This Week’s [in]Security – Issue 151

Welcome to This Week’s [in]Security. Trending: Coronavirus updates. PCI Updates: Large Organizations Guidance, Mandatory FAQs, QSA qualifications. European Cybersecurity Center. Crypto-Credit Card. Breaches: MGM (10M), Tetrad (120M), Japanese Defense, US DISA, Canadian Government, Quebec, and 9 more. Gas Pipeline ransomware. Unencrypted laptops. Citrix fallout. Insider risk. Google sued over student data. Ring Door Bells Privacy and Law Enforcement. Law Enforcement and facial recognition. FitBit sale. Policy vs Technology essay. UK privacy protections under Google. Nexus Passes up in Smoke. Wells Fargo $3B fine. Huawei ban upheld. Rethinking IoT. Passphrases. Phishing. Oversharing tool. Election Security. Vulnerabilities 22K in 2019, Cisco, AWS, PHP, Medical devices and satellites. Trojans in Neural Nets. 55M credentials stuffed. Extortion by Google ban. VPN hacks. Assange extradition case. Tainted Wallets and crypto karma. Cybersecurity vacancies. Tech waste. Auditor oversight. RSA sale. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

New - Emerging Issues and Trending Stories

This special section is dedicated to emerging issues and trending stories that cross multiple of our regular news categories.

• The Coronavirus continues to make news:

  • WHO Warns: We're Losing The Window to Contain The Coronavirus Outbreak https://www.sciencealert.com/who-warns-we-are-losing-the-opportunity-to-contain-the-coronavirus-outbreak
  • Death toll from COVID-19 rises to 1,868, according to latest figures from China https://globalnews.ca/news/6561798/china-novel-coronavirus-deaths-february-2020/
  • A Person Can Carry And Transmit COVID-19 Without Showing Symptoms https://www.sciencealert.com/researchers-confirmed-patients-can-transmit-the-coronavirus-without-showing-symptoms
  • Misinformation may make disease outbreaks worse https://www.cbc.ca/news/technology/misinformation-disease-outbreaks-1.5463297
  • How the 'failed' quarantine of the Diamond Princess cruise ship started with 10 coronavirus cases and ended with more than 630 https://www.businessinsider.com/how-diamond-princess-cruise-ship-coronavirus-quarantine-went-wrong-2020-2
  • Floating Petri dishes? Coronavirus puts cruise industry in the dock https://www.ctvnews.ca/world/floating-petri-dishes-coronavirus-puts-cruise-industry-in-the-dock-1.4823919
  • How the Coronavirus Revealed Authoritarianism’s Fatal Flaw https://www.theatlantic.com/technology/archive/2020/02/coronavirus-and-blindness-authoritarianism/606922/

PCI Compliance and Payments

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud.

• PCI Updates:

  • New Guidance Article: PCI DSS for Large Organizations https://blog.pcisecuritystandards.org/new-guidance-pci-dss-for-large-organizations
  • SIG Guidance Paper: PCI DSS for Large Organizations https://www.pcisecuritystandards.org/documents/PCI_DSS_for_Large_Organizations_v1.pdf
  • PTS PIN V3 Technical Frequently Asked Questions https://www.pcisecuritystandards.org/documents/PTS_PIN_Technical_FAQs_v3_Feb%202020.pdf
  • PTS HSM v3 Technical Frequently Asked Questions https://www.pcisecuritystandards.org/documents/PTS_HSM_Technical_FAQs_v3_Feb_2020.pdf
  • FAQs for Card Production Security Requirements https://www.pcisecuritystandards.org/documents/Card_Prod_Security_Rqrmts_FAQs_v2_Feb_2020.pdf
  • Updated Qualification Requirements for QSA's https://www.pcisecuritystandards.org/documents/QSA_Qualification_Requirements_v3.1_Feb_2020.pdf and https://www.pcisecuritystandards.org/documents/QSA_Qualification_Requirements_Appendix_D_protected__v3.1.docx
• Mastercard Introduces European Cybersecurity Center https://www.pymnts.com/news/security-and-risk/2020/mastercard-introduces-european-cybersecurity-center/
• Visa Grants Coinbase Power To Issue Bitcoin Debit Cards https://www.forbes.com/sites/michaeldelcastillo/2020/02/19/visa-grants-coinbase-power-to-issue-bitcoin-debit-cards/

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.

