This Week's [in]Security - Issue 279

Welcome to This Week’s [in]Security. NIST 4th round PQC candidate broken! GPU array achieves quantum supremacy!? PCI updates, Payment terminal portal breach, and Chargebacks. New breaches: Twitter PII & API keys, Cellebrite, Slack, QuestionPro. New Ransomware, Taiwan DDoS. Follow-ups: Capital One. Privacy: Car-surveillance, Ring, Duck-duck. Laws & Regs - US: Breach disclosure, Robocalls, Robinhood, Meta. World: India. Defense - Chess & CyberSecurity, Tools & Techniques, Attack Surfaces, Win11. Vulnerabilities - Patching: VMware, Android. Significant: Roundup, Chrome, DrayTeck. Emergency Alert System. Crypto-research. Cybercrime - Trends: GitHub & PyPi poisoning. Crime & Enforcement: Nuke sabatoge? Nation States and mercenaries. Other Risks - Cheap-Complexity, WFH, AI, Disinformation, Health, Safety, Environment, Economy. SaaS control? Russia v. Ukraine. Innovation and more. 

PCI Compliance and Payments

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud, and Payment Related Compliance.

• PCI Updates:
• Coffee with the Council Podcast: A Mid-Year Update from the Council Featuring Lance Johnson https://blog.pcisecuritystandards.org/coffee-with-the-council-podcast-a-mid-year-update-from-the-council-featuring-lance-johnson
• PCI Security Standards Council Hires Tracey Long to Lead Programs https://www.pcisecuritystandards.org/about_us/press_releases/pci-security-standards-council-hires-tracey-long-to-lead-programs/
• Payment skimmers/malware/fraud:
• Hackers stole passwords for accessing 140,000 payment terminals https://techcrunch.com/2022/08/01/wiseasy-android-payment-passwords/
• Other payment related:
• Ontario businesses say credit card chargebacks give consumers unfair advantage https://toronto.ctvnews.ca/ontario-businesses-say-credit-card-chargebacks-give-consumers-unfair-advantage-1.6013273

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.

• New Breaches:
• Twitter confirms zero-day used to expose data of 5.4 million accounts https://www.bleepingcomputer.com/news/security/twitter-confirms-zero-day-used-to-expose-data-of-54-million-accounts/
• Hackers Exploit Twitter Vulnerability to Exposes 5.4 Million Accounts https://thehackernews.com/2022/08/hackers-exploit-twitter-vulnerability.html
• Twitter Breach Exposed Anonymous Account Owners https://www.securityweek.com/twitter-breach-exposed-anonymous-account-owners
• Hackers' Identities Are Unmasked by Controversial Twitter Feed https://www.databreaches.net/hackers-identities-are-unmasked-by-controversial-twitter-feed/
• Bot army risk as 3,000+ apps found spilling Twitter API keys https://www.theregister.com/2022/08/02/cloudsek_twitter_api/
• Anonymous Source Leaks 4TB of Cellebrite Data After Cyberattack https://www.databreaches.net/anonymous-source-leaks-4tb-of-cellebrite-data-after-cyberattack/
• A Slack Bug Exposed Some Users' Hashed Passwords for 5 Years https://www.wired.com/story/slack-hashed-passwords-exposed/
• Hackers try to extort survey firm QuestionPro after alleged data theft https://www.bleepingcomputer.com/news/security/hackers-try-to-extort-survey-firm-questionpro-after-alleged-data-theft/
• QuestionPro (unverified) - 22,229,637 breached accounts https://haveibeenpwned.com/PwnedWebsites#QuestionPro
• EU missile maker MBDA confirms data theft extortion, denies breach https://www.bleepingcomputer.com/news/security/eu-missile-maker-mbda-confirms-data-theft-extortion-denies-breach/
• Update: Investigation reveals thousands had info exposed in Prince Edward Island arts centre ransomware incident https://www.databreaches.net/update-investigation-reveals-thousands-had-info-exposed-in-prince-edward-island-arts-centre-ransomware-incident/
• New Ransomware and "Incidents":
• German Chambers of Industry and Commerce hit by 'massive' cyberattack https://www.bleepingcomputer.com/news/security/german-chambers-of-industry-and-commerce-hit-by-massive-cyberattack/
• Luxembourg Energy Company Hit by Ransomware https://www.securityweek.com/luxembourg-energy-company-hit-ransomware
• Semiconductor manufacturer Semikron hit by LV ransomware attack https://www.bleepingcomputer.com/news/security/semiconductor-manufacturer-semikron-hit-by-lv-ransomware-attack/
• Louisiana Public Facilities Authority (LPFA) victim of ransomware attack https://www.databreaches.net/louisiana-public-facilities-authority-lpfa-victim-of-ransomware-attack/
• Wordfly customers begin to disclose ransomware attack on the vendor https://www.databreaches.net/wordfly-customers-begin-to-disclose-ransomware-attack-on-the-vendor/
• More than 100 Dutch dental practices closed for days due to cyber attack https://www.databreaches.net/more-than-100-dutch-dental-practices-closed-for-days-due-to-cyber-attack/
• Major outages/downs:
• Taiwanese military reports DDoS in wake of Pelosi visit https://www.theregister.com/2022/08/04/taiwanese_military_reports_ddos_in/
• Follow-ups and fall-out:
• Capital One Breach Conviction Exposes Scale of Cloud Entitlement Risk https://www.darkreading.com/cloud/capital-one-breach-conviction-exposes-scale-of-cloud-entitlement-risk

