All posts by medical

Human Behavior

What went wrong in Arizona for COVID-19 cases to sky rocket? Experts weigh in – FOX 10 News Phoenix

What went wrong in Arizona for COVID-19 cases to sky rocket? Experts weigh in

Arizona is now a COVID-19 hot spot as cases and hospitalizations continue to break records nearly everyday. Some say the state has lacked direction from the governor, but are also saying young people are main drivers in the uptick.

PHOENIX - Arizona is now one of the worst coronavirus hotspots anywhere in the world. Per capita cases in the state are outpacing every country in Europe.

Health officials are now left with the question of, "What went wrong?"

In a Thursday news conference, Arizona Gov. Doug Ducey says this is Arizona's first wave of the virus as hospital beds arefilling up and restaurants are shutting down, again.

Thegovernor'soffice responded to this reportby saying,Wefollowedall CDC guidelines in trying to make the best decisions possible for the resident's of Arizona.

I think it starts at the top. I think that we havent seen great leadership at the top," saysDana Marie Kennedy, director at Arizona's AARP chapter.

RELATED:Gov. Ducey urges Arizonans to stay at home amid rising COVID-19 cases; expect hospital surge capacity

She demanded more safety and transparency months ago and even now sees a clear lack of leadership and communication illustrated by elected officials holding unmasking rallies.

She blames young adults for crowding into bars, too. In Arizona, I can go to a bar and nightclub tonight and have a great time. But what Icant do, is if my mom or grandmother was in a facility, I cannot go visit them," Kennedy said.

Arizona was also slow to start testing, and now people wait in line for hours for a test. Securing protective gear took too long as well.

The state never did mandate mask-wearing, but instead left it to local governmentsto decide.

RELATED:Arizona COVID-19 cases rise by over 3K for 4th day in week

The once fairly flat curve shot up, higher than New York ever saw.

The policy has to be aggressive enough that it influences human behavior in a way that is meaningful," saidWill Humble, former director of the Arizona Department of Health Services.

Gov.Ducey repeatedly saidan increase in cases was always expected.

We have an advantage over other states that had outbreaks early on. We have more time to prepare," Ducey said.

RELATED:Trump orders flags lowered to half-staff for three days for those who died from COVID-19

Even now, as other hotspots states like Texas and Florida scale back, Arizona is not.

The governor is instead asking people to stay home, like the order he lifted more than a month ago.

The valley is starting to see our first enforcement of large gatherings and social distancing. Several Scottsdale bars have been put on notice and will be closed for the weekend.

If mask-wearing is working,we should see the curve startto flatten againsometime in July.

Follow this link:
What went wrong in Arizona for COVID-19 cases to sky rocket? Experts weigh in - FOX 10 News Phoenix

Human Behavior

Indias Economy : Aftermath of COVID19 – Observer Research Foundation

object(WP_Post)#928 (24) { ["ID"]=> int(68625) ["post_author"]=> string(1) "1" ["post_date"]=> string(19) "2020-06-27 10:03:17" ["post_date_gmt"]=> string(19) "2020-06-27 04:33:17" ["post_content"]=> string(11065) "

This time it is truly different

Financial market punditry revels in truisms. One of them is the old chestnut about this time its different. There is an inherent, somewhat justified skepticism about this hypothesis, borne out by decades (sometimes centuries) of mean reversion. Most things, certainly financial market variables, tend to over time revert to an estimated mean (or average). However, this time it does seem rather different, at least different from what the generations living today have experienced.

The best-case scenario is the development of a vaccine or therapeutic soon enough. However, till a scalable solution is found, not only will large swathes of businessesrestaurants, hotels, airlinesbe wiped off, basic human behavior that underpins business and commerce will also change. As Prof. Kaushik Basu says, no economist writes down can talk as an assumption. It is regarded as a given. Being able to talk, walk up to the desk, argue and form relationships are core to how businesses are run take that away, and mankind needs a different paradigm to set the rules of business.

Social media tends to exaggerate political soundbytes. Despite all the noise on conflicts around the world (US-China, India-China, Afghanistan, Pakistan, Middle East), the world is a relatively peaceful place in terms of physical security. Warzones are few, hot conflicts engendering loss of civilian lives and properties are even fewer in the context of the 20th century history. There is however a distinct turn in economic behavior. The post-World War II journey towards greater integration of trade, openness to immigration, expansion of the global commons for business and commerce is being reversed. Protectionism has become a politically respected word in economic policy lexicon, and for good or for worse there is increasing resonance around the Thomas Piketty-style inequality stories.

Indias growth was slowing down in a secular trend even before the advent of COVID-19 and lockdown-related shocks. The slowdown has exacerbated the twin balance-sheet issue confronting India. This comprises stretched corporate leverage and concomitantly stressed bank (and Non Banking Financial Companies, or NBFC) balance sheets. Consequently, the financial systemwhich is the primary conduit and increasingly the primary source of intervention in the real economyis far too weak to effectively play a big part. 2020 was supposed to be a break-out yearaided by some global tailwinds and base effect, there was expectations of a bounce-back in growth. Unfortunately, COVID-19 put paid to those calculations. In short, India is faced with a double-jeopardy scenarioa weakening base of growth and a weakened set of financial institutions that are unable to front-load risk-taking. Add to it the unwillingness (or the inability) of the government to print money to take us out of this slowdown.

