Link Directory – Season Submit http://seasonsubmit.com/ Tue, 19 Oct 2021 07:33:38 +0000 en-US hourly 1 https://wordpress.org/?v=5.8 https://seasonsubmit.com/wp-content/uploads/2021/07/icon-2-150x150.png Link Directory – Season Submit http://seasonsubmit.com/ 32 32 How to Transfer WhatsApp Data to New Android Phone without Google Drive https://seasonsubmit.com/how-to-transfer-whatsapp-data-to-new-android-phone-without-google-drive/ https://seasonsubmit.com/how-to-transfer-whatsapp-data-to-new-android-phone-without-google-drive/#respond Sun, 17 Oct 2021 15:14:15 +0000 https://seasonsubmit.com/how-to-transfer-whatsapp-data-to-new-android-phone-without-google-drive/ WhatsApp recently added the Encrypted Backup feature which allows your Google Drive and iCloud backups to be end-to-end encrypted as well. This makes the service more secure as a whole. However, you can still backup your WhatsApp data and even transfer it to another phone through completely offline methods. All you need is a file […]]]>

WhatsApp recently added the Encrypted Backup feature which allows your Google Drive and iCloud backups to be end-to-end encrypted as well. This makes the service more secure as a whole. However, you can still backup your WhatsApp data and even transfer it to another phone through completely offline methods. All you need is a file compression app like RAR.

The method basically works by taking an offline backup of your files, recovering all the data in a single folder, and then transferring that folder to another phone. It’s not as convenient as using your Google Drive backup, but lets you skip Google Drive altogether.

It can also come in handy if you’re in a rush and don’t have WiFi around you, avoiding downloading and uploading all of your WhatsApp data which can be too much for a data plan. Here’s how.

Step 1: Create a local backup on WhatsApp

In WhatsApp, go to the three-dot menu on the homepage and navigate to Settings / Chat / Chat backup and press “Save”. Once the local backup is created, you can ignore the Google Drive backup prompt, if necessary. You now have a local backup created in your phone’s internal storage.

First create a local backup. (Express Photo)

Once the local backup is ready, uninstall WhatsApp from the old device.

Step 2: Install RAR or any other file compressing application

Go to the Google Play Store, download the RAR app and set it up. We will use it to compress all of our WhatsApp data and make it into a single file. You can also choose any other app you want.

Step 3: Compress your WhatsApp data

In the RAR app, you will see your phone’s internal storage directory. Go to Android / Media and find the “com.whatsapp” folder. Select the check mark next to the com.whatsapp folder and press the Add archive button at the top (shaped like a ‘+’). The entire folder should now start to turn into a .rar file.

WhatsApp, WhatsApp backup Use RAR to turn the local backup folder into a single file that you can send to another phone. (Express Photo)

Note that compressing all of your WhatsApp data is a lengthy process and may take some time. You can also choose to make it a .zip file instead. The only point of turning the whole folder into a .zip file or a .rar file is to make the whole transfer process less clunky.

Step 4: Move the data to your new phone

Move the new com.whatsapp.rar file (or the com.whatsapp.zip file if you created a zip) to your new phone where you want to set up WhatsApp.

Use RAR once more to unzip the same file in the internal storage of the new phone and place the extracted folder (must be named “com.whatsapp”) in the same directory, which is Internal storage / Android / Media.

Step 5: Install WhatsApp on your new phone

You can now install WhatsApp on the new phone and during the initial process ignore the Google Drive backup prompt so that the app will try to find a local backup instead. This will allow WhatsApp to detect the files we restored to the specific directory in step 4.

Restore the detected backup and continue with the rest of the installation process. Once done, your WhatsApp account is now ready on the new phone. You can now delete the .rar or .zip file that you created and copied to the new phone in step 4.


Source link

]]>
https://seasonsubmit.com/how-to-transfer-whatsapp-data-to-new-android-phone-without-google-drive/feed/ 0
These are the 6 most in-demand tech jobs that South African companies are struggling to recruit https://seasonsubmit.com/these-are-the-6-most-in-demand-tech-jobs-that-south-african-companies-are-struggling-to-recruit/ https://seasonsubmit.com/these-are-the-6-most-in-demand-tech-jobs-that-south-african-companies-are-struggling-to-recruit/#respond Sun, 17 Oct 2021 15:01:33 +0000 https://seasonsubmit.com/these-are-the-6-most-in-demand-tech-jobs-that-south-african-companies-are-struggling-to-recruit/ As IT job openings continue to increase as companies struggle to recruit and acquire essential skills in South Africa, there is an opportunity to develop or retrain individuals to meet this demand. Prudence Mabitsela, Founder and CEO of Dynamic DNA, a training and skills development company that strengthens the generation of ICTs in Africa, believes […]]]>

As IT job openings continue to increase as companies struggle to recruit and acquire essential skills in South Africa, there is an opportunity to develop or retrain individuals to meet this demand.

Prudence Mabitsela, Founder and CEO of Dynamic DNA, a training and skills development company that strengthens the generation of ICTs in Africa, believes these skills are needed to build South Africa’s economy and fill the gaps. in digital and gender skills in the country.

As the Fourth Industrial Revolution (4IR) begins and more companies accelerate their digitization strategies due to the global pandemic, now is the time to add these rare skills to your resume to ensure employability and career advancement in the sector.

“There are many opportunities in a variety of industries and not just in the IT sector,” Mabitsela said. “Jobs span banking and financial services, retail, fintech, government, legal, logistics and many more. It is imperative that the learning and development or re-qualification of existing employees be a priority so that we can bridge the digital divide.

