This Week's [in]Security - Issue 172 | insecurity | Control Gap

Welcome to This Week’s [in]Security. Twitter Hack/Breach. Facebook Ad boycott. Covid-19: Spread, Curves, Spikes & Waves. Lockdown, Reopening, & The New Normal. More of the Good, Bad, and Ugly. Key Block Implementation Delay. Those lying No-logging VPN services. CCPA lawsuit. Data Exfiltration vs. Data at Rest Controls? Confidential Computing. Mozilla VPN. Anti-voice-assistant snooping tech. Free anti-ransomware tool. Stopping web-trackers. DNS. SAP Recon. Smartphone Knock Codes (Patterns) CIA hackers. Mandated malware? Iran oops. Counterfeit Network Gear. Enigma. Step inside someone else's YouTube bubble if you dare. And more.

Trending news and COVID-19 updates.

The COVID related articles here fit together. Other COVID articles will appear under our normal section headings like regulations, privacy, breaches, and other risks. We have been following coronavirus risks since https://controlgap.com/blog/this-weeks-insecurity-issue-147.

• Twitter suffered a massive hijack of a number of high profile verified accounts some using 2FA. Phishing, insider action, use of internal admin tools have all been reported. The attack pushed a bitcoin scam through 130 accounts and downloaded user data from at least 8. Was there more? Was this an attacker's opportunity squandered?

  • Barack Obama, Joe Biden, Elon Musk, Apple, and others hacked in unprecedented Twitter attack https://www.theverge.com/2020/7/15/21326200/elon-musk-bill-gates-twitter-hack-bitcoin-scam-compromised
  • Musk, Obama, Biden, Bezos, Gates—bitcoin scam hits Twitter in coordinated blitz https://arstechnica.com/information-technology/2020/07/musk-obama-biden-bezos-gates-bitcoin-scam-hits-twitter-in-coordinated-blitz/
  • Twitter lost control of its internal systems to Bitcoin-scamming hackers https://arstechnica.com/information-technology/2020/07/twitter-lost-control-of-its-internal-systems-to-bitcoin-scamming-hackers/
  • Twitter says hack of key staff led to celebrity, politician, biz account hijack mega-spree https://www.theregister.com/2020/07/16/twitter_account_hijack_latest/
  • Twitter reveals that its own employee tools contributed to unprecedented hack https://www.theverge.com/2020/7/15/21326656/twitter-hack-explanation-bitcoin-accounts-employee-tools
  • Twitter Hackers May Have Bribed an Insider https://www.schneier.com/blog/archives/2020/07/twitter_hackers.html
  • Twitter shut off the ability for many people to tweet after massive hack https://www.theverge.com/2020/7/15/21326372/twitter-hack-bitcoin-scam-new-tweets-shut-off-verified-accounts
  • Twitter blocked tweets from verified accounts after a massive security breach https://www.technologyreview.com/2020/07/15/1005290/twitter-blocks-all-tweets-from-verified-accounts-after-massive-security-breach/
  • Twitter says hackers downloaded the data of eight users in Wednesday's hack https://www.zdnet.com/article/twitter-says-hackers-downloaded-the-data-of-eight-users-in-wednesdays-hack
  • The Twitter Hack Could Have Been Much Worse—and Maybe Was https://www.wired.com/story/twitter-hack-could-have-been-much-worse/
  • Twitter's Bitcoin hackers had almost limitless access https://www.engadget.com/twitter-bitcoin-scam-social-engineering-hack-access-193040357.html
  • The massive Twitter hack could be a global security crisis https://www.theverge.com/interface/2020/7/15/21325708/twitter-hack-global-security-crisis-nuclear-war-bitcoin-scam
  • Twitter hack alarms experts already concerned about platform’s security https://globalnews.ca/news/7183042/twitter-hack-security/ and https://www.cbc.ca/news/technology/twitter-breach-hack-1.5651675
  • Twitter Struggles to Unpack a Hack Within Its Walls https://www.nytimes.com/2020/07/16/technology/twitter-hack-investigation.html
  • Who’s Behind Wednesday’s Epic Twitter Hack? https://krebsonsecurity.com/2020/07/whos-behind-wednesdays-epic-twitter-hack/
  • Hackers Tell the Story of the Twitter Attack From the Inside https://www.nytimes.com/2020/07/17/technology/twitter-hackers-interview.html
  • FBI investigates major Twitter attack https://www.bbc.co.uk/news/technology-53439585
  • Lawmakers demand more details on Twitter’s massive hack https://www.theverge.com/2020/7/16/21327249/twitter-bitcoin-scam-congress-action-ed-markey-josh-hawley
  • Twitter Hack Update: What We Know (and What We Don’t) https://threatpost.com/the-great-twitter-hack-what-we-know-what-we-dont/157538/
  • After This Week’s Hack, It Is Past Time for Twitter to End-to-End Encrypt Direct Messages https://www.eff.org/deeplinks/2020/07/after-weeks-hack-it-past-time-twitter-end-end-encrypt-direct-messages

