Monday, 29 April 2024

Elliott Abrams and the Contradictions of U.S. Human-Rights Policy

The longtime State Department official and Iran-Contra player on Israel’s war in Gaza and his own record in Latin America.


http://dlvr.it/T6BBBt

Daily Cartoon: Monday, April 29th

Achoo!


http://dlvr.it/T69qLV

Can Turning Office Towers Into Apartments Save Downtowns?

Nathan Berman has helped rescue Manhattan’s financial district from a “doom loop” by carving attractive living spaces from hulking buildings that once housed fields of cubicles.


http://dlvr.it/T690tp

A Miami Heat Rookie Gets Checkmated

Jaime Jaquez, Jr., a chess enthusiast, arranged a meet-up with the thirteen-year-old prodigy Tanitoluwa Adewumi for some tips and a game of H-O-R-S-E.


http://dlvr.it/T690b7

Academic Freedom Under Fire

Politicians despise it. Administrators aren’t defending it. But it made our universities great—and we’ll miss it when it’s gone.


http://dlvr.it/T6909X

Sunday, 28 April 2024

Are We Living Through a Bagel Renaissance?

A new wave of shops has made its mark across the country—and shaken New York’s bagel scene out of complacency.


http://dlvr.it/T6717R

The Scholar of Comedy

Jerry Seinfeld on how to write jokes, the ending of “Curb Your Enthusiasm,” and the world-historical struggle to invent the Pop-Tart.


http://dlvr.it/T670w1

Saturday, 27 April 2024

How to Eat a Rattlesnake

In my native Oklahoma, snake meat was a masculine trophy, edible proof that you were willing to tangle with death.


http://dlvr.it/T659js

What Cartoonists Saw in Isolation: A Portrait of the Pandemic

In the spring of 2020, artists captured silliness, sexiness, despondence, and hope. What does quarantine look like when viewed from the other side?


http://dlvr.it/T659WG

Friday, 26 April 2024

“The Feeling That the Time for Doing Something Has Passed” Is a Deceptively Plain Masterpiece

Joanna Arnow’s new film mines the comic potential of distance and framing, in an examination of degradations large and small.


http://dlvr.it/T64HCT

The Supreme Court Appears Poised to Protect the Presidency—and Donald Trump

In arguments about Presidential immunity, the conservative Justices, who avoided mentioning Trump, made clear that they are less concerned with holding him accountable than with shielding former Presidents from retribution.


http://dlvr.it/T641pD

“Stereophonic” and “Cabaret” Turn Up the Volume on Broadway

David Adjmi’s cult-hit play features seventies-inspired rock songs by Will Butler, while Eddie Redmayne presides over a demonic version of the Kit Kat Club.


http://dlvr.it/T63hVB

Teresita Fernández’s Shifting Sculptural Landscapes

Also: Kamasi Washington, “The Outsiders” reviewed, Bang on a Can’s Long Play Festival, and more.


http://dlvr.it/T62pW7

Could “Mind the Game” Change the Way Sports Are Covered?

The podcast, co-hosted by J. J. Redick and LeBron James, combines analytical commentary with an insider’s perspective—and bypasses traditional media.


http://dlvr.it/T62p7b

Thursday, 25 April 2024

The Biden Administration’s Plan to Make American Homes More Efficient

New building codes from the Department of Housing and Urban Development are the latest addition to a long list of Earth Week environmental wins for the White House.


http://dlvr.it/T61gPg

What George Kelly’s Mistrial Says About How We See the Border

The Arizona rancher was accused of killing a migrant. A tragedy, and a possible murder, quickly became a political cause.


http://dlvr.it/T61PVw

Daily Cartoon: Thursday, April 25th

“I didn’t expect today to be Taylor Swift word cloudy.”


http://dlvr.it/T6142C

Wednesday, 24 April 2024

A Student Journalist Explains the Protests at Yale

The editor-in-chief and president of the Yale Daily News reports on the arrest of fellow-students on campus this week.


http://dlvr.it/T5zJmf

Donald Trump Is Being Ritually Humiliated in Court

At his criminal trial, the ex-President has to sit there while potential jurors, prosecutors, the judge, witnesses, and even his own lawyers talk about him as a defective, impossible person.


http://dlvr.it/T5z5Sr

The G.O.P.’s Election-Integrity Trap

Donald Trump has spent years arguing that mail-in voting is fraudulent and corrupt. Now the Republican National Committee, which sees mail-in voting as essential, must persuade his base to embrace it.


http://dlvr.it/T5yqwG

Daily Cartoon: Wednesday, April 24th

“Objection, Your Honor! The witness is using a Trump Bible!”


http://dlvr.it/T5yVTm

So You’re Locked Out of Your Two-Factor Authentication App. Don’t Panic.