Privacy

Articles about privacy related news, risks, and trends.

• Surveillance of Your Car https://www.schneier.com/blog/archives/2022/08/surveillance-of-your-car.html
• All the Data Amazon’s Ring Cameras Collect About You https://www.wired.com/story/ring-doorbell-camera-amazon-privacy/
• DuckDuckGo browser's stricter privacy protection will also apply to Microsoft scripts now https://www.theverge.com/2022/8/5/23292280/duckduckgo-microsoft-third-party-ad-tracker-script-blocking
• Tech Company Settings that you should disable https://www.nytimes.com/2022/07/27/technology/personaltech/default-settings-turn-off.html
• How to find (and delete) your TikTok history https://www.theverge.com/23289267/tiktok-history-find-delete-how-to
• Van that detects if drivers are holding a mobile phone trialed in UK https://www.theguardian.com/world/2022/aug/03/van-that-detects-if-drivers-are-holding-a-mobile-phone-trialled-in-uk
• The Most Surveilled Place in America https://www.theverge.com/c/23203881/border-patrol-wall-surveillance-tech

Laws, Regulations, Platforms, Standards, and Public Policy

News about laws, regulations, platform rules, and standards affecting security, privacy, technology, and public interest.

• US:
• Federal Bill Would Broaden FTC's Role in Cybersecurity and Data Breach Disclosures https://www.databreaches.net/federal-bill-would-broaden-ftcs-role-in-cybersecurity-and-data-breach-disclosures/
• The Robocalls Problem Is So Bad That the FCC Actually Did Something https://www.scientificamerican.com/article/the-robocalls-problem-is-so-bad-that-the-fcc-actually-did-something/
• Why America's Chinese Tech Ban Didn't Stick https://www.nytimes.com/2022/08/03/technology/chinese-tech-ban.html
• No Injury = No Article III Standing in Data Breach Class Action https://www.databreaches.net/no-injury-no-article-iii-standing-in-data-breach-class-action/
• Robinhood Crypto Penalized $30M for Violating NY Cybersecurity Regulations https://www.securityweek.com/robinhood-crypto-penalized-30m-violating-ny-cybersecurity-regulations
• Meta is being sued for giving US hospitals a data-tracking tool that allegedly ended up disclosing patient information to Facebook https://www.businessinsider.com/meta-facebook-sued-data-tracking-hospitals-disclosed-patient-health-data-2022-8
• Meta sued for violating patient privacy with data tracking tool https://www.theverge.com/2022/8/2/23288612/meta-hosptials-sued-patient-privacy-facebook-data-hipaa
• World:
• India scraps data protection law in favor of better law coming … sometime https://www.theregister.com/2022/08/04/india_scraps_data_protection_law/
• UK Parliament bins its TikTok account over China surveillance fears https://www.theregister.com/2022/08/04/uk_parliament_tiktok_account_discontinued/
• Standards News:
• Guide to a Secure Enterprise Network Landscape: NIST Requests Comments on Draft SP 800-215 is open for public comment through September 19 https://csrc.nist.gov/publications/detail/nistir/8323/rev-1/draft
• Knocked-out: SIKE, one of NISTs PQC round 4 candidate, was broken “really badly” … 
• Schneier & comments https://www.schneier.com/blog/archives/2022/08/sike-broken.html
• SIKE, once a post-quantum encryption contender, is KOed in NIST smackdown https://arstechnica.com/?p=1870798
• Paper: An efficient key recovery attack on SIDH https://eprint.iacr.org/2022/975.pdf
• Related – the problem with modern cryptography - https://www.quantamagazine.org/researchers-identify-master-problem-underlying-all-cryptography-20220406/
• The Supersingular Isogeny Diffie-Hellman (SIDH) break is spectacular but very specific https://ellipticnews.wordpress.com/2022/07/31/breaking-supersingular-isogeny-diffie-hellman-sidh/
• Masked-degree SIDH a new proposal to fix SIDH https://eprint.iacr.org/2022/1019