• Details of 10.6 million MGM hotel guests with data going back to 2016 posted on a hacking forum https://www.zdnet.com/article/exclusive-details-of-10-6-million-of-mgm-hotel-guests-posted-on-a-hacking-forum/
• MGM Resorts Says Data Breach Exposed Some Guests’ Personal Information https://www.nytimes.com/2020/02/19/us/mgm-data-breach.html
• Household Names: How Tetrad Exposed Data on 120 Million Consumers https://www.databreaches.net/household-names-how-tetrad-exposed-data-on-120-million-consumers/
• Major Japanese Defense Contractors Admit to Data Breach Incidents Dating Back to Over Four Years Ago https://www.databreaches.net/major-japanese-defense-contractors-admit-to-data-breach-incidents-dating-back-to-over-four-years-ago/
• Data Breach At US Defense Agency Compromised Personal Info https://www.pymnts.com/news/security-and-risk/2020/data-breach-at-us-defense-agency-compromised-personal-info/
• Canadian Government Breaches Exposed Citizens' Data https://www.bankinfosecurity.com/canadian-government-breaches-exposed-citizens-data-report-a-13739
• Personal information of nearly 360,000 Quebec teachers exposed in data breach https://www.databreaches.net/personal-information-of-nearly-360000-quebec-teachers-exposed-in-data-breach/
• Handshake security breach affects thousands of university students https://www.databreaches.net/handshake-security-breach-affects-thousands-of-university-students/
• Personal health information of nearly 2,900 Queen’s patients sent to wrong email address https://www.databreaches.net/personal-health-information-of-nearly-2900-queens-patients-sent-to-wrong-email-address/
• Celeb Shout-Out App Cameo Exposes Private Videos and User Data https://www.databreaches.net/celeb-shout-out-app-cameo-exposes-private-videos-and-user-data/
• Slickwraps Appears to have Suffered a Massive Data Breach https://www.databreaches.net/slickwraps-suffered-a-massive-data-breach-updated-yep/
• Ste-Justine hospital employee fired after patient files consulted without authorization https://www.databreaches.net/ste-justine-hospital-employee-fired-after-patient-files-consulted-without-authorization/
• Hack Of Patient Survey Firm NRC Health Raises Questions Over US Records Security https://www.pymnts.com/news/security-and-risk/2020/hack-of-patient-survey-firm-nrc-health-raises-questions-over-us-records-security/
• Data breach at Monroe County Hospital & Clinics results in notification to 7,500 patients https://www.databreaches.net/data-breach-at-monroe-county-hospital-clinics-results-in-notification-to-7500-patients/
• Information about 69,000 Phoenix pay system victims sent in error https://www.databreaches.net/information-about-69000-phoenix-pay-system-victims-sent-in-error/
• NY: East House Provides Notice Of Data Privacy Event https://www.databreaches.net/ny-east-house-provides-notice-of-data-privacy-event/
• U.S. Government Issues Powerful Cyberattack Warning As Gas Pipeline Forced Into Two Day Shut Down https://www.forbes.com/sites/kateoflahertyuk/2020/02/19/us-government-issues-powerful-cyberattack-warning-as-gas-pipeline-forced-into-two-day-shut-down/
• Facilities Maintenance Firm Recovering From Malware Attack https://www.bankinfosecurity.com/maintenance-services-firm-hit-by-malware-attack-a-13747
• City of Wayne, Nebraska hit by ransomware attack https://www.databreaches.net/city-of-wayne-nebraska-hit-by-ransomware-attack/
• When the air gap is the space between the ears: A natural gas plant let ransomware spread from office IT to ops https://www.theregister.co.uk/2020/02/19/dhs_confirms_ransomware_attack/