One of the ways Mabitsela believes that individuals can take advantage of this demand for skills is by taking specialized and certified courses that can last anywhere from a year to a few months for a qualification and depending on the course, and with advancement. of technology, many of them can be done online.

“It is important to ensure that these courses are aligned with the MICT SETA qualifications framework and delivered by an accredited training provider,” she advises. “This ensures that you receive a quality education delivered by qualified lecturers with an internationally recognized certificate. “

Here are the 6 most in-demand IT jobs in the country and the skills you need to progress:


1. Software developer

Developer salaries vary widely and can be viewed here.

  • GP R48 442 to R65 604 pm
  • WC R45 012 to R56 685
  • KZN R42 755 to R55 882

There are key skills required in software development today that are worth investing in to ensure your career stays on track, ”said Mabitsela.

“Cloud computing is an area everyone should add to their CVs in 2021 as more companies move their environments to the cloud. This means that learning platforms like Amazon Web Services, Microsoft Azure, and Google Cloud Platform will be of great benefit to your career.

“Other skills include upgrading version control tools such as Git and SVN; containers and tools like Docker and Kubernetes; Such as VSCode and for Java programmers, Eclipse, NetBeans and IntelliJ. If you only know one database programming language, then adding a few more in 2021 is critical as it will keep you ahead of the competition.


2. Network and Computer Systems Engineer

The average salary for a Systems Engineer is R525,000 per year in Johannesburg, while a typical engineer can earn around R30000 per month.

The systems / network administration positions pay the following:

  • GP R35 265 to R47 947 pm
  • WC R30 133 to R43 256
  • KZN R25 920 to R30 640

In the interconnected world we find ourselves in, computer networking skills are increasingly in demand, said Mabitsela.

“If you want to advance your career, the following skills will help you get there: Linux; Juniper; DOD; The Windows; Active Directory; Internet security; VoIP; System Center Configuration Manager; Business process; Configuration management; OSPF; Domain name systems; Unix; and architectural skills.


3. ICT systems analyst

The average salary for a systems analyst starts at around 38,000 Rand per month (450,000 Rand), with an average salary in this role of around 600,000 Rand per year.

Due to digital disruption and advanced technologies, it’s important for the systems analyst to acquire the skills to manage the technologies that are reshaping businesses, Mabitsela said.

“Advancing your skills in these technologies will certainly help you get there: AI (Artificial Intelligence); BI (business intelligence); Big Data; RPA (robotic process automation); Block chain; the digital economy; Information security ; Cloud computing; Software development; Agile IT project management; ML (machine learning); and DL (Deep Learning).


4. Programmer analyst

The average salary for a programmer analyst in South Africa is around R500,000, ranging from R385,000 to R600,000, depending on skills and experience.

A programmer analyst typically has a wide range of skills ranging from those essential computer technology skills to more general skills such as communication, problem solving and even creativity, Mabitsela said.

From a technical point of view, these are the most sought-after skills: developing applications in the .NET framework; data base management; Microsoft SQL server; management and security of Windows applications; web application development; create mobile applications with .NET; capable of using a range of operating systems; advanced Java features; develop interactive client-side web pages; and use popular coding languages, frameworks and technologies like Java, Javascript, PHP, C #, Python, C ++, SQL and .NET, he said.

“It would also be beneficial to obtain certifications in newer computer systems such as cybersecurity; Cloud computing; platform optimization; automating; deep learning; development of intuitive and big data applications.


5. ICT security specialist

The average salary of a cybersecurity specialist is 525,000 Rand per year, while the average salary is between 373,000 Rand and 660,000 Rand.

With the increasing increase in cybercrime, every ICT security specialist needs a range of skills to ensure their business is safe from attack, Mabitsela said.

Beyond basic networking and security skills, the following are worth adding to your resume: incident detection and response; Safety management frameworks; now more than one of these common operating systems and their vulnerabilities iOS, Microsoft Windows and Linux; understand the different network infrastructures; Data confidentiality; Data analysis; Network monitoring systems like Splunk, Solarwinds and Nagios; as well as general skills such as problem solving; teamwork and skills.


6. Business analyst

The average salary for a business analyst is R550,000 per year in Johannesburg, but can go much higher, depending on experience.

  • GP R45 277 to R58 545 pm
  • WC R40 498 to R53 365

“As a business analyst it is important to stay abreast of industry developments and to be able to analyze the capabilities of the myriad of tools available.

“From a technical point of view depending on your current certifications, it is worth updating these skills in 2021: Data Analysis; business process models; SQL server; Microsoft Visio; Test cases; Test plans; UAT; Data storage ; JAD; Application development; User acceptance; UML; The Web; Activity diagrams; QA, PME and many more, ”said Mabitsela.

You also want to add soft skills like research, negotiation, communication, financial planning, and decision making to your resume if you haven’t already, he added.

“These specialized skills will help you develop your career and set you apart from the competition, without forgetting to secure your employability for the future. Take charge of your future and talk to your employer about how you can close the digital skills gap in your organization.