In this somewhat depressing scenario, there are some very important silver linings. They will be crucial for India to leverage while crafting a break-out strategy. For starters, the Foreign Exchange (Forex) constraint, one of Indias eternal constraints in economic policymaking, is largely absent. This is quite remarkable, given the worsening of external accounts of several Emerging Markets (EM) in the current crisis. Thanks to robust foreign equity flows, lower Current Account Deficit (CAD) and aggressive dollar buying by Reserve Bank of India (RBI), Indias Forex reserves today top US$500 billion. This providese a big policy cushionone that hasusually not been available to India during previous crises.

Second, nearly the entire public debt is financed via local savings, making it Indias unique strength for several decades now. There is no dependence, barring for tactical liquidity purposes in very small doses, on external foreign investment to fund Indias fiscal deficit (fisc). While the conventional commentaryincluding by Credit Rating Agencies (CRA)lament Indias high levels of sovereign debt, the fact is that the entire debt is financed locally. In other words, Indias public debt is financed by Indian Rupee (INR) capital, ie, in a currency which Government of India, the borrower, also enjoys a seigniorage (or power to print the currency) in.

While policy impulses, simplified tax regimes and all that passes off as reforms can play a part, the real heavy lifting in a post-COVID-19 strategy has to be government spending. With private discretionary consumption likely to remain muted for some time, private corporate sector investment would likely take longer, and global trade and commerce remaining both slow and mired in the new protectionist debatesgovernment spend is the only viable game in town. Its not a surprise therefore to see the level of fiscal stimuli announced in several countries around the world, going up to as much as 10-20% of gross domestic product (GDP). The Indian fiscal intervention, till now, has been small and cautious. But there have been promises of more as the lockdown is lifted. It is really not an option, so the question around a bigger fiscal push has to be a question of when rather than if.

For the government to spend more, a viable financing plan is a sine qua non. Globally, developed countries are financing enhanced fisc via money-printing programmes (also called Quantitative Easing, or QE). India has the same option too, but (till now) has been strangely recalcitrant about exercising it. There is a fear that printing money will cause a run on the currency, with all its attendant issues. But given that India funds all its public debt via local savings (as discussed above), it is a risk that exists more in theory than in realms of plausible reality. Unless the government spending program sends the CAD sky-rocketing, there is very little risk to a wholesale devaluation of the currency. However, it is a fact that the government has held back on exercising this option.

The other option to fund an expanded fisc, with a fair assumption that tax revenues are going to fall short, is via an aggressive asset sales program. A fire sale of state assets is not usually a great strategy for managing taxpayer-owned assets, but if the expenditure is focused on creating new infrastructure assets, it would only mean swapping one type of public assets with another. In other words, if proceeds from (the planned) LIC stake sale are used to create (say) 5 new hospitals, it isnt really a dilution of taxpayer-ownership of economy, but merely swapping LIC shares for hospital ownership.

Maybe a variant of the Hobsons choice, but a choice that needs to be exercised.

For a very long time, inflation has been a primary concern for economic policymaking. This is driven by the importance of inflation in our political economy discourse. In recent times, India has sought to embrace a low inflation mantra as some sort of axiomatic truism. It climaxed into the Inflation Targeting law that formally gave the RBI an inflation target as its primary objective in policymaking. While it meant that India has seen record low average inflation rates for the last few years, it has also disturbed several other economic outcomes. Lower inflation has meant lower nominal GDP growth; this is the reason why a 6-7% growth in recent times didnt seem to feel like the 6-7% growth we saw earlier. Sans a higher nominal GDP growth, incomes dont grow as fast, demand doesnt go up as fast, tax revenues dont grow as fast. More importantly a higher inflation allows the government to inflate away debt faster and creates greater headroom for more debt to be taken for higher growth in the future.

Today, when the primary issue confronting us is a massive demand destruction, inflation is bound to trend lower. This could have the effect of a disastrous spiral as government is unable to mop up enough revenues, and also unable to raise more debt as underlying GDP nominal growth remains weak.

A variety of policy toolsfrom direct income support to dilution of Inflation Targeting mandate to RBI need to be used to ensure that Indias inflation remains solidly positive.

An era is fading away. An era of expanding global commons, free trade and global prosperity. The new era might well end up being a more dog-eat-dog world. But Indias opportunities remain immense not only because of its oft-repeated strengths of young population and big middle class. Our silver linings are bright, and COVID-19 has not destroyed our physical infrastructure. But government policymaking needs to be quick, adaptive and decisive if we are to escape a prolonged growth funk, something that India can ill-afford.

The rest is here:
Indias Economy : Aftermath of COVID19 - Observer Research Foundation

Human Behavior

Tweeting Our Way Through A Pandemic – American Council on Science and Health

The researchers made use of two datasets. C-Span provided information on the verified Twitter accounts of the members of the 116thCongress; Twitters interface provided the tweets. Using machine learning and algorithms, the researchers created a dataset linking each Congressperson with their COVID-19 related tweets and then went on to characterize the word frequency of those tweets. Using word frequency, how often a given word appears in a document, has, for some time, been a tool of scientists looking to understand our speech. It has been used to differentiate one writer from another. In this instance, they used word frequency to characterize all of the Congressional tweets from January 17thwhen COVID-19 was first mentioned until March 31st roughly three weeks after COVID-19 was declared a national emergency.

