: I was doing hideout. Q: How do I find out what my post code or zip code is?
I don't know what my postcode is. Q: I am no longer getting disqualification points from Tap Research. Typically it is one cent per disqualification but not anymore? Q: My Instagram account got banned, what do I do? You will need to click the Report a Bug button at the top of their website. Now it doesnt even allow me to answer any survey Is this a new thing o it has anything to do that I change my current state?
How do I do it? Q: Why don't I get any TikTok campaigns? Q: I haven't received my TransferWise payment yet. Q: Why does my TikTok account have a high following and make so little money. Q: Can I do the Engage task on mobile? No, currently it's only available for Chrome browser on desktop. Q: Please make me Premium on TikTok. Q: Why can't I choose the category of my TikTok account. Q: How much do I earn per referral. Q: I am not receiving any tasks and videos. Is there any problem that I am not receiving these.
Q: What promo code do I enter in hideout. Nothing, there is no need to enter a promo code to withdraw from there. Q: Why can't you send my money with PayPal. Q: How do I edit my profile, I entered some wrong information. In the support tab, in the very first menu choose the option "I need to edit my profile". Q: I can't remember my password. Q: Why don't you add Payoneer. Q: Why are there no surveys available for me. Q: My earnings are low why can't you send me more surveys.
Q: I received a bonus, but I don't see it in my earnings history. Q: I am watching videos on Hideout. TV but my points are not going up. Q: Is TimeBucks a free website or do I have to pay. Q: I can't create a borderless account on Transferwise, therefore I can't use it right. Q: How do I convert my sweepstakes entries into points. Q: I have so many sweepstakes entries and I never win, why. Q: Can I do the Engage task on mobile.
No it's only available on Desktop with Chrome Browser currently. No you can't send money between accounts. Q: I'm having problems with MoreQuizTime. You must click the support button on their website for any MoreQuiz time related question. Q: I completed a survey today and only got 1 cent. Q: Why am I not getting paid for disqualifications in Tap Research anymore.
The code is displayed in the Page Setup tab in point 2. Q: Why didn't I receive my payment for Engage videos. Q: Can I use TimeBucks on my laptop and mobile under one account. Yes you can use timebucks on as many devices as you want, but one account per person.
Q: Where is Figure Eight gone? I can't find Figure eight anymore. We have removed it and no longer work with Figure Eight. Q: Why are there no surveys for Pakistan. There are not many advertisers in Pakistan so there are not many surveys available. Q: How can I start earning in TimeBucks. Click on the Earn tab, and choose a task, then follow the instructions on the page. It tells me its not good enough when I checked I selected it correctly several times.
Q: How do I change the survey language? I don't understand it. Q: How do I participate in the Sweepstakes. Q: When will the Instagram tab come back. Q: I want to do the Push Clicks task but no allow button ever showed up to me in the browser. Q: Where do I find banners or marketing material to promote my TimeBucks referral link. Q: Where do I get my referral link from. Q: How do I stop receiving the Push Click browser notifications.
Q: I just got paid and now my account shows a negative amount in the header, why.
0コメント