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

• General:
• 5 Ways Chess Can Inspire Strategic Cybersecurity Thinking https://www.darkreading.com/careers-and-people/5-ways-chess-can-inspire-strategic-cybersecurity-thinking
• Methods, Techniques, Tools, and Products:
• Microsoft announces new external attack surface audit tool https://www.bleepingcomputer.com/news/microsoft/microsoft-announces-new-external-attack-surface-audit-tool/
• Microsoft widens enterprise access to its threat intelligence pool https://www.theregister.com/2022/08/03/microsoft_defender_attack_surface/
• Windows 11 Smart App Control blocks files used to push malware https://www.bleepingcomputer.com/news/microsoft/windows-11-smart-app-control-blocks-files-used-to-push-malware/
• Microsoft Defender now better at blocking ransomware on Windows 11 https://www.bleepingcomputer.com/news/microsoft/microsoft-defender-now-better-at-blocking-ransomware-on-windows-11/
• Sonatype shines light on typosquatting ransomware threat in PyPi https://www.theregister.com/2022/08/03/sonatype_typosquatting/
• How to Use Lockdown Mode in iOS 16 to Make Your Phone More Secure https://www.wired.com/story/how-to-use-lockdown-mode-ios-16/

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

• Patching:
• VMWare Urges Users to Patch Critical Authentication Bypass Bug https://threatpost.com/vmware-patch-critical-bug/180346/
• Google Patches Critical Android Flaw Allowing Remote Code Execution via Bluetooth https://www.securityweek.com/google-patches-critical-android-flaw-allowing-remote-code-execution-bluetooth
• Cisco fixes critical remote code execution bug in VPN routers https://www.bleepingcomputer.com/news/security/cisco-fixes-critical-remote-code-execution-bug-in-vpn-routers/
• Significant:
• Control Gap Vulnerability Roundup: July 23rd to 29th https://www.controlgap.com/blog/vulnerability-roundup-july-23rd-29th
• “Huge flaw” threatens US emergency alert system, DHS researcher warns https://arstechnica.com/?p=1871767
• Google Paid Out $90,000 for Vulnerabilities Patched by Chrome 104 https://www.securityweek.com/google-paid-out-90000-vulnerabilities-patched-chrome-104
• Critical RCE Bug Could Let Hackers Remotely Take Over DrayTek Vigor Routers https://thehackernews.com/2022/08/critical-rce-bug-could-let-hackers.html
• Other Vulnerabilities:
• Go-Based Apps Vulnerable to Attacks Due to URL Parsing Issue https://www.securityweek.com/go-based-apps-vulnerable-attacks-due-url-parsing-issue
• New 'ParseThru' Parameter Smuggling Vulnerability Affects Golang-based Applications https://thehackernews.com/2022/08/new-parsethru-parameter-smuggling.html
• High-Severity Bug in Kaspersky VPN Client Opens Door to PC Takeover https://www.darkreading.com/endpoint/high-severity-bug-kaspersky-vpn-client-pc-takeover
• Critical Vulnerabilities Allow Hacking of Cisco Small Business Routers https://www.securityweek.com/critical-vulnerabilities-allow-hacking-cisco-small-business-routers
• Cryptography and Cryptographic Research:
• Sequential Digital Signatures for Cryptographic Software-Update Authentication https://eprint.iacr.org/2022/995

Hacking / Malware / Cybercrime / Exploitation

News covering active trends, alerts, events.