Published 
Illustration of a person with a worried face holding a locked cellphone.
Illustration: Yann Bastard
Max Eddy

By Max Eddy for Wirecutter

Max Eddy is a writer who has covered privacy and security—including password managers, VPNs, security keys, and more—for over a decade.

It’s a nightmare scenario: You’ve protected all of your online accounts with two-factor authentication, just as we recommend, but then your phone is broken, lost, or stolen, and you’re locked out of everything. Past You’s effort to protect Future You has made Present You’s life a living hell.

Two-factor authentication (2FA) is supposed to keep attackers and scammers out of your online accounts, but what if something happens to your second factor? With a little planning, you can reduce that risk and still keep your accounts safe. Here we show you how, and we tell you what to do if you’ve already lost access to your account.

When you protect an account with two-factor authentication, the first factor is your password. The second is another factor that can verify your identity, such as:

  • something you know, like a password
  • something unique to you, like a fingerprint
  • something you have, like a hardware security key

Even if an attacker has your password, 2FA will protect your account because it’s less likely they’ll have the second factor needed to log in. This is especially important after years of data breaches have made it easier than ever to obtain log-in information. “Passwords are a tradeable commodity at this point,” said Iva Blazina Vukelja, vice president of product management at Duo, the company behind the Duo Mobile authenticator app. “[If] your account is protected by a password, it’s not really protected.”

Our pick

Duo Mobile is well designed and easy to use, and it can securely back up your information.

There are several ways to add a second factor to an account, and the most accessible option is using an authenticator app. Every 30 seconds, these apps generate unique codes that you enter, along with your password, when you log in. Security keys—dedicated physical devices that serve as an authenticator—are less widely supported, but they’re the most secure 2FA option. Some services send SMS codes to your phone, but we don’t recommend opting into that if you can choose another option, since attackers can intercept those messages.

A new technology, passkeys seek to replace passwords with digital credentials that have built-in 2FA. Passkeys grant access to online accounts the same way your password does, but they are stored on your device, locked behind a pin or biometric authorization (such as a fingerprint or facial recognition). Although passkeys aren’t yet widely supported, Apple, Google, and Microsoft are betting that they’ll be the future of authentication, and so they have added passkey support to their browsers and operating systems.

Protecting your accounts with 2FA is a good idea, but things can go awry. What happens if your phone dies and your authenticator app can’t generate codes? What if you lose your security key? Or what if your phone is stolen altogether? You won’t be able to access your accounts unless you find another way to log in—or use a site’s recovery tools. Planning ahead is the best way to ensure you don’t end up locked out of 2FA. “Just like any other situation in life, this is an ounce of prevention that’s worth a pound of cure,” said Derek Hanson, security-key-maker Yubico’s vice president of solutions architecture and alliances.

Every site and service takes a different approach to 2FA, with different backup options. Below we list the most common backup options. And we recommend that you set up one of these on your phone now to avoid headaches in the future.

Use backup codes whenever possible. Backup codes are a string of numbers and sometimes letters that you enter in order to regain control of your account. Most sites and services will give you the opportunity to generate backup codes when you enroll in 2FA, and the best sites actually require it.

Not every site uses backup codes the same way, however. Some backup codes are intended to be used in place of codes generated by authenticator apps. Other sites, like X (Twitter) and Google, have a dedicated interface for entering backup codes. When you log in to X, you’ll be given the option to use a second factor or enter a backup code. On Google, you have to click the “try another way” option when you’re logging in. And Apple offers a recovery key option to regain control of your Apple ID.

Apple also supports setting a trusted individual as a recovery contact. Once your trusted contact is enrolled, their iPhone can generate a six-digit backup code that should let you log in, even if you’re locked out of your Apple ID.