As the graphic demonstrates, Democrats and Republicans chose very different words to their perception of the pandemic. For example, crisis was used 7% more often by the Democrats while China was mention 5% more by Republicans. Democrats also were more likely to tweet about COVID-19 than their Republican counterparts. For every 45 Republican Congressional tweets, there were 71 tweets from the Democrats

To get a better handle on the possible polarization between the two parties, the researchers using these word frequencies sought to identify whether the tweet was from a Democrat or Republican. The idea was the more often they were correct in their identification, the more the tweet reflected the Republican or Democratic word choices, their language polarization, and the more the member of Congress reflected their partys viewpoint. The algorithm they developed correctly identified 70% of the tweets political party.

Polarization, as measured in this manner, changed over time. While it was initially low, meaning that the algorithm had difficulty correctly identifying Democratic from Republican tweet, but by February 9th,it quickly peaked partisan camps were fully formed. With a small decline in the next few weeks, polarization again rose as various relief packages were being considered, mid-March. Nearly 70% of tweets no longer shared common word choices, so not only were partisan camps formed, but in some senses, the lines were clearly drawn between the two.

Democrats discussing the issue earlier, more frequently, and with more emphasis on public health and direct aid to affected workers. By contrast, Republicans placed more emphasis on generalized national unity, China, and businesses.

What can we make of these findings? At a minimum, we see that tweets are reflective of political opinion and that our Congress failed to achieve any consensus on how best to manage this pandemic because they quickly viewed the situation through a political, partisan lens. As the researchers point out, this failure of consensus resulted in an un-coordinated governmental response at both the agency and cueing level by cueing, I refer to the examples set by our leadership over what to do personally.

We would like to believe that science, deductive reasoning with a multiplicity of proofs and refutations, is value-free. To a large extent, that may be truer in some fields like physics or chemistry. But science is grounded in our culture; for example, the traditional Eastern science of medicine differs quite a bit from that of Western medical science. When we are dealing with a science that is heavily entangled with human behavior, as is public health epidemiology, we do ourselves a disserve in not recognizing that aspect and taking it into account.

As the blame game continues over which faceless agency dropped the ball or offered misleading information it is worth taking a moment and considering the role of our elected leadership, not merely the President and the executive branch, but the legislative branch that provides the financial means for the executive to act. The responsibility for the failures to protect public health and the economy lies as much with our leadership as with the regulatory bodies, they seek to blame and shame. Might I suggest that as you decide who will be your local and Congressional representatives in the upcoming year, you consider how well they led and protected you during this time rather than make a choice on what they promise to do in the future.

Source: Elusive consensus: Polarization in elite communications on the COVID-19 pandemic Science Advances DOI: 1 0.1126/sciadv.abc2717

Here is the original post:
Tweeting Our Way Through A Pandemic - American Council on Science and Health

Human Behavior

9 Signs That Prove Your Cat Loves You More Than Anything – Yahoo Lifestyle

Photo credit: Aleksandr Zubkov - Getty Images

From Oprah Magazine

Real talk: Does this cat love me, or does it love what I can do for it? It's a question many a cat parent has pondered.

Dr. Mikel Delgado, a cat behaviorist, confirmed that cats can, indeed, feel affection for humans. Cats can have a lot of the same emotions that we do, including liking to be around us and enjoying our presence, he says. I believe they are capable of enjoying relationships with us and even loving us.

Cats derive pleasure, safety, and comfort from their relationships with humans. However, all cats express their happiness with their human companions differently. Long story short? Cats have distinct personalities, just like people.

Some cats are more affectionate than others, or they're more obvious with their affection, Delgado explains. "For some cats, the way they show they love you is to want to be in the same room with you. For other cats, the way they show they love you is sitting on your chest and purring in your face.

Delgado gave us tips for interpreting cat behavior, no matter what kind of feline you have, you can see once and for all, that your cat does indeed love you.

Cats can love their humansbut not all cats can love the way we want them to. In order to make a great pet, it helps if a cat has become accustomed to human behavior from a young age.

Delgado cites a sensitive period in a kittens coming-of-age, between two to nine weeks, during which they become comfortable coexisting with people. Kittens that are handled by people at that time are going to be more open and trusting of people later in life, Delgado says. Dr. Sarah Nold, staff veterinarian at Trupanian, suggests that adopting a kitten up to seven weeks old for the speediest bonding.

When the sensitive period is over, a kitten can still learn to love a humanbut its a slower process. Even though cats are a domesticated species, theyre able to live independent of human care. A feral cat, for example, would never be wholly at ease with people; and likely, vice versa. Itd be like trying to tame a squirrel or raccoon. You wouldnt end up cuddling a raccoon, Delgado says.

Story continues

As for homing stray cats? That's a go, in certain situations. Some cats that live outside do get a lot of exposure to peoplethey just may have never lived in a home. They learned, through association, that people are good. They bring me food, maybe I should trust them. But it'll be an adjustment to living indoors," Delgado says.

Then, look out for these behaviors.

They treat you like youre a cat. When cats don't feel threatened by other cats, they will show affection by rubbing on them, sleeping near them, and being in their presence. If your cat replicates those behaviors with you, Delgado says it has officially imprinted on you.