• Trends, Alerts, and Events (other than major breaches):
• US Websites Targeted by 40% of the Bad Bot Traffic Worldwide https://www.imperva.com/blog/us-websites-targeted-by-40-of-the-bad-bot-traffic-worldwide/
• Cybersecurity agencies reveal last year's top malware strains https://www.bleepingcomputer.com/news/security/cybersecurity-agencies-reveal-last-year-s-top-malware-strains/
• GitHub blighted by “researcher” who created thousands of malicious projects https://nakedsecurity.sophos.com/2022/08/04/github-blighted-by-researcher-who-created-thousands-of-malicious-projects/
• 35,000 code repos not hacked—but clones flood GitHub to serve malware https://www.bleepingcomputer.com/news/security/35-000-code-repos-not-hacked-but-clones-flood-github-to-serve-malware/
• School Kid Uploads Ransomware Scripts to PyPi Repository as 'Fun' Project https://www.darkreading.com/threat-intelligence/school-kid-uploads-ransomware-scripts-to-pypi-repository-as-fun-research-project
• Stolen Data Gives Attackers Advantage Against Text-Based 2FA https://www.darkreading.com/cloud/stolen-data-attackers-advantage-text-based-2fa
• Snapchat, Amex sites abused in Microsoft 365 phishing attacks https://www.bleepingcomputer.com/news/security/snapchat-amex-sites-abused-in-microsoft-365-phishing-attacks/
• Hackers are actively exploiting password-stealing flaw in Zimbra https://www.bleepingcomputer.com/news/security/hackers-are-actively-exploiting-password-stealing-flaw-in-zimbra/
• Hackers Exploited Atlassian Confluence Bug to Deploy Ljl Backdoor for Espionage https://thehackernews.com/2022/08/hackers-exploited-atlassian-confluence.html
• New Linux malware brute-forces SSH servers to breach networks https://www.bleepingcomputer.com/news/security/new-linux-malware-brute-forces-ssh-servers-to-breach-networks/
• Cloned Atomic Wallet website is pushing Mars Stealer malware https://www.bleepingcomputer.com/news/security/cloned-atomic-wallet-website-is-pushing-mars-stealer-malware/
• SolidBit Ransomware Enters the RaaS Scene and Takes Aim at Gamers and Social Media Users With New Variant https://www.trendmicro.com/en_us/research/22/h/solidbit-ransomware-enters-the-raas-scene-and-takes-aim-at-gamer.html
• New Woody RAT Malware Being Used to Target Russian Organizations https://thehackernews.com/2022/08/new-woody-rat-malware-being-used-to.html
• Southern Alberta woman warns of Facebook scammers using random addresses https://globalnews.ca/news/9040547/southern-alberta-woman-warns-of-facebook-scammers-using-random-addresses/
• Scammers Sent Uber to Take Elderly Lady to the Bank https://krebsonsecurity.com/2022/08/scammers-sent-uber-to-take-elderly-lady-to-the-bank/
• Fake COVID rapid test kits were sold in Ontario, Health Canada says https://toronto.ctvnews.ca/fake-covid-rapid-test-kits-were-sold-in-ontario-health-canada-says-1.6016150
• Crime & Arrests, etc.:
• UK cyber security and cyber crime statistics (2022) https://www.comparitech.com/blog/information-security/uk-cyber-security-statistics/
• Spanish Police Arrest 2 Nuclear Power Workers for Cyberattacking the Radiation Alert System https://thehackernews.com/2022/07/spanish-police-arrest-2-nuclear-power.html
• Charges filed over $300m 'textbook pyramid and Ponzi scheme' crypto startup https://www.theregister.com/2022/08/02/sec_smacks_fraudsters_in_alleged/
• Thousands of Solana wallets drained in attack using unknown exploit https://www.bleepingcomputer.com/news/security/thousands-of-solana-wallets-drained-in-attack-using-unknown-exploit/
• U.S. Crypto Firm Nomad Hit By $190 Million Theft https://packetstormsecurity.com/news/view/33689/U.S.-Crypto-Firm-Nomad-Hit-By-190-Million-Theft.html
• Mobile store owner hacked T-Mobile employees to unlock phones https://www.bleepingcomputer.com/news/security/mobile-store-owner-hacked-t-mobile-employees-to-unlock-phones/
• Sextortion cases rising in Canada as online crime swelled during COVID pandemic: report https://globalnews.ca/news/9033519/online-crime-2021-statistics-canada/
• Nation State Actors:
• Chinese Hackers Using New Manjusaka Hacking Framework Similar to Cobalt Strike https://thehackernews.com/2022/08/chinese-hackers-using-new-manjusaka.html
• Disruptive Cyberattacks on NATO Member Albania Linked to Iran https://www.securityweek.com/disruptive-cyberattacks-nato-member-albania-linked-iran
• Spanish Research Center Suffers Cyberattack Linked to Russia https://www.securityweek.com/spanish-research-center-suffers-cyberattack-linked-russia
• Other:
• No SOCKS, No Shoes, No Malware Proxy Services! https://krebsonsecurity.com/2022/08/no-socks-no-shoes-no-malware-proxy-services/
• VirusTotal Reveals Most Impersonated Software in Malware Attacks https://thehackernews.com/2022/08/virustotal-reveals-most-impersonated.html
• Wolf in sheep's clothing: how malware tricks users and antivirus https://www.bleepingcomputer.com/news/security/wolf-in-sheep-s-clothing-how-malware-tricks-users-and-antivirus/
• How cybercrims embrace messaging apps to spread malware, communicate https://www.theregister.com/2022/08/02/threat_groups_discord_telegram/