Backup codes are a great way to regain control of your account, but you need to store them securely. If you enter them into a password manager, make sure that your password manager is well secured with a long, complex, unique password and 2FA. If storing backup codes in a password manager feels like too much of a risk, you can also print them out or write them down at home. Duo’s Vukelja told us she keeps hers in a personal safe.

Use an authenticator app with a recovery function. Some 2FA authenticator apps let you back up the sites you entered into them; this allows you to restore your authenticator access on a new device, if your phone is no longer accessible or you’ve deleted the app. Each authenticator app handles backups a little differently. Our top pick, Duo Mobile, stores its backup in iCloud or Google Drive, depending on your platform, and it secures its backup with a special password you need to retrieve it. Google Authenticator, meanwhile, is attached to your Google Account and can sync accounts across devices.

Backing up an authenticator app comes with some security concerns. After all, you wouldn’t want an attacker stealing your backup to enter authentication codes. Make sure you’re using a service you trust and that the backup is encrypted, so only you can access it. If your backup is tied to another account, like Google Authenticator, make sure that account is secured with 2FA, with recovery options that will work without the authenticator app. A security key, passkey, or Google’s push notification verification are good choices.

Get a backup physical security key. Security keys are perhaps the most secure method for doing 2FA. But if you lose your key, it’s no good to you. Experts we’ve spoken with in the past recommend getting two keys and enrolling both, with one acting as a backup. Some security keys, like our top pick, the Yubico Security Key C NFC, are quite affordable (though less so when you need two of them).

Embrace redundancy, and use multiple 2FA options. Mixing different 2FA options for the same account means you’ll have more than one way to log in. Google, for example, supports security keys, authenticator apps, push notifications sent to a trusted device, and codes sent via voice call or text messages—though we recommend against using codes sent via voice or SMS.

The experts we spoke with cautioned that if you do turn on multiple MFA options, it creates more opportunities for an attacker. Be vigilant against phishing attempts, and try to use options that can’t be phished, like passkeys and security keys, if you can.

Use passkeys. Unlike other 2FA systems, passkeys can be synced between devices, making them easily accessible. You can also create multiple passkeys for a single account, giving you infinite spares. And a device with a passkey can be used to authenticate logging in on a device that doesn’t have a passkey. Hanson explained that they can make it much easier to recover, since “every device I carry—whether it’s my [security key], my phone, or my laptops—all of them potentially have the keys to my account.”

Having passkeys that sync between devices does mean that someone with those devices could access your passkeys. However, an attacker would also need your biometrics or PIN in order to use them, which greatly reduces that risk.

Although AppleGoogle, and Microsoft support passkeys, there are still limitations. Passkey syncing is currently limited by platform—Apple to Apple and Google to Google—and only a fraction of sites and services currently support passkeys.

Being locked out of your account is frightening, and it can feel like you have to fix it, right now. Resist this urge. Instead, take time to evaluate your situation and what tools you have available. “Your best bet is to gather all the resources that you have and hope that you’re actually not locked out,” Hanson said.

See if you’re still logged in to the locked account on a device. Start with phones and tablets, since these devices tend to stay logged in to apps and services for long periods. Then expand your search to laptops and desktops. And then expand it to older devices that you may have tucked away in a closet or a drawer.

If you find that you’re still logged in on a device, you may be able to remove the 2FA option you can no longer access or add a new one that you can. Keep in mind that making changes to your security settings will definitely require reauthorization—probably a password at minimum. So if you’ve also lost your password, you may be out of luck.

Some services that offer “family plans” allow other members to make changes to the plan or even re-authenticate people. If you’re locked out of a family plan, check with those people as well.

Check backups and alternative 2FA options. Once you’ve exhausted the devices and people that may be able to help, take a look at the options available for the specific type of 2FA that’s locked you out. If you can no longer access the codes in your authenticator app, check to see whether the app provides backup and restoration. If you’ve lost your security key, check to see whether you’ve got a backup key enrolled (you probably should). And then look to see what other MFA options are available and if you’ve enabled them.

Google and Apple accounts can use trusted devices to authenticate your accounts. When you’re logging in with your Apple ID, Apple may send a verification message to other devices where you’re already logged in, or the device itself can generate a code. Similarly, Google has the option to send push notifications to devices where you’re logged in with your Google account that will authorize a new login. If you’re locked out of one of these accounts, check your old devices. They may still be enrolled and might be able to authorize a new login.