• Facebook Ad boycott:

  • Quebec City pulls advertising from Facebook until further notice https://globalnews.ca/news/7147002/quebec-city-facebook-advertising/

• The spread, curves, spikes, and waves:

  • Another million coronavirus cases in 4 days brings worldwide total to 14 million https://globalnews.ca/news/7191845/coronavirus-14-million-cases/
  • Iran could have 25 million cases of coronavirus https://globalnews.ca/news/7192382/iran-coronavirus-cases-rouhani/
  • The US set another single-day record for new coronavirus cases with more than 75,000 cases https://www.businessinsider.com/us-new-single-day-record-new-covid-19-cases-2020-7
  • A Second Coronavirus Death Surge Is Coming https://www.theatlantic.com/health/archive/2020/07/second-coronavirus-death-surge/614122/
  • Coronavirus surge overwhelms emergency rooms in some states https://globalnews.ca/news/7192893/coronavirus-us-emergency-rooms/
  • How did Florida get so badly hit by Covid-19? https://www.bbc.co.uk/news/world-us-canada-53357742
  • Coronavirus surged as nightlife returned in Arizona https://www.bbc.co.uk/news/world-us-canada-53399036
  • Passengers on 31 flights in Canada may have been exposed to COVID-19 in July https://globalnews.ca/news/7178604/coronavirus-exposure-canadian-flights/
  • California reimposes sweeping restrictions amid virus spike https://www.bbc.co.uk/news/world-us-canada-53399080
  • Coronavirus 'could be much worse' in UK winter https://www.bbc.co.uk/news/health-53392148
  • Study suggests 8 times more people in B.C. infected with coronavirus than confirmed https://globalnews.ca/news/7182892/coronavirus-serology-study-b-c/
  • The Atlantic Daily: Coronavirus Deaths Are Rising Right on Cue https://www.theatlantic.com/newsletters/archive/2020/07/coronavirus-deaths-fauci-interview/614263/

• Lockdown, reopening, and The New Normal:

  • Negative coronavirus test? Here’s why you can’t ignore physical distancing https://globalnews.ca/news/7169636/negative-covid-19-test/
  • Bad News about the Pandemic: We're Not Getting Back to Normal Any Time Soon https://www.scientificamerican.com/article/bad-news-about-the-pandemic-were-not-getting-back-to-normal-any-time-soon/
  • One quarter of Canada’s small businesses report staff refusing to return to work https://globalnews.ca/news/7184365/businesses-staff-refusing-return-to-work-survey/
  • U.S.-Canada border crossings are increasing. Here’s what needs to happen to keep COVID-19 out https://globalnews.ca/news/7178367/us-canada-border-crossings-coronavirus/
  • Coordinated exit strategies crucial to avoid virus second-wave in Europe https://scienmag.com/coordinated-exit-strategies-crucial-to-avoid-virus-second-wave-in-europe/

• Treatments, Testing, Triage, and Trials, and things we learned:

  • How long it took to develop 12 other vaccines in history https://www.businessinsider.com/how-long-it-took-to-develop-other-vaccines-in-history-2020-7
  • Immune analysis in fifty patients uncovers ‘hallmark’ of severe COVID-19 https://scienmag.com/immune-analysis-in-fifty-patients-uncovers-hallmark-of-severe-covid-19/
  • Activists warn coronavirus vaccine could be hoarded by rich countries https://globalnews.ca/news/7173836/coronavirus-vaccine-rich-countries/
  • Breakthrough blood test detects positive COVID-19 result in 20 minutes https://scienmag.com/breakthrough-blood-test-detects-positive-covid-19-result-in-20-minutes/
  • Second Coronavirus Strain May Be More Infectious--but Some Scientists Are Skeptical https://www.scientificamerican.com/article/second-coronavirus-strain-may-be-more-infectious-but-some-scientists-are-skeptical/
  • How Scientists Know Coronavirus Wasn't Made in a Lab https://www.sciencealert.com/here-s-how-we-know-coronavirus-was-not-made-in-the-lab

