This Week's [in]Security - Issue 168

Welcome to This Week’s [in]Security. Fallout from US Unrest. Covid-19: Spread & Curve. Lockdown, Reopening, & The New Normal. More of the Good, Bad, and Ugly. Huge breach of dating apps. Web tracking breach. Contact tracing app problems. Implementing Privacy. Zoom blinks. NIST. DDoS. Expiring root Certificates followup. Anti-malware CPUs. Adobe, Windows 10 2004 bugs. Harvesting zero-days. Fake hacks. Crims using CAPTCHA. Vault 7 tools poorly secured. And more.

Trending news and COVID-19 updates.

The COVID related articles here fit together. Other COVID articles will appear under our normal section headings like regulations, privacy, breaches, and other risks. We have been following coronavirus risks since https://controlgap.com/blog/this-weeks-insecurity-issue-147.

• Fallout from US Unrest:

  • The ‘Absurd’ New Reality of Reporting From the US https://www.theatlantic.com/international/archive/2020/06/journalists-united-states-press-freedom/613120/
  • The Overlooked Role of Guns in the Police-Reform Debate https://www.theatlantic.com/ideas/archive/2020/06/overlooked-role-guns-police-reform-debate/613258/

• The spread and the curve:

  • Coronavirus: How many more people are dying? https://www.bbc.co.uk/news/av/53067897/coronavirus-how-many-more-people-are-dying
  • Coronavirus cases jump by a million in 1 week to reach 8 million worldwide https://globalnews.ca/news/7069397/coronavirus-cases-world-8-million/
  • Brazil added 35K case in one day and will pass 1M cases by the end of the week https://www.npr.org/sections/coronavirus-live-updates/2020/06/17/879038308/brazil-reports-big-surge-in-coronavirus-infections and https://www1.folha.uol.com.br/internacional/en/scienceandhealth/2020/06/brazil-approaches-1-million-covid-19-virus-cases.shtml
  • Ex-data official creates her own Covid-19 site that shows more cases than state reports https://www.cnn.com/2020/06/15/us/florida-coronavirus-data-dashboard/index.html
  • Fauci warned the US is still in the 'first wave' of its coronavirus outbreak as states report record cases after lifting lockdown https://www.businessinsider.com/coronavirus-fauci-us-still-first-wave-states-see-record-cases-2020-6
  • The COVID-19 Case Spike Is Not a 'Second Wave', Says WHO. There's Another Explanation https://www.sciencealert.com/coronavirus-cases-are-spiking-because-lockdown-rules-are-easing-says-who
  • Canada hits 100,000 coronavirus cases — and ‘we’re not out of the woods yet’ https://globalnews.ca/news/7029817/canada-100k-coronavirus-cases/
  • 190 new coronavirus cases, 12 deaths in Ontario; total cases at 32,744 https://globalnews.ca/news/7075308/ontario-coronavirus-cases-june-17-covid19/
  • Newfoundland and Labrador reaches zero active cases of COVID-19 https://globalnews.ca/news/7081256/0-active-cases-newfoundland-and-labrador/
  • Travellers from the UK have brought coronavirus back to New Zealand 24 days after the last confirmed case https://www.businessinsider.com/new-zealand-first-new-coronavirus-cases-24-days-from-uk-2020-6
  • Coronavirus in Beijing: 27 neighbourhoods not allowed to leave as spike continues https://www.bbc.co.uk/news/world-asia-china-53074076
  • South Africa: Restrictions ease as Covid-19 cases rise rapidly https://www.bbc.co.uk/news/world-africa-53093832
  • Coronavirus was already in Italy by December https://www.bbc.co.uk/news/world-europe-53106444

• Lockdown, reopening, and The New Normal:

  • Coronavirus: Ontario extends emergency orders until June 30 https://globalnews.ca/news/7075003/ontario-emergency-orders-june-30-coronavirus/
  • Canada-U.S. border shutdown extended to July 21 https://globalnews.ca/news/7070905/canada-us-border-shutdown-extended/
  • Coronavirus: Quarantine rules for some countries set to be relaxed https://www.bbc.co.uk/news/business-53104733

• Treatments, Testing, Triage, and Trials, and things we learned:

  • Coronavirus Antibody Tests Have a Mathematical Pitfall https://www.scientificamerican.com/article/coronavirus-antibody-tests-have-a-mathematical-pitfall/
  • US withdraws emergency use of hydroxychloroquine https://www.bbc.co.uk/news/world-us-canada-53054476
  • Coronavirus: Dexamethasone proves first life-saving drug https://www.bbc.co.uk/news/health-53061281
  • The Lancet Global Health: Estimates suggest one in five people worldwide have an underlying health condition that could increase their risk of severe COVID-19 if infected https://scienmag.com/the-lancet-global-health-estimates-suggest-one-in-five-people-worldwide-have-an-underlying-health-condition-that-could-increase-their-risk-of-severe-covid-19-if-infected/
  • Mutation could significantly increase coronavirus infection ability https://globalnews.ca/news/7070148/coronavirus-mutation-infection-study/
  • The Pandemic Broke End-of-Life Care https://www.theatlantic.com/health/archive/2020/06/palliative-care-covid-19-icu/613072/
  • SARS-CoV-2 transmission to animals: Monitoring needed to mitigate risk of hidden disease resovoirs https://scienmag.com/sars-cov-2-transmission-to-animals-monitoring-needed-to-mitigate-risk/
  • WHO hoping for coronavirus vaccine this year https://globalnews.ca/news/7084419/who-coronavirus-vaccine-hope/

• Guidance, Response and Recovery:

  • CERB to be extended by 8 weeks https://globalnews.ca/news/7070423/coronavirus-cerb-extended/
  • Home Depot outbreak uncovers problems in shopping rules amid COVID-19 https://globalnews.ca/news/7075237/coronavirus-home-depot-outbreak-shopping/

• Behaviour - the good, the bad, and the ugly:

  • A sheriff who vowed not to enforce Arizona restrictions has tested positive. https://www.washingtonpost.com/nation/2020/06/18/arizona-coronavirus-sheriff/
  • Exploiting a crisis: How cybercriminals behaved during the outbreak https://www.microsoft.com/security/blog/2020/06/16/exploiting-a-crisis-how-cybercriminals-behaved-during-the-outbreak/

• Masks, anti-maskers, and distancing:

  • California Gov. Gavin Newsom issues order requiring face coverings statewide for most indoor places https://www.businessinsider.com/california-gavin-newsom-requires-face-coverings-statewide-2020-6
  • ‘No mask, no service:’ Markham mayor calls on province to make masks mandatory indoors https://globalnews.ca/news/7072189/markham-mayor-mandatory-mask-policy/
  • US airlines may ban passengers if they don’t wear face masks https://www.theverge.com/2020/6/16/21293432/united-american-airlines-passenger-ban-face-coverings-masks
  • American Airlines passenger removed (and banned)for not wearing mask https://www.bbc.co.uk/news/world-us-canada-53091426 https://www.businessinsider.com/american-airlines-bans-pro-trump-campaigner-brandon-straka-refuse-mask-2020-6
  • Mandatory mask laws are spreading in Canada https://www.cbc.ca/news/health/mandatory-masks-1.5615728
  • Amazon using augmented reality to keep workers 2m apart during pandemic https://www.independent.co.uk/life-style/gadgets-and-tech/coronavirus-amazon-augmented-reality-social-distance-workers-a9568821.html
  • Face shields are easier to talk in, but are they safer than masks? https://globalnews.ca/news/7075262/face-shields-covid-19-coronavirus/
  • Arnold Schwarzenegger: Anyone making COVID-19 masks a political issue an ‘absolute moron’ https://globalnews.ca/news/7084217/arnold-schwarzenegger-coronavirus-masks-politicians-morons/

PCI Compliance and Payments

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud.

• A reminder about PCI DSS v4.0 Anticipated Timelines and Latest Updates https://blog.pcisecuritystandards.org/pci-dss-v4-0-anticipated-timelines-and-latest-updates

• PCI Publishes PTS v6:

  • Press Release https://www.pcisecuritystandards.org/about_us/press_releases/pr_06162020
  • Modular Secruity Requirements https://www.pcisecuritystandards.org/documents/PCI_PTS_POI_SRs_v6.pdf
  • Change summary https://www.pcisecuritystandards.org/documents/POI_Security_Requirements_v6_Summary_of_Changes_5-1_to_6-0.pdf
  • Attestation https://www.pcisecuritystandards.org/documents/PTS_Attestation_of_Validation_v1.1_Form.docx
  • Device Attestation https://www.pcisecuritystandards.org/documents/PTS_Device_Attestation_Form.docx
  • Technical FAQs https://www.pcisecuritystandards.org/documents/PTS_POI_Technical_FAQs_v6.pdf