When all else fails, use account-recovery tools. Once you’ve exhausted all of your options, it’s probably time to begin the account-recovery process. Each site handles this differently, so take a moment to read the support documentation about the process. For example, Apple’s documentation and Google’s documentation show very different steps. Depending on the site, this may take just a few minutes or much longer.

If you have to start working through the account-recovery process, be on guard for phishing attempts. Scammers know that desperation and urgency work to their advantage, so stick to the recovery mechanisms provided directly by the sites you have accounts with. If you contact customer service, be sure you do so using the tools provided by the site—such as a contact form or live chat.

Yubico’s Hanson told us three important things that you can do to be safer online, as well as to head off potential 2FA pitfalls.

Secure your most important devices and connected accounts. Many 2FA and account-recovery systems rely on having access to a trusted mobile device. So keeping your iPhone or Android safe also helps to protect all of your other accounts. To guard against attacks and theft, most modern phones have built-in protections that are tied to accounts registered with the manufacturer. Take the time to set up 2FA for these accounts (Apple ID and Google Account), and familiarize yourself with the available tools to track and secure lost devices (Find My for Apple and Find My Device for Google). If you have a Windows PC, be sure to do the same with your Microsoft account. Apple has also rolled out new security features, to prevent iPhone thieves from hijacking your Apple ID.

Secure your primary email accounts with 2FA and recovery options. Many sites and services use email sent to a trusted address as part of their recovery process, so you’ll want to make sure these accounts are secured with a strong password, 2FA, and a recovery or backup option of some kind.

Call your wireless carrier, and set a PIN to protect your phone’s plan. This will prevent attackers from porting your number, or “SIM jacking,” in order to intercept authentication codes sent via voice call or SMS message. We don’t recommend using either of these methods for 2FA, but many sites and services will default to phone contact as a means of authentication or account recovery.

Don’t let the risk of lockout scare you: 2FA is worth it. If an attacker is able to take over your account because you didn’t use 2FA, you’ll also be locked out and have no control over what the attacker does with that account. Along with using a password manager and new technology like passkeys, 2FA is the best way to keep your accounts secure and under your control. Just plan ahead—you never know when your phone will go missing.

This article was edited by Arthur Gies and Caitlin McGarry.

  1. Iva Blazina Vukelja, vice president of product management at Duo, video interview

  2. Derek Hanson, vice president of solutions architecture and alliances at Yubico, video interview

Meet your guide

Max Eddy

Max Eddy is a senior staff writer at Wirecutter specializing in security and privacy. He was previously lead security analyst at PC Magazine.

Why We Choose Not to Eat

Can the decision to forgo food be removed from the gendered realm of weight-loss culture?


http://dlvr.it/T5xfn0

Monday, 22 April 2024

Why You Can’t Get a Restaurant Reservation

How bots, mercenaries, and table scalpers have turned the restaurant reservation system inside out.


http://dlvr.it/T5rTFV

Jonathan Haidt on “The Anxious Generation”

The evidence implicating social-media apps, the social psychologist says, is not another moral panic over technology. “Actually, this time is different,” he insists. “Here’s why.”


http://dlvr.it/T5rSws

Taylor Swift’s “The Tortured Poets Department,” Reviewed

“The Tortured Poets Department” has moments of tenderness. But it suffers from being too long and too familiar.


http://dlvr.it/T5r4mt

Jonathan Haidt on the Plague of Anxiety Affecting Young People—Plus, Judi Dench

It’s not another moral panic, the social psychologist says: the evidence clearly implicates social-media apps for a decline in mental health. Plus, Judi Dench on a life in Shakespeare.


http://dlvr.it/T5r4Yt

East Palestine, After the Crash

More than a year after a train derailment and chemical fire in Ohio that made international news, residents contend with lingering sickness, uncertainty, and, for some, a desire to just move on.


http://dlvr.it/T5r4JH

Thursday, 18 April 2024

Kenya helicopter crash kills country's military chief


By Ian Wafula,BBC News security correspondent, Nairobi
AFP William Ruto (L) and Chief of Kenya Defence Forces General Francis Ogolla (R) look on while inspecting a guard of honour by members of the Kenya Defence Forces (KDF) during his official state visit to State House in Nairobi, on February 28, 2024.AFP
President Ruto is seen with the chief of the Kenya Defence Forces General Francis Ogolla in this photo on 28 February

Kenya's military chief, Gen Francis Omondi Ogolla, has died after a military helicopter crashed in the west of the country, the president has announced.