Other Security / Risk

Articles covering other types of risks.

• General:
• The anomaly of cheap complexity https://freedom-to-tinker.com/2022/08/03/the-anomaly-of-cheap-complexity/
• Who Has Control: The SaaS App Admin Paradox https://thehackernews.com/2022/08/who-has-control-saas-app-admin-paradox.html
• We live in notification hell https://www.theverge.com/2022/8/5/23293924/push-notifications-ios-android-daily-digest-time-sensitive
• Universities Put Email Users at Cyber Risk https://threatpost.com/universities-email-cyber-risk/180342/
• Authorities investigate after mysterious sinkhole appears in Chile https://www.bbc.co.uk/news/world-latin-america-62392233
• Textbook publisher: NFTs will let us squeeze even more money out of students https://www.theverge.com/2022/8/3/23290335/pearson-textbook-publisher-nft-blockchain-secondhand-ebook-sales
• How to work from home when your internet goes out https://www.theverge.com/23274076/work-from-home-internet-failure-how-to
• How to minimize distractions when you work from home https://www.theverge.com/23274524/work-from-home-distractions-wfh-how-to
• Artificial Intelligence and Machine Learning:
• ‘Risks posed by AI are real': EU moves to beat the algorithms that ruin lives https://www.theguardian.com/technology/2022/aug/07/ai-eu-moves-to-beat-the-algorithms-that-ruin-lives
• Meta's AI chatbot has some election-denying, antisemitic bugs to work out after the company asked users to help train it https://www.businessinsider.com/meta-ai-chatbot-blenderbot-election-denying-antisemitic-bugs-artificial-intellignce-2022-8
• A.I. Is Not Sentient. Why Do People Say It Is? https://www.nytimes.com/2022/08/05/technology/ai-sentient-google.html
• No code, no problem—we try to beat an AI at its own game with new tools https://arstechnica.com/?p=1865867
• AI Weirdness How to disappear a platypus https://www.aiweirdness.com/bonus-how-to-disappear-a-platypus/
• Disinformation and misinformation
• Alex Jones concedes Sandy Hook school shooting was '100% real' https://www.bbc.co.uk/news/world-us-canada-62415376
• Why Alex Jones's Trial Won't Stop the Spread of Lies https://www.nytimes.com/2022/08/06/technology/alex-jones-conspiracy-theories.html
• Health:
• 7 in 10 Ontario nurses say they can't provide adequate patient care, study says https://globalnews.ca/news/9033637/ontario-nurses-study-adequate-patient-care-profession/
• Staff burnout a factor as Toronto General nears 2 weeks under critical care bed alert: UHN President https://toronto.ctvnews.ca/staff-burnout-a-factor-as-toronto-general-nears-2-weeks-under-critical-care-bed-alert-uhn-president-1.6012898
• Ontario directs regulator to register internationally trained nurses more quickly https://globalnews.ca/news/9036998/ontario-directs-regulator-register-internationally-trained-nurses-more-quickly/
• Monkeypox: U.S. to declare health emergency amid outbreak, sources say https://globalnews.ca/news/9037344/monkeypox-health-emergency-us/
• Polio: Virus found in wastewater of New York City suburb https://www.bbc.co.uk/news/world-us-canada-62395325
• Quebec tops 16,000 COVID-19 deaths since beginning of pandemic https://globalnews.ca/news/9037003/quebec-covid19-august-4-2022/
• Some Drugs Have 'Mirror Image' Chemical Structures, And The Wrong One Can Be Harmful https://www.sciencealert.com/some-drugs-have-mirror-image-chemical-structures-and-the-wrong-one-can-be-harmful
• The TB Vaccine Mysteriously Protects Against Lots of Things. Now We Know Why https://www.sciencealert.com/the-tb-vaccine-protects-against-a-range-of-infections
• Hyaluranic acid, a naturally occurring compound, awakens stem cells to repair damaged muscle https://scienmag.com/hyaluranic-acid-a-naturally-occurring-compound-awakens-stem-cells-to-repair-damaged-muscle/