• Have I Been Pwned added breached credentials from:

  • MGM Resorts - 3,081,321 breached accounts https://haveibeenpwned.com/PwnedWebsites#MGM
  • Slickwraps - 857,611 breached accounts ADDED TO HIBP https://haveibeenpwned.com/PwnedWebsites#Slickwraps
• University of Saskatchewan hit with cyberattack https://www.cbc.ca/news/canada/saskatoon/u-of-s-cyber-security-threat-1.5463258
• Laptops are still being stolen from unattended vehicles. So why are they still unencrypted? https://www.databreaches.net/laptops-are-still-being-stolen-from-unattended-vehicles-so-why-are-they-still-unencrypted/
• Hackers Were Inside Citrix for Five Months https://krebsonsecurity.com/2020/02/hackers-were-inside-citrix-for-five-months/
• 97% of IT leaders majorly concerned by insider data breaches https://www.information-age.com/it-leaders-majorly-concerned-insider-data-breaches-123487769/

Privacy

Articles about privacy related news, risks, and trends.

• Privacy Experts Skeptical of Proposed Data Protection Agency https://threatpost.com/privacy-experts-skeptical-of-proposed-data-protection-agency/152861/
• Lawsuit Claims Google Collects Minors’ Locations, Browsing History https://threatpost.com/lawsuit-claims-google-collects-minors-locations-browsing-history/153134/
• Google Denies Harvesting Student Data With Free Chromebooks https://www.zdnet.com/article/google-denies-claims-that-free-school-chromebooks-are-harvesting-student-data/
• New Mexico Sues Google Over Children’s Privacy Violations for collecting student data through Chromebooks https://www.nytimes.com/2020/02/20/technology/new-mexico-google-lawsuit.html and https://www.theverge.com/2020/2/20/21145698/google-student-privacy-lawsuit-education-schools-chromebooks-new-mexico-balderas

• Ring Door Bells Privacy and Law Enforcement:

  • Ring Updates Device Security and Privacy—But Ignores Larger Concerns https://www.eff.org/deeplinks/2020/02/ring-updates-device-security-and-privacy-ignores-larger-concerns
  • What Canada can learn from this Michigan city's use of doorbell cameras to catch criminals https://www.cbc.ca/news/technology/livonia-michigan-windsor-ontario-ring-doorbell-1.5464761
  • Your Doorbell Camera Spied on You. Now What? https://www.nytimes.com/2020/02/19/technology/personaltech/ring-doorbell-camera-spying.html
  • Ring cameras can help you spy on your neighbors, but they haven’t really helped police https://www.theverge.com/2020/2/17/21141336/amazon-ring-cameras-spy-neighbors-police-nbc-news-intelligencer

• Widespread issue of law enforcement and facial recognition:

  • Alberta's privacy commissioner joins national investigation of facial recognition technology https://www.cbc.ca/news/canada/edmonton/privacy-clearview-alberta-1.5472526
  • Leaked Reports Show EU Police Are Planning a Pan-European Network of Facial Recognition Databases https://theintercept.com/2020/02/21/eu-facial-recognition-database/
  • In FOIA Case, EPIC Obtains Details on State Department's Facial Recognition Program https://epic.org/2020/02/in-foia-case-epic-obtains-deta.html
• Google’s Bid For Fitbit Prompts Warning From EU Over Data Privacy https://www.pymnts.com/news/partnerships-acquisitions/2020/googles-bid-for-fitbit-prompts-warning-from-eu-over-data-privacy/
• Google Just Gave Millions Of Users A Reason To Quit Chrome https://www.forbes.com/sites/gordonkelly/2020/02/23/google-chrome-80-upgrade-deep-linking-update-chrome-browser/
• How your browser protects your privacy https://www.theverge.com/2020/2/20/21136728/browser-privacy-protection-features-safety-how-to-data-edge-safari-chrome
• Privacy is going to kill advertising as we know it. No one seems to know where the industry goes from here https://www.businessinsider.com/what-google-third-party-cookies-end-means-for-advertising-2020-2