Read: 30 Of The Most Popular Skills That Will Help You Find A Job In The Next Five Years


Source link

]]>
https://seasonsubmit.com/these-are-the-6-most-in-demand-tech-jobs-that-south-african-companies-are-struggling-to-recruit/feed/ 0
Parents and students in limbo as NYC procrastinates over high school admissions https://seasonsubmit.com/parents-and-students-in-limbo-as-nyc-procrastinates-over-high-school-admissions/ https://seasonsubmit.com/parents-and-students-in-limbo-as-nyc-procrastinates-over-high-school-admissions/#respond Sat, 16 Oct 2021 18:11:00 +0000 https://seasonsubmit.com/parents-and-students-in-limbo-as-nyc-procrastinates-over-high-school-admissions/ Frustrated parents slam the mayor of Blasio and the city’s education ministry as nervous eighth-graders agonize over this year’s shattered high school selection process – as the administration drags on feet, for the second year in a row, on announcing the admission rules for prospective first year students. “Neglect is not the right word. Cruel […]]]>

Frustrated parents slam the mayor of Blasio and the city’s education ministry as nervous eighth-graders agonize over this year’s shattered high school selection process – as the administration drags on feet, for the second year in a row, on announcing the admission rules for prospective first year students.

“Neglect is not the right word. Cruel is the right word, ”said Alina Adams, a mother of three who runs the NYC School Secrets website. “They are 13 and 14 year old children, and they absolutely torture them.”

“I’m very worried about this,” said Morgan LaBella, an eighth-grader at Christa McAuliffe School IS 187 in Borough Park, Brooklyn.

In the past, students were given a thick phone book the size of a telephone book in June of grade seven, as a guide to the city’s more than 400 public high schools and 700 separate special interest programs. In September and October, eighth-graders could attend several high school fairs and open houses to choose up to 12 schools to include on their applications.

The selection requirements – which the high school says may include grades, auditions, essays or special tests – were made public months before the application deadline in early December.

Vito LaBella with his daughter, Morgan, an eighth grade student at IS 187 in Bay Ridge, Brooklyn.

But the coronavirus pandemic turned all of that upside down in 2020 – and despite the end of distance learning and students returning to class, the application system remains in turmoil.

“De Blasio is a lame duck who can now make all the changes he never dared to make when he ran for office,” Adams accused. “Now he’s dirty the earth. “

High school fairs never took place this fall, schools did not hold in-person tours for prospective students, and the high school directory was replaced by a hard-to-navigate online portal that requires families to check out each school’s website for information on programs and admission requirements.

“It’s incompetence bordering on meanness,” said Maud Maron, a Manhattan city council candidate whose eighth-grade daughter attends MS 255, she added.

More importantly, the city has yet to say whether high schools can use their old methods of selection – which have woken up critics called a form of segregation – to choose students.

It left schools and families in the dark. One school canceled a scheduled high school information session this week “due to lack of complete information from the DOE,” they told parents in an email.

Meanwhile, crippled high schools have no admissions rubrics to give prospective students – and families have to obsessively search their target school’s websites for news.

“It’s daily, monitoring, checking,” said Jessica Chiu of Harlem, whose daughter Leah is in eighth grade. “I am very proactive.

Adding to the confusion, the DOE has eliminated based on geography high school admissions policies this year in the name of fairness.

This will make it harder than ever to get admission to top-ranked schools, previously reserved for district or borough residents, like Eleanor Roosevelt in Manhattan and Millennium in Brooklyn – and apparently put an end to zoned high schools that guarantee a place for students. children who live nearby.

“They’re pretty vague about removing zoned high schools, which would have huge ramifications, especially for families in Queens and Staten Island,” said Maurice Frumkin, a former DOE official and consultant who runs NYC Admissions Solutions. . “There are a lot of families who have moved into these neighborhoods just to go to these coveted schools. “

They include the already overcrowded Bayside, Cardozo and Francis Lewis.

Jessica chiu
Jessica Chiu is frustrated with the city’s mid-air high school selection process.
Lea Chiu
Jessica Chiu’s daughter, Leah, is in eighth grade.

“Now you have kids all over town applying,” Maron said. “It’s basically a lottery.

The DOE announced on Wednesday – five months later than usual – that the SHSAT, the entrance test for eight specialized high schools, will be handed out to eighth-graders in DOE middle schools on December 2 and to students in private and charter on December 5. .

But students still do not have an application date for non-special schools in the system – nor do they know when they will receive an admission decision.

The DOE website on Friday assured eighth-grade families that “welcome letters” with their much sought-after application instructions “are in the mail.”

“We are weeks into the new school year and look forward to continuing to share more information about the upcoming admissions process with families soon,” DOE spokeswoman Sarah Casanovas said.

“Following the unprecedented impact of the global pandemic, we have made common sense and fair changes to our admissions policies,” she added.

Worried parents take no chances.

“Were [also] pass the Catholic high school tests, ”said Vito LaBella, Morgan’s father, whose older children attended Brooklyn Tech. “We wouldn’t have done this normally. We just need to have all the options open.