They rub against you. Delgado says this is the "telltale sign" your cat has accepted you into its social group.

They follow you into a room. If a cat is following you around, that means it wants to be around you, according to Delgado.

They come into your bedroom while you're sleeping. Some cats are threatened by a humans' size. As a result, they may feel safer around humans when they're lying on a bed, compared to walking around.

They blink their eyes slowly. Happy cats tend to blink their eyes slowly and softly. Humans can mimic this gesture, and communicate with their cats. "Softening your gaze is definitely a good way to take the tension out of the space," Delgado says.

They knead their paws like a kitten. Ever seen your cat pushing in and out with its front paws? That's a gesture kittens make when they want their mother to release milk. "When they do that to you, it's like you're mommy," Delgado says, and it's another sign your cat is comfortable with you.

They make the right kind of meow. According to Delgado, "meowing" is a way for cats to communicate with people. "It's a very effective way of pushing buttons and pulling at our heartstrings and getting us to do whatever they want, whether it's giving them treats or attention," Delgado says.

They show their bellyin some cases. Some cats expose their bellies as a sign of relaxation and trust. Other cats, according to Delgado, show their bellies because they want to play.

They show their tail, too. Once again, the meaning of this gesture depends on the cat. "Some cats only have an active tail when they're irritated," Delgado says. However, it can also be a sign of affection.

According to Delgado, the key to a cat's happiness is setting up an environment in which cats can express behaviors that are natural to them. Be the doer of everything the cat loves: Providing treats, and playing hard to get. Also, Nold suggests getting your feline friend a climbing tree.

"Then, cats can really build trust and a bond," Delgado says.

Generally speaking, Delgado says, cat behavior is consistent between breeds. Whereas dogs were bred to replicate different behaviors, the same isn't true for cats, which were bred for looksnot personality.

"Some breeds are very active, like Abyssinians, and Siamese are known to be vocal, but as far as like body language and interactions with people, they're general across all cat breeds," Delgado says.

As a cat owner, your impulse may be to immediately cuddle with your buddy. But Delgado recommends letting your cat take charge of interactions. We know from research that cats actually prefer to be the one to approach you. And if you let them make the first move, you'll have a better interaction," Delgado says.

Over time, Delgado adds, your cat will trust you more, because you respect its limits. This dynamic explains why people who are allergic to cats tend to complain that cats love them. "They're totally avoiding the catand the cat is like, Ooh, I want to sit on that person because they're not being pushy."

All cats have different personalities. Sometimes, it's possible to ad0pt a kitten or cat with a certain kind of personality. Nold says humane societies and rescue centers work with cat behaviorists to evaluate cats' personalities. "Share what you're looking for the center you're adopting the cat from, " Nold says.

For more ways to live your best life plus all things Oprah, sign up for our newsletter!

You Might Also Like

See the original post here:
9 Signs That Prove Your Cat Loves You More Than Anything - Yahoo Lifestyle

Human Behavior

Lisa Rinna Slams ‘Karens’ Who Are ‘Begging’ QVC to Fire Her Because of Her Political Views – Yahoo! Voices

Lisa Rinna won't let anyone stop her from voicing her political views.

The designer of the Lisa Rinna Collection, which is soldexclusively at QVC, spoke out on her Instagram Story on Wednesday after critics she described as "Karens" allegedly complained to the company and attempted to get her booted because of her political beliefs.

"I am sad to report it would now seem I can't use my platform to inform or question or say how I feel politically because the Karen's have bombarded QVC begging them to fire me and saying they will no longer buy my clothes," Rinna wrote.

"It is a shame that I must be muzzled in order to support my family but that it just what it is. Remember you know how I feel. Use your voice and vote," she continued.

Lisa Rinna/Instagram

In another post on her Instagram Story filled with stickers that said "QUEER," "PROUD TO BE PROUD," "BLACK TRANS LIVES MATTERS," and "THIS FIGHT AIN'T OVER," Rinna made it clear that she's proud to voice her opinions. "I will be on the right side of history and in the end THAT IS WHAT MATTERS MOST," she wrote.

RELATED: Cities Across the Country Show Support for the Black Lives Matter Movement with Street Murals

The internet has started using the name "Karen" to describe a woman who acts entitled or demanding beyond what is considered appropriate.The New York Times described a "Karen" as the "policewomen of all human behavior" in a 2019 piece.

John Tsiavis/Bravo

While it's not exactly clear which of Rinna's social media posts the "Karens" were upset by, the Real Housewives of Beverly Hillsstar, 56, has posted in support of the Black Lives Matter movement numerous times, Pride Month and the recent Supreme Court decision prohibiting discrimination against LGBTQ people in the workplace.

One day after Rinna put her haters on blast, the star shared another message on her Instagram Story vowing that she will continue to speak her mind.

Lisa Rinna/Instagram

"I have decided not to shut up. Ever," she wrote, adding the stickers "Speak Up," "Vote" and "Black Lives Matter."

"And I will take whatever consequences come with standing in my truth! And... f--k off 'Karen.'"

The Bravo star launched her best-selling lineon QVC in 2012.

PEOPLE has reached out to Rinna's rep and QVC for comment.