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

• Policy vs Technology https://www.schneier.com/blog/archives/2020/02/policy_vs_techn.html
• UK Google Users Will Be Under US, Not EU Privacy Protections https://www.pymnts.com/news/international/2020/uk-google-users-will-be-under-u-s-not-eu-privacy-protections/
• U.S. Lawmakers To Introduce Bill That Threatens Encryption On Tech Platforms https://www.reuters.com/article/us-usa-technology-encryption-idUSKBN20F1ZP
• Barr Questions Whether Facebook, Others Should Be Immune To Lawsuits https://www.pymnts.com/facebook/2020/barr-questions-whether-facebook-others-should-be-immune-to-lawsuits/
• EFF to Ninth Circuit: Border Searches of Electronic Devices Require a Warrant https://www.eff.org/deeplinks/2020/02/eff-ninth-circuit-border-searches-electronic-devices-require-warrant
• CBC Leads Call for New Government Regulations to Support “Trusted” News Sources http://www.michaelgeist.ca/2020/02/cbc-leads-call-for-new-government-regulations-to-support-trusted-news-sources/
• Canadians can lose Nexus passes over legal cannabis use in Canada https://globalnews.ca/news/6536982/nexus-pass-cannabis-canada/
• US government fines Wells Fargo $3 billion for its 'staggering' fake-accounts scandal https://www.cnn.com/2020/02/21/business/wells-fargo-settlement-doj-sec/index.html
• Huawei Loses Legal Challenge Against US Federal Purchase Ban https://www.securityweek.com/huawei-loses-legal-challenge-against-us-federal-purchase-ban
• More civil liability for privacy complaints in Ontario after landmark case https://www.lawtimesnews.com/practice-areas/privacy-and-data/more-civil-liability-for-privacy-complaints-in-ontario-after-landmark-case/326471
• Entering the ’20s – A New Era for Data Breach Class Actions? https://www.databreaches.net/entering-the-20s-a-new-era-for-data-breach-class-actions/
• Email Scam Victim Sues Bank Claiming Lack Of Fraud Protection https://www.pymnts.com/news/security-and-risk/2020/email-scam-victim-sues-bank-claiming-lack-of-fraud-protection/

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

• IoT security is bad. It's time to take a different approach. https://www.zdnet.com/article/iot-security-is-bad-its-time-to-take-a-different-approach/
• The FBI Wants You To Use Passphrases https://www.forbes.com/sites/daveywinder/2020/02/22/the-fbi-wants-you-to-stop-using-passwords-and-do-this-instead/
• Hackers are getting better at tricking people into handing over passwords - here's what to look out for https://www.businessinsider.com/phishing-scams-getting-more-sophisticated-what-to-look-out-for-2020-2
• This tool reveals which of your favorite apps are sharing way too much data https://www.fastcompany.com/90460410/this-tool-reveals-which-of-your-favorite-apps-are-sharing-way-too-much-data
• Android 11: Google Takes On Apple With These Killer Security And Privacy Features https://www.forbes.com/sites/kateoflahertyuk/2020/02/20/android-11-google-takes-on-apple-with-these-killer-security-and-privacy-features/
• Google exiles 600 apps from Play Store for 'disruptive advertising' amid push to clean up Android souk's image https://www.theregister.co.uk/2020/02/21/google_nixes_android_apps/
• Ring Mandates 2FA After Rash of Hacks https://threatpost.com/ring-mandates-2fa-hacks/152971/
• OpenSSH now supports FIDO U2F security keys for 2-factor authentication https://thehackernews.com/2020/02/openssh-fido-security-keys.html
• A Post-Quantum Non-Interactive Key-Exchange Protocol https://eprint.iacr.org/2020/206
• Imperva Launches the Cyber Threat Index https://www.imperva.com/blog/cyberthreatindex/
• Forensics: The Missing LNK — Correlating User Search LNK files https://www.fireeye.com/blog/threat-research/2020/02/the-missing-lnk-correlating-user-search-lnk-files.html
• Cybersecurity Plan for 2020 US Election Unveiled https://www.bankinfosecurity.com/cybersecurity-plan-for-2020-us-election-unveiled-a-13732
• Elections Canada reports no serious cyberthreats to last fall's federal election https://www.cbc.ca/news/politics/elections-canada-report-oct-21-1.5467027
• Kingston IronKey D300 encrypted USB flash drive gets NATO Restricted Level certification https://www.zdnet.com/article/kingston-ironkey-d300-encrypted-usb-flash-drive-gets-nato-restricted-level-certification/
• NATO Information Assurance Product Catalog https://www.ia.nato.int/NIAPC/
• The 2020 NICE K12 Cybersecurity Education Conference will be held in St. Louis on December 7-8, 2020 https://content.govdelivery.com/accounts/USNIST/bulletins/27c779f