• PCI updates NESA (Unlisted P2PE) guidance - note NESA is guidance and not part of any PCI program:

  • FAQs https://www.pcisecuritystandards.org/documents/FAQS_Assessment_Guidance_Non-listed_Encryption_Solutions.pdf
  • Information Supplement v1.1 https://www.pcisecuritystandards.org/documents/Assessment_Guidance_Non-Listed_Encryption_Solutions.pdf
• Claire's: Magecart E-Commerce Hackers Stole Card Data https://www.bankinfosecurity.com/claires-says-magecart-e-commerce-hackers-stole-card-data-a-14436
• Korean Police Launch Probe into Possible Leak of Credit Card Data https://www.databreaches.net/kr-police-launch-probe-into-possible-leak-of-credit-card-data/
• Mastercard and Visa merchant fees restrict competition, according to UK's highest court https://www.businessinsider.com/mastercard-visa-merchant-fees-breach-rules-according-to-uk-court-2020-6
• Visa On How To Make Plastic Cards Sustainable https://www.pymnts.com/visa/2020/sustainable-lifecycles-environmental-benefits-upcycled-plastic-cards/

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.

• Dating Apps Exposed 845GB of Explicit Photos, Chats, and More https://www.wired.com/story/dating-apps-leak-explicit-photos-screenshots/
• Oracle’s BlueKai tracks you across the web. Billions of records exposed. https://www.databreaches.net/oracles-bluekai-tracks-you-across-the-web-that-data-spilled-online/
• Live Event Manufacturer Reveals Employee Data Breach https://www.databreaches.net/live-event-manufacturer-reveals-employee-data-breach/
• Foodora - 582,578 breached accounts https://haveibeenpwned.com/PwnedWebsites#Foodora
• People Are Worth $1,285 on the Dark Web, New Study by Privacy Affairs Finds https://www.databreaches.net/people-are-worth-1285-on-the-dark-web-new-study-by-privacy-affairs-finds/
• Nothing fills you with confidence in an IT contractor more than hearing its staff personal records were stolen by ransomware hackers. Right, Cognizant? https://www.theregister.com/2020/06/18/cognizant_data_theft/

• Follow-ups:

  • South African bank to replace 12m cards after employees stole master key https://www.zdnet.com/article/south-african-bank-to-replace-12m-cards-after-employees-stole-master-key/ and https://www.schneier.com/blog/archives/2020/06/bank_card_maste.html

Privacy

Articles about privacy related news, risks, and trends.

• COVID-19 Contact tracing and surveillance:

  • Norway Suspends Virus-Tracing App After Privacy Concerns https://www.securityweek.com/norway-suspends-virus-tracing-app-after-privacy-concerns
  • Bracelets, Beacons, Barcodes: Wearables in the Global Response to COVID-19 https://www.eff.org/deeplinks/2020/06/bracelets-beacons-barcodes-wearables-global-response-covid-19
  • UK virus-tracing app switches to Google-Apple model https://www.bbc.co.uk/news/technology-53095336
  • Japan rolls out Microsoft-developed COVID-19 contact tracing app https://www.theverge.com/2020/6/19/21296603/japan-covid-19-contact-tracking-app-cocoa-released
  • Only 3 states have agreed to adopt Apple-Google contact tracing tech https://www.businessinsider.com/apple-google-contact-tracing-app-only-adopted-by-3-states-2020-6
  • Coronavirus tracing app not yet OK’d by privacy watchdog, but outside experts give thumbs up https://globalnews.ca/news/7081057/coronavirus-tracing-app-privacy-watchdog-experts/
  • As debate over contact tracing continues, CSE warns of foreign surveillance technology https://www.cbc.ca/news/politics/cse-military-covid-1.5585770
• Implementing Privacy in a Real World Application https://www.imperva.com/blog/implementing-privacy-in-a-real-world-application/
• Facebook Sues Developer Over Alleged Data Scraping Abuse https://www.cnet.com/news/facebook-sues-developer-over-alleged-data-scraping-abuse/