Gen Ogolla was in the helicopter alongside eleven other military personnel. Only two people survived.

In a news conference, President William Ruto said it was a "tragic moment".

He had earlier convened an urgent meeting of the country's security council.

Mr Ruto said the crash happened at 14:20 local time (12:20 BST). The Kenya Air Force has dispatched an air investigation team to establish the cause of the crash, the president said.

The helicopter came down in Elgeyo Marakwet county, some 400km (250 miles) north-west of the capital Nairobi. Rescue and recovery teams were dispatched to the site of the crash.

Gen Ogolla was appointed by Mr Ruto in April last year, after serving as the Commander of the Air Force and Deputy Chief of Defence Forces.

The nation will observe a three-day period of mourning, commencing on Friday 19 April. The flags in the Republic of Kenya and in Kenyan missions abroad will fly at half mast, Mr Ruto said. Nine others killed in the crash were senior military officers. The two survivors are in critical condition and undergoing treatment.

The officers had travelled to Kenya's North Rift region, which has been plagued by banditry.

They were on a mission to reopen some of the schools closed following bandit attacks. They had also visited military officers deployed to stabilise the region.

Additional reporting by Malu Cursino


Monday, 15 April 2024

Traveling in a Wheelchair Is Hard. But This Wheelchair Let Me Do a Fulbright in the Philippines

Two photos of the EZ Lite Cruiser with illustrated borders and a green background.
Illustration: Dana Davis; Photos: Olivia Asuncion, Marie Asuncion-Buhat

By Olivia Mae M. Asuncion for Wirecutter, Updated 

Olivia Mae M. Asuncion is an architect, design researcher, and a self-proclaimed ramp enthusiast.

I’m a lifelong power wheelchair user, so international travel has often been difficult for me. Unpaved sidewalks and rampless buildings, cars that won’t fit my 375-pound customized wheelchair, and inaccessible public transportation are just the start of what discourages me from venturing out into the world more.

That’s why I felt a nagging fear as I sat at the San Francisco airport in August 2022, about to embark on a nine-month Fulbright research fellowship to the Philippines—a country without comparable accessibility standards to those in the United States.

I’m an architect, and I’ve devoted much of my career to advocating for accessibility. My Fulbright research was focused on the accessibility of elementary schools. To do this, I needed to be able to travel nimbly—a task I knew would be incredibly challenging.

Yet one item that alleviated my fear sat neatly folded next to my mountain of luggage: my EZ Lite Cruiser, a lightweight travel power wheelchair.

This chair opened up countless opportunities in the following months, including allowing me to ride in nearly any car, get onto a motor boat, and visit small towns to immerse myself in local communities.

 

This travel wheelchair is light enough to lift up stairs, and it folds compactly to fit in the trunk of most cars. It isn’t the most comfortable, though.

The EZ Lite Cruiser folds to a size that will fit in the trunk of most cars. Photo: Olivia Asuncion

The trip started with a travel nightmare that was almost impossible to make a contingency plan for.

The only wheelchair-accessible transportation service in Manila, where I flew into, canceled on me mid-flight—leaving me stranded at the airport.

To get to my hotel, I rented a cargo van. As I watched five grown men carry my heavy-duty wheelchair into the back of the van, I noticed a sixth person single-handedly pick up the EZ Lite Cruiser along with my suitcases.

It was then that my anxieties really eased about how I was going to get around. The EZ Lite Cruiser can easily fit in the trunk of most cars, folding up to slightly larger than a medium suitcase (29 by 22.5 by 13 inches).

I didn’t need a wheelchair-accessible vehicle anymore to do my research. I could use any car.

At about 45 pounds, the EZ Lite Cruiser chair allowed me to be a lot more agile during school site visits. Whenever I reached an inaccessible point, like a step or stairs, it was easier for someone to lift me in this chair than in my regular one. And, with the help and commitment of several kind people, the chair even made it possible for me to get into a boat!

I’ve gone through the long and arduous process of getting my regular wheelchair repaired several times; this involves insurance approval, ordering parts, and a specialized technician to install them.