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

• 44% of Security Threats Start in the Cloud https://www.darkreading.com/cloud/44--of-security-threats-start-in-the-cloud/d/d-id/1337088
• Over 22,000 Vulnerabilities Disclosed in 2019 https://www.securityweek.com/over-22000-vulnerabilities-disclosed-2019-report
• Oi, Cisco! Who left the 'high privilege' login for Smart Software Manager just sitting out in the open? https://www.theregister.co.uk/2020/02/19/cisco_february_fixes/
• U.S. Government Says Update Chrome 80 As High-Rated Security Flaws Found https://www.forbes.com/sites/daveywinder/2020/02/22/google-chrome-80-security-warning-us-government-says-update-again/
• Hacking AWS Cognito Misconfigurations https://www.notsosecure.com/hacking-aws-cognito-misconfigurations/
• PHP Remote Code Execution 0-Day Discovered in Real World Capture the Flag Exercise https://lab.wallarm.com/php-remote-code-execution-0-day-discovered-in-real-world-ctf-exercise/
• BlueKeep Flaw Plagues Outdated Connected Medical Devices https://threatpost.com/bluekeep-flaw-plagues-medical-devices/153029/
• Why fixing security vulnerabilities in medical devices, IoT is so hard https://arstechnica.com/information-technology/2020/02/medical-device-vulnerability-highlights-problem-of-third-party-code-in-iot-devices/
• Hackers Could Shut Down Satellites--or Turn Them into Weapons https://theconversation.com/hackers-could-shut-down-satellites-or-turn-them-into-weapons-130932
• Neural Network Trojans are a Thing https://eprint.iacr.org/2020/201
• The Trouble with Free and Open Source Software https://www.darkreading.com/vulnerabilities---threats/the-trouble-with-free-and-open-source-software/d/d-id/1337082
• The Basics of Exploit Development 1: Win32 Buffer Overflows https://www.coalfire.com/The-Coalfire-Blog/January-2020/The-Basics-of-Exploit-Development-1