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

• Senate Republicans want to make it easier to sue tech companies for bias https://www.theverge.com/2020/6/17/21294032/section-230-hawley-rubio-conservative-bias-lawsuit-good-faith
• D.O.J. to Urge Rolling Back Legal Shield for Tech Companies https://www.nytimes.com/2020/06/17/technology/doj-to-urge-rolling-back-legal-shield-for-tech-companies.html
• Follow up: U.S. Officials 'Alarmed' by Zoom Cooperation With China https://www.securityweek.com/us-officials-alarmed-zoom-cooperation-china
• Zoom blinks - Will Offer End-to-End Encryption to All Its Users https://www.eff.org/deeplinks/2020/06/victory-zoom-will-offer-end-end-encryption-all-its-users
• NIST Webinar De-mystifying Secure Software Development Tuesday, June 23 11:00am-1:00pm https://www.nccoe.nist.gov/events/de-mystifying-secure-software-development-webinar
• NIST Publishes (SP) 1800-16 TLS Server Certificate Management Practice Guide https://csrc.nist.gov/publications/detail/sp/1800-16/final
• Russia unbans private messaging app after it 'agrees to help with extremism investigations' https://www.zdnet.com/article/russia-unbans-telegram/ and https://www.independent.co.uk/news/world/europe/telegram-russia-ban-lift-messaging-app-encryption-download-a9573181.html
• California Privacy Advocates Sue Vallejo Police Over Cell-Site Simulator https://www.eff.org/deeplinks/2020/06/california-privacy-advocates-sue-vallejo-over-cell-site-simulator
• New York City Passes New Surveillance Transparency Law https://epic.org/2020/06/new-york-city-passes-new-surve.html

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

• Academics studied DDoS takedowns and said they're ineffective, recommend patching vulnerable servers https://www.zdnet.com/article/academics-studied-ddos-takedowns-and-said-theyre-ineffective-recommend-patching-vulnerable-servers/
• More on the impending doom of expiring root CAs - the complexities of chain building and CA infrastructure https://scotthelme.co.uk/complexities-chain-building-ca-infrastructure/
• Web Content Security Cheat Sheet https://scotthelme.co.uk/csp-cheat-sheet/
• Pwned Passwords, Version 6 https://www.troyhunt.com/pwned-passwords-version-6/
• Intel will soon bake anti-malware defenses directly into its CPUs https://arstechnica.com/information-technology/2020/06/intel-will-soon-bake-anti-malware-defenses-directly-into-its-cpus/
• BlackBerry Adds Cryptojacking Protection to Optics Security Product https://www.securityweek.com/blackberry-adds-cryptojacking-protection-optics-security-product
• Scientists introduce rating system to assess quality of evidence for policy https://phys.org/news/2020-06-scientists-quality-evidence-policy.html
• Introducing the SANS Blueprint Podcast https://www.sans.org/blog/introducing-the-sans-blueprint-podcast
• Coming Soon: 'Trust Mark' Certification for IoT Devices https://www.bankinfosecurity.com/australia-developing-trust-mark-for-connected-devices-a-14459

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

• Adobe Patches 18 Critical Code Execution Flaws Across Five Products https://www.securityweek.com/adobe-patches-18-critical-code-execution-flaws-across-five-products
• Windows 10 2004 glitch: Microsoft admits bug breaks Storage Spaces, corrupts files https://www.zdnet.com/article/windows-10-2004-glitch-microsoft-admits-bug-breaks-storage-spaces-corrupts-files/
• Vulnerability In Trump Campaign App Revealed Keys And Secrets https://packetstormsecurity.com/news/view/31301/Vulnerability-In-Trump-Campaign-App-Revealed-Keys-And-Secrets.html
• 83% of Forbes 2000 Companies' Web Domains Are Poorly Protected https://www.darkreading.com/perimeter/83--of-forbes-2000-companies-web-domains-are-poorly-protected/d/d-id/1338101
• Ripple20 Bugs Put Hundreds of Millions of IoT Devices at Risk https://www.wired.com/story/ripple20-iot-vulnerabilities/
• Follow-up: Eavesdropping on Sound Using Variations in Light Bulbs https://www.schneier.com/blog/archives/2020/06/eavesdropping_o_9.html
• Security surprise: Four zero-days spotted in attacks on researchers' fake networks https://www.zdnet.com/article/security-four-zero-day-attacks-spotted-in-attacks-against-honeypot-systems/
• Samsung Blu-ray players are rebooting in a loop and nobody knows why (certificates suspected) https://www.zdnet.com/article/samsung-blu-ray-players-are-rebooting-in-a-loop-and-nobody-knows-why/