Source link

]]>
https://seasonsubmit.com/parents-and-students-in-limbo-as-nyc-procrastinates-over-high-school-admissions/feed/ 0
How the rollout of WhatsApps’ new corporate directory can simply undo privacy features as we know them https://seasonsubmit.com/how-the-rollout-of-whatsapps-new-corporate-directory-can-simply-undo-privacy-features-as-we-know-them/ https://seasonsubmit.com/how-the-rollout-of-whatsapps-new-corporate-directory-can-simply-undo-privacy-features-as-we-know-them/#respond Thu, 14 Oct 2021 09:02:18 +0000 https://seasonsubmit.com/how-the-rollout-of-whatsapps-new-corporate-directory-can-simply-undo-privacy-features-as-we-know-them/ At the time of this writing, India has over 622 million active internet users, nearly half of whom reside in rural areas. In fact, with an annual growth of 35% in 2018, rural India has surpassed the rate of smartphone and internet adoption compared to its brighter urban counterpart. On this basis, and the fact […]]]>

At the time of this writing, India has over 622 million active internet users, nearly half of whom reside in rural areas. In fact, with an annual growth of 35% in 2018, rural India has surpassed the rate of smartphone and internet adoption compared to its brighter urban counterpart. On this basis, and the fact that the prices of data plans have fallen steadily since 2013, some experts estimate that the number of active Internet users per month will increase to more than 900 million by 2025. This represents 900 million people who depend on it. mostly from the internet to communicate with each other, access content for entertainment and share their thoughts on social media. This brings us to an app that for many has become synonymous with everyday communications and entertainment – WhatsApp.

Launched in 2010, WhatsApp is among the most popular apps in India, with the country being its largest market. While the app has over 5 billion downloads worldwide, it was set to hit over 500 million downloads in India in January 2021. This despite controversy over its privacy policies. Since then, the app has launched end-to-end encryption, new privacy features that let you hide your information from specific contacts, and an aggressive advertising campaign aimed at reminding users that their data is safe.

So what’s at stake here?

In a recent report from Wabetainfo, it was revealed that WhatsApp is testing its brand new business directory feature, which has already been deployed in beta in Sao Paulo, Brazil. This feature works the same as the old-school (or not-so-old) yellow pages – you can find companies that offer a range of services near you. While this can be great news for customers looking for services or products, it may void privacy features as we currently know them.

Let’s break down a scenario

Let’s say you’re new to town and need to find out more about the service providers near you. You allow WhatsApp to access your location – harmless enough, right? The app, after all, needs to know where you are to tell you what’s near you. You can now use the app to connect with businesses near you, send messages directly to suppliers, and check for updates on deliveries. If you’ve set up your UPI account on WhatsApp, you can even pay vendors directly through the app. Super practical.

But what happens when local vendors start competing for your attention? They post targeted ads on Facebook that link to WhatsApp, or they create ads that run on Facebook through the WhatsApp interface itself. If they wait a few months, they will also be able to serve ads on WhatsApp through the Status feature (which has a swipe feature similar to Instagram stories). These status announcements will serve the same way as targeted announcements. This is where the breach of privacy can begin.

Let's break down a scenario

What are targeted ads and how do they work?

Simply put, targeted ads are created based on your demographics, online behaviors, and shopping habits to expose you to products and services you might like. When a targeted ad is created, advertisers enter data related to your age, ability to buy, location, previous purchases, values, and more. Platforms like Facebook then cross-reference this data with user data to ensure that the ads are served to the right people. Inherently, this requires some breach of privacy (which legally can sometimes be a gray area depending on privacy policies and app permissions).

What does this have to do with WhatsApp’s corporate directory feature?

Online directories derive their income from two main sources. The first is to ask a vendor to list in the directory and pay a monthly fee, and the second is to sell ad space or the promise of more exposure to vendors who have already signed up. The first represents a finite earning capacity, while the second can be unlimited. This is what makes ad revenue so lucrative and ultimately a priority for such platforms. However, in order to promise exposure and deliver the same, platforms like WhatsApp Business Directory will need to access user data to show them the right ads.

The rapid penetration of smartphones and the internet in the country has led to an equally rapid digitalization of businesses. As the IT industry represents billions of dollars in potential revenue, almost all businesses are expected to earn revenue by integrating digital commerce into their business model, whether it’s selling online through a website or simply chatting with customers on WhatsApp.

According to the MGI Digital India report, we are going to see new economic sectors such as agriculture, logistics, jobs and skills, and education digitize rapidly, creating not only new jobs but also new businesses to explore. for consumers. Ultimately, this will lead to fierce competition within the digital stratosphere, with a heavy reliance on targeted ads and a large budget to buy big data.

What does this have to do with WhatsApp's corporate directory feature?

So where does the average consumer fit?

As mentioned earlier, the widespread Internet adoption in India is currently being driven by the rural sectors, with new smartphones and data plans being purchased at a higher volume in lower income states. Internet consumption patterns in these low-income states mirror patterns seen in urban areas – most people seek entertainment, communication, and social media when using the Internet. In addition, 90% of rural users with Internet access are also daily users (in urban areas the number is 94% – a tiny gap).

Most brands have saturated Tier 1 markets and are looking to enter Tier 2 and Tier 3 markets to improve reach, expand customer base, and increase revenue. As a result, data on rural customers is much more valuable today than data on urban customers. It is also in short supply. This creates the perfect environment for tech companies like WhatsApp not only to grow their user base, but also to access valuable data that can be leveraged by others.

Sounds familiar? Facebook has enabled Cambridge Analytica to collect data from 87 million users worldwide. The platform had to pay a hefty fine of $ 5 billion and reform its privacy policies after the scandal erupted in 2018. But we are still seeing targeted ads today and it is not a source of revenue that government officials are likely to remove it altogether.

So where does the average consumer fit?

Besides the ease of potentially leveraging data from rural populations where there is little or no awareness regarding consumer rights and data privacy, we might even see the platform accessing children’s data, with more and more more kids owning smartphones these days. Recently, Apple and Google banned over 8 Lakh apps from the App Store and Play Store because they lacked privacy policies. Of these, the majority of applications were aimed at children up to 12 years old. It is fair to say that data on children are just as valuable because of their scarcity as data on the rural population. Both represent largely untapped markets for brands.