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

• Fraudulent Login Attacks Against Banks Surge (55m credentials stuffed) https://www.securityweek.com/fraudulent-login-attacks-against-banks-surge-akamai
• FC Barcelona Suffers Likely Credential-Stuffing Attack on Twitter https://threatpost.com/fc-barcelona-credential-stuffing-twitter/152994/
• Pay Up, Or We’ll Make Google Ban Your Ads https://krebsonsecurity.com/2020/02/pay-up-or-well-make-google-ban-your-ads/
• Iranian hackers have been hacking VPN servers to plant backdoors in companies around the world https://www.zdnet.com/article/iranian-hackers-have-been-hacking-vpn-servers-to-plant-backdoors-in-companies-around-the-world/
• New fraud scam involves encoding cardholder data in a bar code and abusing card not present rules https://krebsonsecurity.com/2020/02/encoding-stolen-credit-card-data-on-barcodes/
• 20,000 WordPress Websites Infected via Trojanized Themes https://www.securityweek.com/20000-wordpress-websites-infected-trojanized-themes
• Latest Tax Scams Target Apps and Tax-Prep Websites https://threatpost.com/latest-tax-scam-target-apps-and-tax-prep-websites/152998/
• SMS Attack Spreads Emotet, Steals Bank Credentials https://threatpost.com/sms-attack-spreads-emotet-bank-credentials/153015/
• Chinese Hackers Have Breached Online Betting And Gambling Sites https://www.zdnet.com/article/chinese-hackers-have-breached-online-betting-and-gambling-sites/
• Hamas Ensnares Israeli Soldiers with Pretty ‘Ladies’ in Catfishing campaign https://threatpost.com/hamas-israeli-soldiers-pretty-ladies/153020/
• U.S. to lay out case, 18 charges against Julian Assange at extradition hearing https://globalnews.ca/news/6586129/julian-assange-extradition-hearing/
• US Teen Arrested Over Alleged Swatting and Cyberstalking https://www.infosecurity-magazine.com/news/us-teen-swatting-cyberstalking/
• FBI Arrests Hacker Linked to Katie Hill Campaign https://theintercept.com/2020/02/21/fbi-arrests-hacker-linked-to-katie-hill-campaign/
• Three Hackers Arrested In Ngara After Hacking Into NTSA Database https://www.databreaches.net/tz-three-hackers-arrested-in-ngara-after-hacking-into-ntsa-database/
• The $800 million Bitcoin wallet no one wants to touch https://decrypt.co/19648/the-800-million-bitcoin-wallet-no-one-wants-to-touch
• Drug dealer loses codes for €53.6m bitcoin accounts https://www.databreaches.net/drug-dealer-loses-codes-for-e53-6m-bitcoin-accounts/
• Bitcoin Whale Hacked, Losing $45 Million worth Of BTC And BCH To A SIM Swap Hacker https://www.databreaches.net/bitcoin-whale-hacked-losing-45-million-worth-of-btc-and-bch-to-a-sim-swap-hacker/

Other Security / Risk

Articles covering other types of risks.

• 1 In 3 U.S. Cybersecurity Jobs Are Vacant https://www.campussafetymagazine.com/news/1-in-3-u-s-cybersecurity-jobs-vacant/
• Ars Technicast special edition podcast, part 2: Spotting bad actors inside a company https://arstechnica.com/information-technology/2020/02/ars-technicast-special-edition-darktrace2/
• Tech Waste Is a Danger to Us All https://blogs.scientificamerican.com/blogs/observations/tech-waste-is-a-danger-to-us-all/
• Complications of measles can include hepatitis, appendicitis, and viral meningitis https://scienmag.com/complications-of-measles-can-include-hepatitis-appendicitis-and-viral-meningitis-doctors-warn/
• A Tiny Piece of Tape Tricked Teslas Into Speeding Up 50 MPH https://www.wired.com/story/tesla-speed-up-adversarial-example-mgm-breach-ransomware/
• North Carolina Facebook page labelled fake news https://www.bbc.co.uk/news/technology-51545600
• Microsoft is making it harder to use Windows 10 local accounts https://www.windowslatest.com/2020/02/22/microsoft-is-making-it-harder-to-use-windows-10-local-accounts/
• Who audits the auditor? The White House wants to redraw oversight for the Big Four https://www.businessinsider.com/why-critics-worry-changes-ppcaob-oversight-could-mean-more-fraud-2020-2
• Do We Need More Data Or More Science In Data Science? https://www.forbes.com/sites/forbestechcouncil/2020/02/20/do-we-need-more-data-or-more-science-in-data-science/
• Twitter could flag lies by politicians with 'bright orange' labels https://www.independent.co.uk/life-style/gadgets-and-tech/news/twitter-donald-trump-politicians-misinformation-labels-a9351616.html
• My smart car rental was a breeze – until I got trapped in the woods https://www.theguardian.com/technology/2020/feb/18/smart-car-gig-rental-app-trapped
• Grounded Boeing 737 MAX 8 jets’ fuel tanks contain debris https://globalnews.ca/news/6568561/boeing-737-max-8-fuel-tanks-debris/
• MADD Canada asks Ontario government to investigate reports of licence plate problems https://globalnews.ca/news/6568030/madd-canada-ontario-licence-plate-problems/
• What Does “Artificial Intelligence” Really Mean? https://www.forbes.com/sites/robtoews/2020/02/17/what-does-artificial-intelligence-really-mean/
• Did Huawei bring down Nortel? Corporate espionage, theft, and the parallel rise and fall of two telecom giants https://nationalpost.com/news/exclusive-did-huawei-bring-down-nortel-corporate-espionage-theft-and-the-parallel-rise-and-fall-of-two-telecom-giants
• Dell to Sell RSA Security Unit for $2 Billion https://www.securityweek.com/dell-sell-rsa-security-unit-2-billion