Original post:
Lisa Rinna Slams 'Karens' Who Are 'Begging' QVC to Fire Her Because of Her Political Views - Yahoo! Voices

Anatomy

The Anatomy Of A Phish | Avast – Security Boulevard

Phishing is the most prolific category of cyber scam. Others include romance scams, mugged in London scams, advance fee frauds and many more. Most scams seek to part you from your money phishing is unique in seeking your personal data, usually in the form of passwords and bank details.

This is the defining difference we will use here. If the scam is after money, it is a scam. If it is after credentials, it is phishing. Whether its vishing (by phone), smishing (by chat), whaling (after the big fish), or spear-phishing (targeted phishing), its all basically phishing for personal data.

There are technology aids to prevent phishing but given the FBIs latest report notes 114,702 phishing attacks in 2019, ultimately leading to the loss of nearly $58 million, it is fair to say that they are not foolproof. The best way to protect yourself against phishing attacks is to recognize them. The best way to recognize them is through a knowledge of their anatomy and structure and how they work.

The Phish

The two primary categories of phishing are standard and spear-phishing. The former is untargeted, large-scale phishing usually delivered in spam campaigns. This is often known as spray and pray phishing. The latter, spear-phishing, is where an individual or small group of related people, are precisely targeted.

We have probably all been subject to and have recognized a spray and pray campaign. A quick look in our spam folder will probably show dozens, all filtered out by our email service provider. They are relatively easy to recognize, often including typos, grammatical errors and have a general unprofessional appearance. According to the 2020 Data Breach Investigations Report, click rates on phishing emails are at an all-time low at just 3.4%.

This makes spray and pray a numbers game. Any given phishing message has a 96.6% chance of being ignored by its victim, even if it makes it through the email services automated filters. However, this means that for every hundred messages successfully sent in a spray-and-pray campaign, we can expect three or four people to fall victim to it. If a campaign manages to distribute 100,000 fraudulent messages, this gives the hackers 3,400 compromised victims.

Spear phishing is more sophisticated, often more technical and is potentially more damaging than spray-and-pray phishing. Spear-phishers will research their target or targets using different forms of OSINT (open source intelligence, such as social media), gathering information on the targets habits, which services they use, their contacts and more. With this information built into the email, the message can appear to come from a trusted source, and will often be convincing and compelling.

It is worth mentioning that since spray and pray phishing is easy to detect, many people believe they cannot be tricked by any phishing. This is dangerous. There is probably no one in the world who could not be spear-phished. Consider the case of the Telegraph journalist who effectively challenged a white hat hacker to break into her computer. He did just that by spear-phishing her with the opportunity for a compelling news story combined with a sense of urgency.

Victims succumb to phishing attacks because of the combination of the structure of the email and the lure it contains, and the inclusion of various emotional triggers that elicit the response required by the attacker. Well discuss these next as the anatomy of a phish and the emotional triggers. If we understand how we are phished, we will be better equipped to recognize and ignore (or report) a phishing attack when it happens.

Anatomy of a phish

Well focus on email phishing, as this is both the most common vector for phishing attacks and allows us to analyze the complete anatomy of phishing messages.

The visible email header is that part of the email we can see before we open it. It is the attackers first opportunity to catch our attention, but is also the point at which many spray and pray campaigns immediately fail. The intent is to appear to be an interesting subject from a trusted source. A spray and pray example from my own spam folder is from _ nooreply[@]l1i.affpartners.com. High Priority is not a person, but is intended to add a sense of urgency to the email (see emotional triggers below), encouraging potential victims to open it before stopping to think. A moments closer inspection lets us see more holes: l1i.affpartners.com doesnt look like a legitimate domain, and nooreply is probably a typo for the more usual no.reply or no-reply.

Spear-phishing attacks can be more subtle. If you have a friend or colleague with the email address John.Smith[@]company.com, attackers may message you as John.Smith[@]google.com, using an open email service and hoping you dont notice the different domain.

The subject line of the header is key to a good phish it is the primary factor in what makes us decide whether to read the email or not. It must be short enough to be easily processed by the target, but needs to contain strong emotional triggers to make itself hard to ignore. Effective phishing subjects will leverage either a sense of threat, urgency, or the prospect of gain for the user. According to research by KnowBe4, the most clicked phishing subject is Change of Password Required Immediately, with similar lines accounting for another three of the top 10 most clicked phishing subjects. International disasters also offer compelling subjects, with curiosity, fear and compassion being typical emotional triggers and the COVID-19 pandemic is a clear illustration.

With all forms of email scam, the body, or content, contains the lure. Loosely, the lure can be seen as the bait that is used to tempt the phished to take the hook (the payload, see below).

By this stage, the attacker has successfully convinced the target to open and read the email. Now the lure in the email body must convince the victim to click a link or respond. The lure is typically full of emotional triggers designed to engage the victim favorably. Consider this example of a spray-and-pray lure:

Leaving aside that I never do online surveys, the grammatical and spelling errors as well as odd syntax typical of spray and pray attacks make it obvious that this is a phish. The two most obvious emotional triggers are greed (who wouldnt want a free iPhone?), and urgency (the target is given just 24 hours, or this opportunity will be taken away). Other common phishing lures range from commonplace and plausible (but fraudulent) invoices and delivery notifications to more grandiose legal threats, or simply masquerading as charitable or governmental organizations.