It is essential that governments look at the new WhatsApp Business Directory functionality and the possibility of serving advertisements through trained eyes on the horizon and not just at the end result. We can’t even begin to see the ripple effects of tech giants’ access to data. With the rise of AI and machine learning products and consumerism becoming the norm, we are likely to be seen as a collection of statistics rather than as individuals. This is where things get really dark.

Also Read: Whatsapp Expands In Business Directory Market With Latest Offer

Key words:

WhatsApp
whatsapp update
Whatsapp news
whatsapp privacy
whatsapp policy
WhatsApp terms
Whatsapps new business directory


Source link

]]>
https://seasonsubmit.com/how-the-rollout-of-whatsapps-new-corporate-directory-can-simply-undo-privacy-features-as-we-know-them/feed/ 0
Why bottleneck analysis is essential in Active Directory security https://seasonsubmit.com/why-bottleneck-analysis-is-essential-in-active-directory-security/ https://seasonsubmit.com/why-bottleneck-analysis-is-essential-in-active-directory-security/#respond Tue, 12 Oct 2021 17:00:31 +0000 https://seasonsubmit.com/why-bottleneck-analysis-is-essential-in-active-directory-security/ Attackers who wish to steal data, deploy ransomware, or conduct espionage activities must go through a series of stages, from initial access to establishing persistence and lateral movement to exfiltration of data. Abuse of identity attack paths in Microsoft Active Directory (AD) is a popular method for attackers to accomplish many of these steps, including […]]]>

Attackers who wish to steal data, deploy ransomware, or conduct espionage activities must go through a series of stages, from initial access to establishing persistence and lateral movement to exfiltration of data. Abuse of identity attack paths in Microsoft Active Directory (AD) is a popular method for attackers to accomplish many of these steps, including persistence, escalation of privilege, defensive evasion, access to credentials, discovery and lateral movement.

But securing Active Directory is difficult, especially at the enterprise level, because AD environments are so large that they provide attackers with a large number of potential avenues to their goals. Based on my work as a penetration tester and red teamer, I think one of the most practical ways to secure AD is to map and prioritize the “choke points” through which a large number of paths attack must pass. Defensive teams must first focus on these high-value choke points to ensure their most critical assets are protected, before moving on to managing other avenues of attack in the environment.

Here’s why I think it’s a useful approach.

Attackers use attack paths because they are easy to use and difficult to detect. Attack paths are created by poor user behavior, such as domain admins interactively logging into desktops, and configuration errors in AD, such as giving the domain user group “full control. »From the domain manager (yes, we saw that!). Unlike abuse of a software vulnerability, abuse of an attack path often appears to be normal user behavior for defenders (such as resetting user passwords or using tools to run privileged commands on remote systems). Since almost all Fortune 1000s use AD, attackers can use the same techniques against multiple targets with virtually guaranteed success.

The average business will have tens or hundreds of thousands of users and millions or even billions of attack paths that are constantly changing as new users are added and new attack techniques are developed – far too many. for defenders to secure. Removing a single attack path accomplishes very little because there is always an alternate route. Imagine someone driving from Los Angeles to Manhattan – avoiding a specific city or specific section of the freeway won’t stop them from getting there.

The size of most corporate AD environments means defenders are typically overwhelmed if they try to secure them. There are tools that generate configuration error lists in AD, but these tools typically produce hundreds or even thousands of “critical” configuration errors. A busy AD admin or identity and access management team doesn’t have time to work on all of this, and in my experience most won’t even try.

Focusing on bottlenecks addresses this problem by identifying attack paths and configuration errors that will have the greatest impact on the organization’s overall security posture if addressed. To do this, the team must think like a striker. First, identify the priority targets in an environment – the systems that most attackers will want to access. This should include zero-level assets such as domain controllers and other high-value systems unique to that company. Then map the AD environment to determine how the attack paths reach these high-value targets.

There are always bottlenecks – users or systems through which most or all attack paths pass. on the way to those high-value targets. Imagine someone driving from LA to Manhattan again. There are only a few tunnels and bridges leading to Manhattan Island, so whichever route the driver takes, eventually he has to go through one of them. In AD, these bottlenecks are often accounts or groups with direct or indirect administrative control of Active Directory.

A prioritized list of attack paths and misconfigurations is much less intimidating for AD administrators to deal with and knowing how many attack paths go through a choke point can help justify remedial action with a CIO. reluctant. Going through this mapping process also helps security teams measure their overall AD exposure and quantify how their actions will reduce it, which helps engage other IT managers in the changes. Overall, the bottleneck point approach enables security and AD teams to improve AD security more effectively with fewer changes and reduced overall risk.

Free and open source tools Bloodhound (of which I am co-creator) and PingCastle can aid both mapping and AD investigation. AD security is starting to receive more attention in the industry, and I expect more development and tools to emerge in the coming months. Overall, stopping attack paths is a big business-level challenge due to the size and complexity of AD environments, but focusing on high-value targets and bottlenecks can reduce this complexity to a manageable level.