• Guidance, Response and Recovery:

  • Coronavirus rules reimposed in countries around the world to curb rise in cases https://globalnews.ca/news/7178342/coronavirus-worldwide-july-15/
  • How to talk about conspiracy theories https://www.bbc.co.uk/news/uk-53395619
  • ‘A system that didn’t hold up’: Families of Italy’s coronavirus victims seek answers https://globalnews.ca/news/7169373/coronavirus-outbreak-italy-investigation/

• Behaviour - the good, the bad, and the ugly:

  • Florida couple charged in northern Ontario after failing to self-isolate https://globalnews.ca/news/7174550/florida-couple-ontario-isolation-coronavirus/
  • A new survey finds hundreds of McDonald's workers have been assaulted by anti-mask customers, as mandatory masks become the norm https://www.businessinsider.com/workers-face-verbal-and-physical-assaults-from-anti-mask-customers-2020-7

• Masks, anti-maskers, and distancing:

  • Masks for coronavirus now have more scientific evidence behind them https://www.vox.com/future-perfect/21299527/masks-coronavirus-covid-19-studies-research-evidence
  • Mask resistance during a pandemic isn't new – in 1918 many Americans were 'slackers' https://theconversation.com/mask-resistance-during-a-pandemic-isnt-new-in-1918-many-americans-were-slackers-141687
  • Doctors, legitimate patients baffled as anti-maskers print off 'exemption cards' to flout rules https://www.cbc.ca/news/canada/toronto/anti-masking-rules-1.5649288
  • Quebec becomes first province to make masks mandatory in enclosed public places https://globalnews.ca/news/7192531/quebec-mandatory-masks-first-province/
  • Masks protect others, but does your mask protect you? The jury’s out https://globalnews.ca/news/7169495/do-coronavirus-masks-protect-you/

PCI Compliance and Payments

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud.

• PCI Security Standards Council Bulletin: Revisions to the Implementation Date for PCI PIN Security Requirement 18-3 delays Key Block Phase 2 & 3 two years https://www.pcisecuritystandards.org/pdfs/Key%20Block%20Implementation%20Revision%20Bulletin%20FINAL.pdf
• Conflict Over a Rental Car Leads to Elusive A.T.M. Skimming Suspect https://www.nytimes.com/2020/07/17/business/credit-card-skimmer-arrest-alaska.html
• Diebold Nixdorf warns of a new class of ATM 'black box' attacks across Europe https://www.zdnet.com/article/diebold-nixdorf-warns-of-a-new-class-of-atm-black-box-attacks-across-europe
• Update on Click2Gov incident in Palm Bay https://www.databreaches.net/update-on-click2gov-incident-in-palm-bay/

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.

• Leaked Details of 142 Million MGM Hotel Guests Found for Sale on Dark Web https://threatpost.com/leaked-details-142-million-mgm-hotel-guests/157402/
• Breached Data Indexer ‘Data Viper’ Hacked https://krebsonsecurity.com/2020/07/breached-data-indexer-data-viper-hacked/
• Hack of 251 Law Enforcement Websites Exposes Personal Data of 700,000 Cops https://theintercept.com/2020/07/15/blueleaks-anonymous-ddos-law-enforcement-hack/

• Just Doh!

  • No-Log VPNs Exposed Users’ Logs and Personal Details for All to See https://www.databreaches.net/no-log-vpns-exposed-users-logs-and-personal-details-for-all-to-see/
  • Seven 'no log' VPN providers accused of leaking – yup, you guessed it – 1.2TB of user logs onto the internet https://www.theregister.com/2020/07/17/ufo_vpn_database/
• Collabera hacked: IT staffing'n'services giant hit by ransomware, employee personal data stolen https://www.theregister.com/2020/07/14/collabera_ransomware/
• US actor casting company leaked private data of over 260,000 individuals https://www.zdnet.com/article/us-actor-casting-company-leaked-private-data-of-over-260000-individuals
• University of Lethbridge reveals details regarding privacy breach at health centre https://globalnews.ca/news/7181967/privacy-breach-university-lethbridge-health-centre/
• LiveAuctioneers Confirms Breach After Records Posted for Sale https://www.databreachtoday.com/liveauctioneers-confirms-breach-after-records-posted-for-sale-a-14619
• Citrix denies dark web claim of network compromise and ransomware attack https://www.theregister.com/2020/07/15/citrix_denies_new_network_compromise/

• Follow-ups:

  • Wattpad - 268,765,495 breached accounts from June on HIBP https://haveibeenpwned.com/PwnedWebsites#Wattpad
  • Arkansas state vendor sued over data breach https://www.databreaches.net/arkansas-state-vendor-sued-over-data-breach/

Privacy

Articles about privacy related news, risks, and trends.