The payload is the crux of the phishing email. The most common payload is a malicious link; this can lead to a malicious or compromised website where a falsified login screen harvests credentials and sends them to the attacker. The link can be in the body of the email or found in an attachment.

Any payload link is usually disguised. In the above example, the click here button is the payload. If you hover the mouse cursor above a link, most browsers will display the URL in the bottom left of the screen, allowing you to see the actual destination. To counter this, many phishers are using URL shorteners like Bitly to hide the real destination our example shows as https:// t.co/YwTb24fxMI ?amp=1. URL obfuscation is always suspicious, so any email containing a shortened or obfuscated URL should probably be treated as phishing until proven otherwise.

Emotional triggers

The header, the subject, the lure and the payload form the fundamental structure of a phish, but success or failure rests on the emotional triggers contained within the message. Emotional triggers are there to prompt an immediate, unthinking, knee-jerk reaction, because the more we can think, analyze and consider a phishing message, the less likely it is to succeed. Consequently, it is important to give ourselves time. Even if an email appears both urgent and legitimate, setting a rule to never respond to any email without a small thinking period can go a long way to helping us keep a cool head and seeing through the emotional manipulation.

The main emotional triggers are listed below, but it is important to remember that any combination of them can be included in a phishing email, and the more sophisticated attacks will make use of them in very subtle ways.

Greed may be the earliest emotional trigger that phishing scams have tried to exploit. The greed trigger goes even further back than the infamous Nigerian Prince scams, but there are still many attempts to capitalize on greed to this day. In late 2019, Microsoft employees were targeted with a phishing campaign purporting to disclose upcoming salary increases. The payload was a link to a fraudulent login screen designed to harvest Microsoft Office login credentials. Two axioms are always important to bear in mind when opening any email: nothing in life is free; and if something seems too good to be true, it probably is.

Urgency is commonly present in phishing. Rather than being an effective emotional trigger by itself, urgency must work in conjunction with other emotional triggers: You have a free gift but must claim it within 24 hours. We have embarrassing information to share with all your contacts if you dont respond by midnight. If the scammer can remove the victims thinking time or push them into a panic state, it drastically increases the chance of successfully tricking the target.

Good mental defenses against urgency are difficult to cultivate because urgency is specifically designed to disrupt those mental defenses. However, it is useful to remember that if you receive an email or a message that fills you with dread, its likely that whoever sent it wants you to panic. Counterintuitively, taking feelings of urgency as a sign that its time to stop and think carefully can help foil most of even the most effective phishing campaigns.

Fear can apply in a lot of different situations and contexts. There is often a strong interplay with urgency, especially when it comes to fear of bad consequences if we dont respond immediately. Fear plus urgency often equals panic, and can be used in legal threats or threats to release intimate personal information.

Fear can also be less visceral fear of missing an opportunity and fear of being uninformed can be equally compelling emotional triggers. Phishing scams often prey on both fear of danger, and fear of missing out (FOMO).

The COVID-19 pandemic has given rise to a spate of phishing scams that target both of these aspects of fear; the deadly and contagious infection has many of us fearing for our safety, and there is a strong desire for us all to stay informed and up to date on all the latest developments (or obtain one of a very limited supply of (non-existent) vaccines).

While most emotional triggers exploit our base instincts, our better nature can also be used against us. Any crisis, emergency or disaster tends to cause a spike in phishing emails attempting to capitalize on it. Phishing emails can impersonate a charitable organization or a person in need. The spate of tropical storms over 2018 and 2019 prompted a variety of organizations (including the FCC) to issue official warnings about post-disaster scams, urging users to verify any charitys credentials carefully. These so-called charities arent after your donation, theyre after your bank details.

Curiosity can be a particularly dangerous trigger, as we often dont consider that just having a look can put us in danger. The same principles that apply to clickbait articles online can be used in phishing; any sufficiently sensationalist subject line could be irresistible to our curiosity: you just wont believe entry number 7! In the wake of Kobe Bryants death earlier this year, clickbait phishing with subjects like amazing, shocking, or never before seen! became so widespread that it prompted the Better Business Bureau to issue an official warning to consumers.

Technological defenses against phishing

Businesses and cybersecurity organizations are always looking for ways to prevent phishing with technology. As much as these technological solutions may help to mitigate phishing and reduce the exposure of users to phishing scams, the continuing prevalence of phishing and the damage it causes mean we have to consider them a failure so far. According to the 2020 DBIR, 22% of all breaches over the past year have involved phishing, while around 80% of all social type attacks are phishing messages of some kind.

Browser developers maintain blacklists of known phishing websites which can help prevent users visiting malicious URLs. This is only partially effective, since the average phishing campaign lasts for just 12 minutes the malicious website changes before it can be added to the blacklist.

Artificial intelligence is also used to scan emails to detect phishing. This can be effective with spray-and-pray phishing, but AI products entail high expenses, and tend to be useful only to companies rather than consumers.

DMARC short for Domain-based Message Authentication, Reporting & Conformance is a technology that unequivocally works against phishing, some of the time. We wont go into the details of the technology (DMARC is built on the top of other technologies, notably SPF and DKIM, that were also designed to counteract phishing), but just explain why it works when it works, and why it doesnt ultimately help the end-user.