Source link

]]>
https://seasonsubmit.com/why-bottleneck-analysis-is-essential-in-active-directory-security/feed/ 0
POGO pair fall under Philippine regulator https://seasonsubmit.com/pogo-pair-fall-under-philippine-regulator/ https://seasonsubmit.com/pogo-pair-fall-under-philippine-regulator/#respond Mon, 11 Oct 2021 16:04:33 +0000 https://seasonsubmit.com/pogo-pair-fall-under-philippine-regulator/ In the Philippines and two licensed Philippine Offshore Gaming Operator (POGO) companies are said to be in serious difficulty after failing to adequately cooperate with official anti-money laundering compliance checks. According to a report from Inside Asian Gaming, the Asian Nation’s Anti-Money Laundering Council (AMLC) used an official notice to detail that Inner Strong Limited […]]]>

In the Philippines and two licensed Philippine Offshore Gaming Operator (POGO) companies are said to be in serious difficulty after failing to adequately cooperate with official anti-money laundering compliance checks.

According to a report from Inside Asian Gaming, the Asian Nation’s Anti-Money Laundering Council (AMLC) used an official notice to detail that Inner Strong Limited and MG Universal Link Limited had refused to conduct the required assessments of their anti-money laundering protocols and are now at risk of having their licenses officially revoked by the regulator of the Philippine Amusement and Gaming Corporation (PAGCor).

Care advice:

The three members AMLC reportedly stated that he had now also decided to “revoke the registration of these covered persons‘used by the two iGaming operators who had’refused to cooperate” of its investigations and advises the public to exercise extreme caution when it comes to one or the other Very limited interior Where MG Universal Link Limited.

Revision Required:

The Philippines reportedly started licensing companies to offer iGaming services to foreign players in 2016 following the temporary shutdown of the former operator PhilWeb Company and has so far issued 36 POGO certifications. Source explained that the recent adoption of amendments to the Anti-money laundering law of 2001 placed these companies under the supervision of the AMLC and obliged them perform compliance checks within 24 hours of receiving a formal request government watchdog.

Previous alarm:

The AMLC reportedly used an official risk assessment from 2020 to state that companies approved under the POGO program had often submitted ‘low level of awareness‘in money laundering and other fraudulent activities such as the potential financing of terrorism. This would have happened about 15 months before the Philippines became one of the four nations alongside Haiti, Malta and South sudan be placed on a “gray list” by the Financial action group due to weaknesses identified in its anti-money laundering rules.

Increased surveillance:

However, the administration of the Philippine president Rodrigo Duterte have gradually strengthened the supervision of companies holding a POGO license in recent times and signed a law last month which now obliges these companies to pay 5% of their gross monthly gambling revenues to tax. This was part of the country’s plan to quickly emerge from the financial turmoil of the coronavirus pandemic and could allegedly allow the state to benefit to the tune of up to $ 935 million every year.


igamingpagcorphilippine amusement and gaming corporationAnti-money laundering adviceamlcanti-money launderingactrodrigo dutertegrfinancial action action groupphilweb corporationpogophilippina games operator offshorecoronavirusinner strong limitedmg limited universal link


Source link

]]>
https://seasonsubmit.com/pogo-pair-fall-under-philippine-regulator/feed/ 0
WebTech Monthly News – September 2021 https://seasonsubmit.com/webtech-monthly-news-september-2021/ https://seasonsubmit.com/webtech-monthly-news-september-2021/#respond Fri, 08 Oct 2021 16:39:49 +0000 https://seasonsubmit.com/webtech-monthly-news-september-2021/ October Drupal training sessions available New to editing a Drupal site? Or are you a current Drupal user who wants to improve your editing game? There are Drupal training sessions in September still open for registrations: NEW. We now offer Training of the Drupal team. Need personalized Drupal training for you and at least one […]]]>

October Drupal training sessions available

New to editing a Drupal site? Or are you a current Drupal user who wants to improve your editing game? There are Drupal training sessions in September still open for registrations:

NEW. We now offer Training of the Drupal team. Need personalized Drupal training for you and at least one other team member that focuses on the specific elements that apply to your department’s website? Send an email to web.help@wwu.edu to schedule a time and date.

Launch of the site in September

  • Counseling and Wellness Center (CWC) linked to the former Prevention and Wellness Services (PWS) website. If your department’s website contains links to the PWS, please check them to make sure they have been correctly updated to the corresponding CWC page.

Drupal updates

New modules

There are no new add-ons for this month’s release, check back for new features next month.

Drupal theme updates

WordPress: CampusPress updates

Tips for building sites

Update your department profile

Many departmental websites at Western use the directory listing to introduce their faculty and staff within a department. Each of these user profiles can be customized to meet individual and departmental needs. If your department uses a directory on the website to list faculty and staff, you probably have a user profile. What you might not know is that you have the editing powers to update / add information to make your profile more complete.

You don’t need to ask your manager to update quarterly office hours or change office locations. As a user, you can update all profile information yourself. Check Out These 6 Easy Steps instructions for updating your directory profile on your department’s Drupal site.

While there may be fields in the instructions that may or may not apply to you or your service, the more information you provide, the more attractive your published profile will be. Questions? Do not hesitate to contact web.help@wwu.edu.

Click on the heart for favorite

Friday October 8, 2021 – 9:30 a.m.