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

• Solar and Wind Power Could Ignite a Hydrogen Energy Comeback https://www.scientificamerican.com/article/solar-and-wind-power-could-ignite-a-hydrogen-energy-comeback/
• Scientists Built a Genius Device That Generates Electricity 'Out of Thin Air' https://www.sciencealert.com/scientists-generate-electricity-out-of-thin-air-with-device-that-runs-on-humidity
• Elementary: U.K.’s $36 Million Bet On Hydrogen, Explained https://www.forbes.com/sites/davidrvetter/2020/02/21/elementary-uks-36-million-bet-on-hydrogen-explained/
• You May Find Salt-Tolerant Rice Growing In The Ocean By 2021 https://www.forbes.com/sites/ariellasimke/2020/02/21/you-may-find-salt-tolerant-rice-growing-in-the-ocean-by-2021/
• Violinist plays Mahler and Gershwin as surgeons remove brain tumour https://www.cbc.ca/news/health/violinist-brain-surgery-1.5468467
• Scientists discover powerful antibiotic using AI https://www.bbc.co.uk/news/health-51586010
• Chemists use mass spectrometry tools to determine age of fingerprints https://scienmag.com/chemists-use-mass-spectrometry-tools-to-determine-age-of-fingerprints/
• Rare And Fleeting 'Ice Volcanoes' Have Been Erupting at Lake Michigan https://www.sciencealert.com/this-winter-lake-michigan-is-erupting-with-rare-and-fleeting-ice-volcanoes
• There Could be Tiny Super-Nova Powered Meteors Traveling at Close to the Speed of Light When They Hit the Atmosphere https://www.universetoday.com/145006/there-could-be-meteors-traveling-at-close-to-the-speed-of-light-when-they-hit-the-atmosphere/
• MIT Team Claims to Have Found The Best Way to Deflect Scary Earth-Bound Asteroids https://www.sciencealert.com/mit-scientists-have-figured-out-the-best-way-to-deflect-earth-bound-asteroids
• Meet the unknown female mathematician whose calculations helped discover Pluto https://www.space.com/human-computer-elizabeth-williams-pluto-discovery.html
• Pluto was discovered 90 years ago this week. Controversy about its identity rages on. https://www.businessinsider.com/pluto-discovered-90-years-ago-controversy-legacy-2020-2
• A Rare Fast Radio Burst has been Found that Actually Repeats Every 16 Days https://www.universetoday.com/144968/a-rare-fast-radio-burst-has-been-found-that-actually-repeats-every-16-days/