DMARC works against what is known as exact domain phishing. This is where the phishing email appears to come from the exact, expected, and correct domain (as shown in the From line of the header). If DMARC is fully installed by a service provider, the technology confirms that the message has genuinely come from that domain. If not, it assumes phishing and blocks it.

To demonstrate how well this works, consider the UKs tax authority, HMRC. In 2016, this domain was the 16th most phished domain in the world. HMRC then installed DMARC, and has since dropped to number 126 in the world. During this period, DMARC stopped 300 million attempted phishing emails.

However, DMARC can do nothing to stop non-exact domain phishing. This is where the from domain in the email header is a look-alike rather than the genuine exact domain. So, for example, I could register the domain hnnrc[.]co.uk (or hnnrc[.]uk or hnnrc[.]org.uk or hnnrc[.]me.uk all of which were available at the time of writing in the genuine expectation that a percentage of recipients would not notice that hnnrc is not hmrc.

The second weakness in DMARC is that only a tiny percentage of firms have implemented it. But the real weakness is that the end-user has no way of knowing whether a received email has been DMARC-checked or not. Consequently, all received emails need to be considered suspect, whether or not DMARC is involved.

There is an attempt to solve the last problem with the introduction of yet another technology: BIMI, or Brand Indicators for Message Identification. BIMI only works where DMARC has been fully and correctly implemented. If the email service provider knows through DMARC that the email is genuine, and if the sending domain has implemented BIMI, the email service will insert the domains logo into the email list. So, if you check your email list and see the expected sender logo, then you can be confident the email is genuine and not a phishing email.

But again, only a tiny percentage of organizations have fully implemented DMARC, and only a tiny percentage of those have implemented BIMI. It is not likely to happen, but exact domain phishing could be eliminated if DMARC and BIMI were required email standards. In the meantime, from the end-users perspective, DMARC does nothing to solve the phishing problem even though it works.

Summary

We are much more likely to be fooled by phishing than we think. For example, in a survey conducted by PhishMe last year, only 10.4% of respondents believed that fear was an effective motivating factor in opening an email. However, a simulated phishing email threatening the recipient with a legal complaint was opened by 44% of participants. Just 7.8% believed they would be taken in by the prospect of an opportunity, but a spoof phish purporting that the targets were eligible for medical insurance was clicked by 39.2% of participants.

It is often said that the weakest link in security is the user, but with enough awareness and understanding, this doesnt need to be the case. Technology does not yet have a reliable solution to phishing, and these attacks cannot be dealt with by anti-malware or general cybersecurity due to their psychological nature. If we can recognize phishing attacks by understanding the anatomy of a phish, stay calm and vigilant, and not allow our emotional buttons to be pushed, users can become the strongest link in security.

More here:
The Anatomy Of A Phish | Avast - Security Boulevard

Anatomy

Anatomy of an earworm: Inside Kero Kero Bonitos toe-tapping Bugsnax theme – PlayStation.Blog

My name is Gus Lobban. Im a songwriter, producer and one-third of the indie-pop group Kero Kero Bonito. In January, our world changed in a way that we couldnt have imagined: Kero Kero Bonito were brought into the world of Bugsnax.

Ill never forget the briefing phone call Phil at Young Horses got straight into it. So, the games called Bugsnax, and its about this island where all the creatures are part bug, part snack, and when the Grumpuses eat them, their body parts transform into them. Let me know if youve got any questions! Erm, yeah, uhhh

My starting point for Its Bugsnax! was the D-Am chords the song rests on. The I-Vm chord change and the Mixolydian mode it implies conjure a lost world atmosphere to me; positive, but with a definite note (pun intended) of mystical intrigue, much like Bugsnax itself. I built up the song from there by programming a drum track, then improvising chords on a keyboard while singing hooks over the top. I made the songs form similar to earlier KKB songs like Picture This, which Phil had explained felt close in spirit to what they were looking for.

I laid down most of the track including the drums, pan flutes and kalimba with my Roland JV-1010, a multi-timbral sound module from 2000. I love using old rompler modules because (as well as my affection for the fifth-gen game soundtracks theyre used in) they pack a variety of evocative sounds and theyre easy to use, which lets me focus on composing and arranging.

The song needed a non-vocal hook to set the scene, so I came up with the melody that opens Its Bugsnax! off the top of my head and played it with a patch on my DX7 I programmed for the last KKB album.

My Roland JV-1010, which provides many of the sounds for Its Bugsnax!

Lyrically, Ian McKinneys song about the Young Horses game Octodad: Dadliest Catch was a useful reference. The catchiest songs are often the most obvious that songs chorus is basically just Octodaa-aaad, and Bugsnaxs title ended up being our main hook too. The lyrics mostly relay the experience of playing Bugsnax in a literal way (a classic KKB technique), while the line talkin bout Bugsnax came to me in a flash of divine inspiration, for which I was a mere Vessel.

We couldnt meet up to record the vocals, so Its Bugsnax! was the first KKB song to use our remote lockdown recording setup. Our singer Sarah nailed the vocals the first time, and Young Horses were clear about what they wanted, which made putting everything together easy. Seeing the gameplay footage match up with the corresponding lyrics in the trailer was very satisfying.