Source link

]]>
https://seasonsubmit.com/webtech-monthly-news-september-2021/feed/ 0
Microsoft has pledged to actively seek the right to repair https://seasonsubmit.com/microsoft-has-pledged-to-actively-seek-the-right-to-repair/ https://seasonsubmit.com/microsoft-has-pledged-to-actively-seek-the-right-to-repair/#respond Thu, 07 Oct 2021 22:33:38 +0000 https://seasonsubmit.com/microsoft-has-pledged-to-actively-seek-the-right-to-repair/ Microsoft has agreed that an independent third party study the potential impact of making it easier to repair their devices and make changes based on those results by the end of 2022, according to Grist and shareholder advocacy group As You Sow. The deal was made after As You Sow filed a shareholder resolution ask […]]]>

Microsoft has agreed that an independent third party study the potential impact of making it easier to repair their devices and make changes based on those results by the end of 2022, according to Grist and shareholder advocacy group As You Sow. The deal was made after As You Sow filed a shareholder resolution ask Microsoft to examine the potential impact this could have in making it easier for consumers to repair their devices. As You Sow withdrew its resolution in return for Microsoft to conduct the study and make parts and documentation more accessible to repair shops that are not official Microsoft service providers based on the results of the study.

As You Sow calls Microsoft’s commitment “An encouraging step”, but it should be kept in perspective that it is only a step – what Microsoft actually did today is have a study done and then use it to “guide” their “product design and plans to expand device repair options “, according to a statement sent by email to The edge by a Microsoft spokesperson. The fact that the company is at least willing to do it is encouraging and is more than what other tech giants have done when it comes to repair rights. But without details, it’s hard to say what impact this will have.

It’s also unclear whether the public will end up getting these details or not. According to GristMicrosoft will have to publish a summary of the study by May 2022, but not the study itself (citing concerns about trade secrets). That said, it should be easy to tell if Microsoft is keeping its word on this – it will either become easier to have your Surface Pro or Xbox fixed at a third-party store, or it won’t.

Grist also cites iFixit’s US Policy Directory, which refers to Microsoft’s lobbying efforts. According to the US Public Interest Research Group (or US PIRG), Microsoft has been involved in lobbying against right to repair laws in Colorado and Washington. If this kind of behavior persists, it would be difficult to provide Microsoft accessories for any positive work it does for the right to repair.

Despite the caveats, supporters of the right to repair see this deal as a good thing. IFixit CEO Kyle Wiens called it a “significant and historic movement” on Twitter and, in an e-mail to The edge, said it was “not just talk,” citing the improvements the Surface Laptop has made in repairability over the years. PRIG’s Right to Repair Campaign Director also said The edge that this was “the real deal” and cited it as evidence as Microsoft’s “changing tone” on the right to repair. If it ends up making significant changes, Microsoft could find itself in the lead when it comes to reducing the impact of its products on e-waste and emissions – President Joe Biden and the FTC have worked to crack down on companies that manufacture illegally make it more difficult for consumers to have their devices repaired.



Source link

]]>
https://seasonsubmit.com/microsoft-has-pledged-to-actively-seek-the-right-to-repair/feed/ 0
WADA must declare a national mental health emergency https://seasonsubmit.com/wada-must-declare-a-national-mental-health-emergency/ https://seasonsubmit.com/wada-must-declare-a-national-mental-health-emergency/#respond Wed, 06 Oct 2021 08:39:37 +0000 https://seasonsubmit.com/wada-must-declare-a-national-mental-health-emergency/ AAs the pandemic continues to disrupt lives in the United States, a staggering number of Americans are turning to their primary care physicians for help with sometimes overwhelming mental health issues. Yet primary care physicians like us have nowhere to turn when it comes to finding mental health care providers for them, and our patients […]]]>

AAs the pandemic continues to disrupt lives in the United States, a staggering number of Americans are turning to their primary care physicians for help with sometimes overwhelming mental health issues. Yet primary care physicians like us have nowhere to turn when it comes to finding mental health care providers for them, and our patients often suffer without the specialized care they need.

It’s time for the American Medical Association to take decisive action and declare a national mental health emergency.

Over 40% of Americans say symptoms of anxiety or depression, and emergency rooms are inundated with patients in psychiatric crises. Left untreated, these problems can have devastating consequences. In 2020, an estimate 44,800 Americans lost their lives by suicide; in children aged 10 to 14, suicide is the second cause of death.

advertising

Finding mental health care providers for patients is a difficult climb, in part because there is no centralized process for it. Timely mental health services are surprisingly hard to come by, even in Massachusetts, where we live and work, which has the most psychologists per capita. Waiting lists for therapists can be longer than six months for adults, and even longer for children.

Knowing that our patients need urgent care, we refer them to an online magazine, Psychology today, which has a directory of therapists in private practice – although the information is often out of date – as well as paid advertisements.

advertising

Patients also search insurance directories, which can be so littered with inaccuracies that they have been called ghost networks. This forces patients to search, one phone call at a time, for an available and affordable provider who calls back – a process known to be plagued by racial and class prejudice.

Our patients’ experiences reflect a national survey by the National Alliance Against Mental Illness. It found that 55% of participants contacted a psychiatrist only to learn that the doctor was not accepting new patients, and 33% could not find a single mental health care provider who accepted their insurance. Low repayment rates prevent network therapists from making a decent living, leading many mental health providers to choose private practices, where high fees put services out of reach for many.

Given these barriers to care, it is no surprise that NAMI estimated in 2017 that “nearly half of the 60 million adults and children living with mental health problems in the United States are not receiving treatment” – and that was before the pandemic, which has increased mental health needs.

WADA has declared emergencies in the past. In 2016, he declared armed violence “a public health crisisBased on about 30,000 gunshot deaths each year. In 2020, WADA recognized that racism is a “threat to public health.

Recognizing the growing need for psychiatric care in May 2021, the CEO of Children’s Hospital Colorado said a state of emergency for children’s mental health after emergency room visits for anxiety and depression increased 72% in one year. At the time, the hospital was experiencing a shortage of psychiatric inpatient beds and the risk of suicide was the main reason for emergency room visits.