With the EZ Lite Cruiser, none of that is necessary. I can order replacement parts directly off of the website, which also has instructional videos on removing and installing new parts.

My chair was around four years old by the time I left for my trip, so I ordered new rear tires, motors, a battery, and armrests for the EZ Lite Cruiser, to make sure it was in tiptop shape for my nine-month adventure. I’d previously purchased a separate portable seat cushion from another company, since the cushion that came with the standard model had flattened over the years.

The parts came within a week, and my brother-in-law was easily able to install the parts by following the instructions in the videos. By the end, I felt like I had a brand new chair.

By contrast, I requested repairs for my regular chair four months prior to the trip, but my insurance didn’t approve them until 10 days before my departure date. Predictably, the parts didn’t come in time, leaving me with a worn-out and potentially unsafe wheelchair to use for nine months.

People lifting someone in the EZ Lite Cruiser wheelchair.
The wheelchair was light and small enough to be carried onto a boat, but it does not provide the most comfortable ride. Photo: Marie Asuncion-Buhat

Although the EZ Lite Cruiser does the job of getting me around, technically it’s too big for my body, and therefore I use it only when I really need to.

I’m a 3-foot-6-inch woman with brittle bones and a significantly curved spine, so there are several features unique to my customized chair that make it much more comfortable and safer for me to use—which is why I was adamant about bringing it to the Philippines.

When I was first shopping for a lightweight electric wheelchair, in 2018, the EZ Lite Cruiser was one of very few options available. I chose the standard model because it was the least expensive (and it wouldn’t be covered by insurance). But it also had the fewest bells and whistles.

The fit isn’t perfect. My short legs do not hang comfortably off the front edge of the seat. And the seat is a little too wide, leaving me to jostle around. (For reference, my customized chair’s seat is 12 inches wide, whereas the standard EZ Lite Cruiser’s seat is 15 inches wide.)

The lightweight aluminum alloy frame feels too unstable on any surface that’s not flat and smooth. It also doesn’t have many shock-absorbing properties, so I feel all of the bumps and cracks on the ground—something that my brittle, achy bones didn’t love as I navigated the uneven pavement and steep slopes of the Philippines’ urban and rural terrain.

Wirecutter’s accessibility and aging-in-place editor, Claire Perlman, had a similar experience while traveling through Greece with her deluxe slim EZ Lite Cruiser chair. Because of the seat’s configuration, she couldn’t reach the joystick without a large pillow behind her. And the simple footrest did little to keep her feet in place as she drove over endless cobblestones, leading to at least one near-fall.

That said, this chair allowed her to take the trip. And she even visited the island of Santorini, famous for its picturesque (and inaccessible) stairs.

If you have the budget, you can customize (to an extent) the EZ Lite Cruiser to your body and needs. The EZ Lite Cruiser comes in four different sizes, and the deluxe options offer better back support, thanks to five different seat-reclining positions and a plusher seat cushion. The deluxe models also offer different lengths of footrests and seat belt types.

There are a few limited customization options available on all of the models. The joystick can be installed on the left- or right-hand side of the chair. You can also choose between a 10 Ah lithium battery (which is airline-approved and has an approximate 10-mile driving distance) and a 15 Ah lithium battery (which is not airline-approved and has an approximate 15-mile driving distance).

But if you’re flying with your chair, you should know that not all airline personnel are properly trained on which lithium batteries are permitted onboard, so you should be prepared to explain it to them if necessary. The company offers documentation that you can request, to show airline agents that the wheelchair is safe for flying. Even with the airline-approved 10 Ah battery, you’ll always have to disconnect it before flying.

Discomfort and inconveniences aside, the EZ Lite Cruiser was a worthwhile investment and one of the best decisions I could make for my independence.

This article was edited by Claire Perlman and Christine Cyr Clisset.

Meet your guide

Olivia Mae M. Asuncion

Olivia Mae M. Asuncion is an architect working on K–12 educational facilities in Oakland, California. She is a design researcher and an advocate for accessibility and universal design. She is also a Fulbright scholar and a public member of the U.S. Access Board.



In the Land of the Very Old

Jan 23, 2024 — by Sam Toperoff in  Original  for THE SUNDAY LONG READ 1. Passports, or Prescriptions I am writing this in a blue notebook I ...