• EFF’s new database reveals what tech local police are using to spy on you https://www.zdnet.com/article/effs-new-database-shows-you-what-tech-local-police-are-using-to-spy-on-you
• A New Map Shows the Inescapable Creep of Surveillance https://www.wired.com/story/atlas-of-surveillance-eff-law-enforcement-map
• Former Belleville nurse charged with 69 counts of using personal health information https://globalnews.ca/news/7175567/belleville-nurse-personal-health-information/
• Walmart Sued Under CCPA After Data Breach https://www.databreaches.net/walmart-sued-under-ccpa-after-data-breach/

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

• The National Initiative for Cybersecurity Education (NICE) released a draft revision to NIST Special Publication 800-181, the Workforce Framework for Cybersecurity (NICE Framework) for comment until Aug 28 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-181r1-draft.pdf
• Top Court in Europe Invalidates EU-U.S. Privacy Shield, Citing Lack of Privacy Safeguards and Overbroad U.S. Surveillance Laws https://epic.org/2020/07/breaking-top-court-in-europe-i.html
• Privacy Shield binned after EU court rules transatlantic data protection arrangements 'inadequate' https://www.theregister.com/2020/07/16/privacy_shield_struck_down/
• CIA received more offensive hacking powers in 2018 https://www.zdnet.com/article/report-cia-received-more-offensive-hacking-powers-in-2018
• The TLS 1.2 Deadline is Looming, Do You Have Your Act Together? https://threatpost.com/riskrecon-the-tls-1-2-deadline-is-looming-do-you-have-your-act-together/157296/
• Google Objects To Belgian Regulator’s Fine Over Privacy Violations https://www.pymnts.com/google/2020/google-objects-belgian-regulator-fine-over-privacy-violations/
• Tesla's 'Autopilot' misleading, Germany rules https://www.bbc.co.uk/news/technology-53418069

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

• Enterprise Data Security: It’s Time to Flip the Established Approach https://threatpost.com/enterprise-data-security-flip-established-approach/157524/
• Just Collect Less Data, Period. https://www.nytimes.com/2020/07/15/technology/just-collect-less-data-period.html
• Google joins AWS and Microsoft in a new way to encrypt cloud data that 'father of the Internet' Vint Cerf says could be a 'game changer' https://www.businessinsider.com/google-confidential-computing-vms-assured-workloads-2020-7
• Chrome 84 released with support for blocking notification popups on spammy sites https://www.zdnet.com/article/chrome-84-released-for-blocking-notification-popups-on-spammy-sites
• Mozilla’s VPN launches out of beta on Windows and Android https://www.theverge.com/2020/7/15/21325316/mozilla-vpn-android-windows-launch-firefox-private-network-price
• This device keeps Alexa and other voice assistants from snooping on you https://arstechnica.com/information-technology/2020/07/this-device-keeps-alexa-and-other-voice-assistant-from-snooping-on-you/
• NSA on Securing VPNs https://www.schneier.com/blog/archives/2020/07/nsa_on_securing.html
• Kaspersky Anti-Ransomware review: A free tool that actually works https://www.androidcentral.com/kaspersky-anti-ransomware-review
• Cyberbullying ‘shield’ app uses AI to combat social media trolls https://scienmag.com/cyberbullying-shield-app-uses-ai-to-combat-social-media-trolls/
• How to Check Your Devices for Stalkerware https://www.wired.com/story/how-to-check-for-stalkerwareCan the exfiltration of personal data by web trackers be stopped? https://freedom-to-tinker.com/2020/07/14/can-the-exfiltration-of-personal-data-by-web-trackers-be-stopped/

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

• A pair of severity 10 vulnerabilities:

  • Wormable RCE in Windows DNS server CVSS 10 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1350
  • Rare: DHS CISA tells government agencies to patch Windows Server DNS bug within 24h https://www.zdnet.com/article/dhs-cisa-tells-government-agencies-to-patch-windows-server-dns-bug-within-24h/
  • RECON bug lets hackers create admin accounts on SAP servers https://www.zdnet.com/article/recon-bug-lets-hackers-create-admin-accounts-on-sap-servers
• Cisco Investigating Report of Vulnerability Found in Counterfeit Switches https://www.securityweek.com/cisco-investigating-report-vulnerability-found-counterfeit-switches
• Adobe Discloses Critical Code-Execution Bugs in July Update https://threatpost.com/adobe-critical-code-execution-bugs-july/157420/
• Home router warning: They're riddled with known flaws and run ancient, unpatched Linux https://www.zdnet.com/article/home-router-warning-theyre-riddled-with-known-flaws-and-run-ancient-unpatched-linux/
• “Knock codes” for smartphone security are easily predicted, researchers say https://scienmag.com/knock-codes-for-smartphone-security-are-easily-predicted-researchers-say/
• Chrome 84 Brings 38 Security Patches, Resumes CSRF Protection Rollout https://www.securityweek.com/chrome-84-brings-38-security-patches-resumes-csrf-protection-rollout?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Securityweek+%28SecurityWeek+RSS+Feed%29
• Firefox on Android: Camera remains active when phone is locked or the user switches apps https://www.zdnet.com/article/firefox-on-android-camera-remains-active-when-phone-is-locked-or-the-user-switches-apps
• Vulnerabilities Impact Multiple Rittal Products Due to Use of Same Firmware https://www.securityweek.com/vulnerabilities-impact-multiple-rittal-products-due-use-same-firmware?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Securityweek+%28SecurityWeek+RSS+Feed%29
• Ew, that's unsanitary: SEO plugin for WordPress would run arbitrary JavaScript inputs instead of scrubbing them https://www.theregister.com/2020/07/17/all_in_one_seo_pack_javascript_sanitisation_vuln/
• Zoom Addresses Vanity URL Zero-Day https://threatpost.com/zoom-vanity-url-zero-day/157510/

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

• Russian hackers have been accused of targeting covid-19 vaccine researchers https://www.technologyreview.com/2020/07/16/1005336/russian-hackers-have-been-accused-of-targeting-covid-19-vaccine-researchers/
• CIA behind APT34 and FSB hacks and data dumps https://www.zdnet.com/article/report-cia-behind-apt34-and-fsb-hacks-and-data-dumps/
• Malware stashed in China-mandated software is more extensive than thought https://arstechnica.com/information-technology/2020/07/malware-stashed-in-china-mandated-software-is-more-extensive-than-thought/ and https://arstechnica.com/information-technology/2020/07/malware-stashed-in-china-mandated-software-is-more-extensive-than-thought/
• Israeli Water Infrastructure Hit Again by Cyberattacks https://www.databreaches.net/israeli-water-infrastructure-hit-again-by-cyberattacks/
• The Pandemic Is Driving Crooks Online https://www.pymnts.com/news/payments-innovation/2020/the-pandemic-is-driving-crooks-online-too/
• ‘DDoS-For-Hire’ Is Fueling a New Wave of Attacks https://www.wired.com/story/ddos-for-hire-fueling-new-wave-attacks
• Iranian cyberspies leave training videos exposed online https://www.zdnet.com/article/iranian-cyberspies-leave-training-videos-exposed-online
• New BlackRock Android malware can steal passwords and card data from 337 apps https://www.zdnet.com/article/new-blackrock-android-malware-can-steal-passwords-and-card-data-from-337-applications
• Hacker behind Ripoff Report extortion attempt extradited to the US https://www.zdnet.com/article/hacker-behind-ripoff-report-extortion-attempt-extradited-to-the-us
• Russian Hacker Convicted for Social Network Hacks https://www.darkreading.com/attacks-breaches/russian-hacker-convicted-for-social-network-hacks/d/d-id/1338339

Other Security / Risk

Articles covering other types of risks.

• COVID-19 Other risks and impact:

  • Phase out CERB payments, improve COVID-19 spending transparency, Senate report says https://globalnews.ca/news/7174236/phase-out-cerb-improve-transparency-senate/
  • 85% of Canadians believe fraudulent CERB users should be fined https://globalnews.ca/news/7178681/canada-cerb-coronavirus-fines-poll/
  • Retail’s Responses And Adaptations To The Pandemic https://www.pymnts.com/today-in-data/2020/retails-responses-and-adaptations-to-the-pandemic/
  • Mall Parking Lots Now Revenue Streams For Owners https://www.pymnts.com/real-estate/2020/mall-parking-lots-now-revenue-streams-for-owners/
  • Some SMBs Close Permanently After Being Told To Shut Down A Second Time https://www.pymnts.com/economy/2020/some-smbs-close-permanently-after-being-told-to-shut-down-a-second-time/
  • You’re Doomscrolling Again. Here’s How to Snap Out of It. https://www.nytimes.com/2020/07/15/technology/personaltech/youre-doomscrolling-again-heres-how-to-snap-out-of-it.html
  • XKCD's take on COVID risks https://xkcd.com/2333/
• The Anatomy of a Cisco Counterfeit Shows Its Dangerous Potential https://www.wired.com/story/counterfeit-cisco-switch-teardown
• Largest-Ever Study of Carbon Pricing Confirms It Does Reduce Emissions After All https://www.sciencealert.com/carbon-pricing-definitely-works-confirms-huge-study
• World population to peak in 2064, new projections suggest https://globalnews.ca/news/7178792/world-population-peak-2064/
• Arm-based Macs: Smart move for Apple, but irrelevant to the future of Windows PCs https://www.zdnet.com/article/arm-based-macs-smart-move-for-apple-but-irrelevant-to-the-future-of-windows-pcs/
• Rare 4 rotor enigma machine for sale https://www.schneier.com/blog/archives/2020/07/enigma_machine_1.html
• Cambridge student rebuilds Polish Enigma-code-breaking box that paved the way for Turing ... and Victory! https://www.theregister.com/2020/07/15/enigma_cracking_cyclometer_recreated/
• YouTube bias exposed by 'TheirTube' project that shows how platform looks to conspiracy theorists https://www.independent.co.uk/life-style/gadgets-and-tech/news/youtube-bias-algorithm-theirtube-mozilla-conspiracy-theory-videos-a9624936.html
• 'Almost certain' Russians sought to interfere in 2019 UK election https://www.bbc.co.uk/news/uk-politics-53433523
• The UK says it will remove Huawei from its 5G network by 2027 because of 'game-changer' US sanctions https://www.businessinsider.com/uk-government-announces-plan-to-remove-huawei-from-uk-5g-2020-7
• AI's imitating text: Facts about whales https://aiweirdness.com/post/623543644426829825

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

• Watch the Incredible Plume of Dust from Africa Cross the Entire Atlantic Ocean https://www.universetoday.com/146961/watch-the-incredible-plume-of-dust-from-africa-cross-the-entire-atlantic-ocean/
• Giant Iceberg Has Been Sailing the Southern Seas for Three Years Now https://www.universetoday.com/146952/this-giant-iceberg-has-been-sailing-the-southern-seas-for-three-years-now/
• The new tattoo: Drawing electronics on skin https://scienmag.com/the-new-tattoo-drawing-electronics-on-skin/
• Converting female mosquitoes to non-biting males with implications for mosquito control https://scienmag.com/converting-female-mosquitoes-to-non-biting-males-with-implications-for-mosquito-control/
• Grant Imahara: Mythbusters TV host dies suddenly at 49 https://www.bbc.co.uk/news/entertainment-arts-53401026
• Penn and Teller call Edmonton escape artist’s routine ‘perfect’ https://globalnews.ca/news/7188774/penn-and-teller-edmonton-escape-artist/
• Go Yell It on the Mountain: Iceland Will Blast Your Scream Into the Wilderness https://www.mentalfloss.com/article/626601/go-yell-it-mountain-iceland-will-blast-your-scream-wilderness
• 10 Strange Weapons Invented During World War II https://www.mentalfloss.com/article/626561/strange-weapons-world-war-ii
• Historic Moon Landing Footage Has Been Enhanced by AI, And The Results Are Incredible https://www.sciencealert.com/watch-this-old-apollo-footage-get-upgraded-into-a-60-fps-masterpiece
• Despite reports, NASA didn't change the zodiac signs https://nasa.tumblr.com/post/150688852794/zodiac
• How Would We Do Surgery in Space? https://www.universetoday.com/146995/how-would-we-do-surgery-in-space/
• 15 Different Ideas for Rovers That Could Explore Venus https://www.universetoday.com/147012/15-different-ideas-for-rovers-that-could-explore-venus/
• For The First Time Ever, Astronomers Have Witnessed a Black Hole 'Blink' https://www.sciencealert.com/for-the-first-time-we-ve-seen-a-black-hole-blink
• Astronomers Have Mapped Out an Enormous Structure in the Universe Called the South Pole Wall https://www.universetoday.com/146980/astronomers-have-mapped-out-an-enormous-structure-in-the-universe-called-the-south-pole-wall/
• The universe's clock might have bigger ticks than we imagine https://www.livescience.com/what-are-smallest-ticks-of-time.html