Do public emergency declarations make a difference? Measuring this is difficult. But by declaring a national mental health emergency, WADA would highlight this urgent problem that is exploding in the shadow of the pandemic.

Other groups of health professionals wanted WADA to take this step. In May, delegates from the American Academy of Pediatrics and the American Psychological Association invited WADA to tackle the issue collaboratively, by proposing a 10-page thesis of policy and funding changes to improve access to mental health care. While about 30 health groups approved and engaged in the work, WADA refused, only agreeing to “encourage efforts”To increase access for children. The association did not mention the crisis affecting adults or call the situation what it is: a medical emergency.

By declaring a mental health emergency, WADA could galvanize health administrators and spur the innovation needed to improve the existing mental health system. When Covid-19 was labeled a pandemic, America’s healthcare infrastructure quickly adapted to handle the deluge of infections. The leaders mobilized resources with agility and creativity. They have redeployed staff, built overflowing field hospitals and intensive care units, and postponed routine surgeries and care to conserve resources and minimize hospital transmission of Covid-19. With the right framing and a sense of urgency, similar things can happen for the mental health care system.

To be clear, this is all WADA’s path: in addition to the devastating toll of suicides and overdoses, untreated mental illnesses worsens heart results, increases mortality due to Covid-19, and shortens the lifespan. Adult mental illness also directly affects the health of children, which poor health outcomes across generations.

Some solutions to the mental health care crisis can be relatively straightforward. A centralized website where patients could find therapists who accepted their insurance – which private citizens did to improve access to Covid-19 vaccines – would help.

But a large-scale boost is needed. WADA has the power and the scope to initiate these changes, if it calls it the way doctors and patients across the country see it: It’s an emergency, period.

Susan Hata is a pediatrician and intern at Massachusetts General Hospital, where Thalia Krakower is an intern. Both are Public Voices Fellows from the OpEd project.


Source link

]]>
https://seasonsubmit.com/wada-must-declare-a-national-mental-health-emergency/feed/ 0
New Yubico security keys let you use fingerprints instead of passwords https://seasonsubmit.com/new-yubico-security-keys-let-you-use-fingerprints-instead-of-passwords/ https://seasonsubmit.com/new-yubico-security-keys-let-you-use-fingerprints-instead-of-passwords/#respond Tue, 05 Oct 2021 14:55:37 +0000 https://seasonsubmit.com/new-yubico-security-keys-let-you-use-fingerprints-instead-of-passwords/ Enlarge / You can use the keys to bypass passwords or as a second form of authentication. Yubico Security experts have long hated passwords. They are hackable, forgettable, and sometimes guessable (looking at you, password1). As companies like Microsoft and Google embrace passwordless logins, Yubico believes he has the key to keeping it simple. The […]]]>

Enlarge / You can use the keys to bypass passwords or as a second form of authentication.

Yubico

Security experts have long hated passwords. They are hackable, forgettable, and sometimes guessable (looking at you, password1). As companies like Microsoft and Google embrace passwordless logins, Yubico believes he has the key to keeping it simple. The YubiKey Bio series announced today is the company’s first hardware security key to offer fingerprint logins.

by Yubico Organic series introduces biometric authentication to the line of hardware security key manufacturers. The new keys support the latest FIDO2 / WebAuthn and U2Fopen authentication standards to which Yubico contributes.

Fits your USB-C (left) or USB-A (right) port.

Fits your USB-C (left) or USB-A (right) port.

Keys target desktops, which are typically stationary, making it easy to leave the key in a USB Type-A or USB-C port, depending on which model you choose. Each key has a built-in fingerprint reader, so you can log in with the touch of a finger instead of having to remember your password. The key could also serve as a form of two-factor authentication.

The Bio series follows last month’s announcement that you can now go passwordless with Microsoft accounts. In May, Google shared its plans to eradicate passwords, also, and noted today that it will make two-factor authentication mandatory on an additional 150 million accounts this year.

The Bio series keys have a three-chip architecture, where the fingerprint is stored separately and securely, which Yubico says helps better protect against physical attacks.

Compatible with Windows, macOS, ChromeOS and Linux.
Enlarge / Compatible with Windows, macOS, ChromeOS and Linux.

YubiKey’s new keys can represent a single root of trust through secure hardware on various browsers, applications, desktops and even operating systems, Yubico explains. Keys work with operating systems that support WebAuthn, including Windows, macOS, Linux, and ChromeOS, and Chromium-based browsers, including Google Chrome and Microsoft Edge. Yubico also promises that the keys will immediately work with a variety of enterprise platforms, including Microsoft 365, Microsoft Azure Directory, Citrix Workspace, Okta, and Duo. But note that these keys do not support near field communication for logging in by pressing a device key. For that, it would be necessary to turn to YubiKey Series 5.

A loop on top of each YubiKey Bio makes it a keychain, so you never have to leave the house without it. In addition, the injection molded frame is said to be “crush resistant” and “water resistant”.

The keys must be able to handle a little water.
Enlarge / The keys must be able to handle a little water.

These keys have no driver, battery, or software, but you can add or remove fingerprints on the hardware through a Yubico app designed for Windows, macOS, and Linux.

The USB-C version of YubiKey Bio is currently available for $ 85, while the USB-A version is $ 80.

Listing image by Yubico


Source link

]]>
https://seasonsubmit.com/new-yubico-security-keys-let-you-use-fingerprints-instead-of-passwords/feed/ 0