The original handwritten lyrics

We had no idea how Bugsnax was launching. Phil just referred cryptically to the event. We should have put two and two together, but it was certainly a pleasant surprise when the PS5 reveal came around. You never know exactly how a song will be received, but Its Bugsnax! has had a particularly wonderful response; within days of the announcement Id seen it soundtracking memes, covered by metal and folk artists and reacted to by toddlers. The latter was quite moving, since some of my giddiest childhood memories were fueled by the excitement of new video games, and contributing to someone elses experience of that is really, really special.

Its Bugsnax! is already one of my favourite KKB moments so far. To all of you whove found it stuck in your head, sung it to your dog, or just wondered what the hell was happening, I have this to say: it isnt over yet.

Listen to Kero Kero Bonito on Spotify

The rest is here:
Anatomy of an earworm: Inside Kero Kero Bonitos toe-tapping Bugsnax theme - PlayStation.Blog

Anatomy

Sandra Oh Reveals Why She Fought With Greys Anatomy Writers and Shonda Rhimes – Variety

During her 10 seasons on Greys Anatomy, Sandra Oh was so deeply invested in playing Dr. Cristina Yang, shed often get into heated debates with the writers about her character.

In an interview with Varietys Actors on Actors issue, Oh spoke to Kerry Washington who starred in Scandal about what it was like going to-to-toe with Shonda Rhimes, who created both shows.

I spent a lot of time with writers, and television is all about your relationship with the writer, Oh said. What I was able to get from Greys is to have the responsibility and the relationship with the writer to be able to direct where shes going. If something kind of came up which was like, That is completely wrong, I would go toe-to-toe with Shonda and a lot of the writers, which has been challenging. But I think ultimately, for the entire product and our relationship, if youre fighting for the show, if youre fighting for your character, people can tell that.

Oh recalled a story line in Season 3 of Greys Anatomy when Cristina was going to marry Preston Burke (Isaiah Washington).

Most of the shows that I have done have not been Asian-specific purposefully, Oh said. When we did Greys, for at least the first 10 seasons we would not talk about race. We would not go into race, and that was purposeful. And, whatever, it was the right thing to do when it was. In Season 3, Burke and Cristina were getting married and there were the two mothers, the Asian mother and the Black mother, and Im like, Come on, there is a lot of story that we can do here! But they didnt want to touch it, for whatever reason. Now my interest is much more in bringing that story in.

Kerry Washington said that when she read the scripts for Scandal, shes always start with positive feedback before suggesting any notes.

Any of the writers who I worked with, Im sure they know my face, Oh said. What can I say? I have a Korean mom, and shes got a tough face to place. Shes got a tough face!

Its the truth, Washington said. Youre a truth-teller, which is a beautiful thing.

I feel like, when I look back, because its been six years now since I left Greys, I feel like one of my biggest successes, for me, was I dont feel I gave up, Oh said. We did 22 episodes, but in the early years, it was 24. It was crazy. Then you have to kind of pick your moments of where you can lay off the gas pedal, because it is such a slog. There would be scenes that I would just go, I dont know, 10 rounds on, and I know I was difficult. And I really respect all the writers there who rode it out with me.

What does that mean, you would go 10 rounds? Washington asked.

I would go 10 rounds in saying, Its not right,' Oh said. Youve got to do different levels with the writer, and then you bump it up and you eventually get to [Shonda]. Youve got to bother her. When it felt like such an impasse, we would both be digging in our heels hugely. But just the friction itself, a lot of times a third thing would come out, and it would not be in my sight of consciousness at all; it would take that pushing against someone equally as strong. I started to learn how to trust that.

Oh recently wrapped the third season of Killing Eve, and Washington stars as Mia on the limited series Little Fires Everywhere.

For more from Varietys conversation with Oh and Washington, read our full story here.

Read the original:
Sandra Oh Reveals Why She Fought With Greys Anatomy Writers and Shonda Rhimes - Variety

Anatomy

Anatomy of Bryson DeChambeau | Sport – The Times

Bryson DeChambeau has been dubbed golfs mad scientist for years and has now become his own lockdown lab rat after deliberately adding 20lb in weight. The world No 11 is currently playing in the Travelers Championship in Connecticut

FACT FILEAge 26World ranking 11Height 6ft 1inWeight 17st

CLUBSUnlike most players, DeChambeaus Cobra irons are the same length. They are 37.5 inches long, like an average 7-iron, and the heads weigh the same. The idea is to keep the same posture for every shot. He used extra thick grips

WEIGHTThe Californian used to weigh 13st 8lb but has added 3st 3lb in the last nine months. The idea is to create more power and ball speed. It has worked. Last year

Link:
Anatomy of Bryson DeChambeau | Sport - The Times

Anatomy

Grey’s Anatomy: What happened to George O’Malley? T R Knight’s exit explained – Express

Knight said: From an outsiders perspective, I get the [impression that] Hes just a spoiled actor he doesnt know how good he has it.

There are a lot of people who would like to be in my position. But in the end, I need to be fulfilled in my work.

Since leaving Greys Anatomy, Knight has gone on to star in a number of television shows.

This includes playing Tommy Vaughan in The Catch, Max Jacob in Genius and Jordan Karahalios in The Good Wife.

Next viewers will be able to see him as Darvey in The Flight Attendant and Renice Priebus in The Comey Rule.

Greys Anatomy season 17 is expected to air later in 2020.

View original post here:
Grey's Anatomy: What happened to George O'Malley? T R Knight's exit explained - Express