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

• Chrome extensions are 'the new rootkit' say researchers linking surveillance campaign to Israeli registrar Galcomm https://www.theregister.com/2020/06/18/chrome_browser_extensions_new_rootkit/ and https://www.cbc.ca/news/technology/google-chrome-extensions-spyware-1.5617597
• AWS said it mitigated a 2.3 Tbps DDoS attack, the largest ever https://www.zdnet.com/article/aws-said-it-mitigated-a-2-3-tbps-ddos-attack-the-largest-ever/
• The major hack alleged by Anonymous didn’t actually happen https://www.databreaches.net/the-major-hack-alleged-by-anonymous-didnt-actually-happen/
• Australian PM says nation under serious state-run 'cyber attack' – Microsoft, Citrix, Telerik UI bugs 'exploited' https://www.theregister.com/2020/06/19/australia_state_cyberattack/
• Stopping Hackers in Their Tracks https://www.databreaches.net/stopping-hackers-in-their-tracks/
• To evade detection, hackers are requiring targets to complete CAPTCHAs https://arstechnica.com/information-technology/2020/06/to-evade-detection-hackers-are-requiring-targets-to-complete-captchas/
• Google Alerts catches fake data breach notes pushing malware https://www.databreaches.net/google-alerts-catches-fake-data-breach-notes-pushing-malware/
• BEC Attacks on the C-Suite Dropped 37% in Q1 https://www.darkreading.com/attacks-breaches/bec-attacks-on-the-c-suite-dropped-37--in-q1/d/d-id/1338105
• Multiple “CIA failures” led to theft of agency’s top-secret hacking tools https://arstechnica.com/information-technology/2020/06/theft-of-top-secret-cia-hacking-tools-was-result-of-woefully-lax-security/
• ‘Vendetta’ hackers are posing as Taiwan’s CDC in data-theft campaign https://www.databreaches.net/vendetta-hackers-are-posing-as-taiwans-cdc-in-data-theft-campaign/
• Peterborough police warn of new phone scam seeking social insurance numbers https://globalnews.ca/news/7071919/peterborough-police-new-phone-scam-social-insurance-numbers/
• RCMP warn of ransomware scam after business hacked https://www.databreaches.net/rcmp-warn-of-ransomware-scam-after-business-hacked/
• FBI used Instagram, an Etsy review, and LinkedIn to identify a protestor accused of arson https://www.theverge.com/2020/6/18/21295301/philadelphia-protester-arson-identified-social-media-etsy-instagram-linkedin
• Fraudsters May Pocket $26B In Jobless Benefits https://www.pymnts.com/news/security-and-risk/2020/fraudsters-may-pocket-26b-in-jobless-benefits/
• Data Breach Extortion Campaign Relies on Ransomware Fear https://www.bankinfosecurity.com/data-breach-extortion-campaign-relies-on-ransomware-fear-a-14445
• Suspected UMPC hacker accused of stealing employee data from 65,000 UPMC employees arrested in Detroit https://www.databreaches.net/suspected-umpc-hacker-accused-of-stealing-employee-data-from-65000-upmc-employees-arrested-in-detroit/
• Schneier on last weeks Citizen Lab report on the Dark Basin hacking for hire company https://www.schneier.com/blog/archives/2020/06/new_hacking-for.html

Other Security / Risk

Articles covering other types of risks.

• COVID-19 Other risks and impact:

  • Pandemic-Related Gun Purchases Raise Suicide Risks https://www.scientificamerican.com/article/pandemic-related-gun-purchases-raise-suicide-risks/
  • Liberals to release economic ‘snapshot’ for Canada on July 8 https://globalnews.ca/news/7075388/coronavirus-liberals-economic-snapshot-july/
  • Quebec presents its economic update https://globalnews.ca/news/7084434/coronavirus-quebec-economic-update-june-19/
  • Canada’s deficit could reach $256B due to coronavirus spending https://globalnews.ca/news/7080134/coronavirus-deficit-canada-budget-officer/
  • Does CERB money play a part in driving Canada’s drug overdose crisis? https://globalnews.ca/news/7078906/cerb-canada-drug-overdose-crisis/
  • Trump says 'we won't be closing down the country again' as coronavirus cases increase in at least 14 states https://www.businessinsider.com/trump-closing-down-country-again-not-coronavirus-cases-increase-states-2020-6
• Citizen Lab and Amnesty International Uncover Spyware Operation Against Indian Human Rights Defenders https://citizenlab.ca/2020/06/citizen-lab-amnesty-international-uncover-spyware-operation-against-indian-human-rights-defenders/
• Researchers uncover six-year Russian misinformation campaign across Facebook and Reddit https://www.theverge.com/2020/6/16/21292982/russian-troll-campaign-facebook-reddit-twitter-misinformation
• This Is How Democracy Dies https://www.theatlantic.com/international/archive/2020/06/maria-ressa-rappler-philippines-democracy/613102/
• Weeks After PTSD Settlement, Facebook Moderators Ordered to Spend More Time Viewing Online Child Abuse https://theintercept.com/2020/06/18/facebook-moderator-ptsd-settlement-accenture/
• Twitter removes 170,000 China-linked accounts spreading disinformation https://www.cbc.ca/news/technology/twitter-china-removing-disinformation-1.5610073
• Facebook to let users turn off political adverts https://www.bbc.co.uk/news/business-53074995
• US-China trade war takes toll on their global competitiveness https://www.bbc.co.uk/news/business-53060436
• US-China row moves underwater in cable tangle https://www.bbc.co.uk/news/world-asia-53088302
• Canadians Michael Kovrig, Michael Spavor formally charged by China for alleged espionage https://globalnews.ca/news/7083874/michael-kovrig-spavor-charged-china/
• Opinion: Don’t Believe the China Hype https://www.theatlantic.com/international/archive/2020/06/united-states-china-power-influence/612961/
• Robots will take 50 million jobs in the next decade. These are the skills you'll need to stay employed https://www.zdnet.com/article/robots-will-take-50-million-jobs-in-the-next-decade-these-are-the-skills-youll-need-to-stay-employed/
• Smart speakers risk creating 'big-tech monopoly' in homes https://www.theguardian.com/media/2020/jun/16/smart-speakers-risk-creating-big-tech-monopoly-in-homes
• On Social Media, Who's a Bot? Who's Not? https://www.nytimes.com/2020/06/16/science/social-media-bots-kazemi.html
• Why Do People Avoid Facts That Could Help Them? https://www.scientificamerican.com/article/why-do-people-avoid-facts-that-could-help-them/

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

• There's a Sustainable New Way to Convert CO2 Waste Into Building Blocks For Fuel https://www.sciencealert.com/scientists-find-a-new-way-to-convert-co2-into-lego-like-blocks-for-other-purposes
• The record-breaking jet which still haunts Canada https://www.bbc.com/future/article/20200615-the-record-breaking-jet-which-still-haunts-a-country
• The Navy is Testing Beaming Solar Power in Space https://www.universetoday.com/146587/the-navy-is-testing-beaming-solar-power-in-space/
• Here's Why You're Fooled by This Classic Visual Illusion https://www.sciencealert.com/here-s-why-you-re-fooled-by-this-classic-visual-illusion
• APOD - the astronomy photo of the day turns 25 years old https://apod.nasa.gov/apod/ap200616.html
• Pluto Probe Offers Eye-Popping View of Neighboring Star Proxima Centauri https://www.nature.com/articles/d41586-020-01699-6
• Mayans did NOT predict the end of the world on June 21, 2020 https://www.syfy.com/syfywire/no-the-maya-did-not-predict-the-end-of-the-world-on-21-june-2020
• Tiny Cubesat Detects an Exoplanet https://www.universetoday.com/146485/tiny-cubesat-detects-an-exoplanet/
• Saving Earth from killer asteroids by tying two together https://phys.org/news/2020-06-earth-asteroid-impact-tethered-diversion.html
• As many as six billion Earth-like planets in our galaxy, according to new estimates https://scienmag.com/as-many-as-six-billion-earth-like-planets-in-our-galaxy-according-to-new-estimates/
• Hubble sees the spectacular deaths of stars like the Sun https://www.syfy.com/syfywire/hubble-sees-the-spectacular-deaths-of-stars-like-the-sun