• Algorithm That Detects Sepsis Cut Deaths by Nearly 20 Percent https://www.scientificamerican.com/article/algorithm-that-detects-sepsis-cut-deaths-by-nearly-20-percent/
• Safety:
• California DMV accuses Tesla of making false claims about Autopilot and Full-Self Driving https://www.theverge.com/2022/8/6/23294658/california-dmv-accuses-tesla-false-claims-autopilot-full-self-driving-autonomous-vehicles
• TuSimple reportedly tried to pass off a self-driving truck crash as ‘human error' https://www.theverge.com/2022/8/4/23288794/tusimple-self-driving-truck-crash-investigation
• Canadian ban on importing handguns will kick in this month, says minister https://globalnews.ca/news/9039570/canada-handgun-import-ban/
• Mystery wreckage in Malaysia, Indonesia, and Philippines is probably fallen Chinese rocket parts, space-debris experts say https://www.businessinsider.com/photos-mystery-space-debris-borneo-philippines-likely-chinese-rocket-parts-2022-8
• A Giant Slab of Space Junk Crashed in Australia, But Experts May Have Identified It https://www.sciencealert.com/giant-slab-of-space-junk-crashed-onto-an-australian-sheep-field-likely-belongs-to-spacex
• Environment:
• History's Greatest Obstacle to Climate Progress Has Finally Fallen https://www.theatlantic.com/science/archive/2022/08/senate-climate-inflation-reduction-bill-passed/671073/
• Extinction Risk May Be Much Worse Than Current Estimates https://www.scientificamerican.com/article/extinction-risk-may-be-much-worse-than-current-estimates/
• Environment Canada issues tornado, severe thunderstorm warning for Barrie, Grey-Bruce areas https://globalnews.ca/news/9034561/severe-thunderstorm-grey-bruce-august-3/
• Workers in Iraq get day off as temperatures pass 50C https://www.bbc.co.uk/news/world-middle-east-62426302
• Economy:
• China halts dialogue with the United States. What does this mean for Canada? https://globalnews.ca/news/9041442/china-united-states-taiwan-canada/
• The economy right now is the Fed's 'worst nightmare' and there's a 50% chance of a global recession, Citi economist says https://markets.businessinsider.com/news/bonds/economy-global-recession-risks-federal-reserve-inflation-europe-us-2022-8
• The stock market is headed for another big sell-off unless economic data quickly improves, Goldman Sachs says https://markets.businessinsider.com/news/stocks/stock-market-outlook-sell-off-ahead-unless-economic-data-improves-2022-8
• Bank of England makes biggest rate hike in 27 years, warns of recession until 2024 https://globalnews.ca/news/9037113/bank-of-england-rate-hike-recession/
• Robinhood cuts nearly a quarter of staff as crypto dives https://www.bbc.co.uk/news/business-62405029

Russia v. Ukraine

News and announcements relating to Russia's invasion of Ukraine.

• The war:
• Russia is firing artillery from a captured nuclear power plant, leaving Ukraine reluctant to shoot back https://www.businessinsider.com/russia-fires-artillery-from-nuclear-plant-ukraine-cant-shoot-back-2022-8
• Ukraine war: IAEA says Zaporizhzhia nuclear plant out of control https://www.bbc.co.uk/news/world-europe-62412429
• Zaporizhzhia: Real risk of nuclear disaster in Ukraine - watchdog https://www.bbc.co.uk/news/world-europe-62449982
• Zaporizhzhia: Russian rockets damaged part of nuclear plant, Ukraine says https://www.bbc.co.uk/news/world-europe-62432873
• Ukraine war: First grain ship out of Ukraine cleared to sail to Lebanon https://www.bbc.co.uk/news/world-europe-62401342
• Ukraine war: Four more grain ships leave Ukraine as hopes grow for export stability https://www.bbc.co.uk/news/world-europe-62454674
• Ukraine wants to extend safe shipping passage agreement beyond grain https://globalnews.ca/news/9039715/ukraine-safe-passage-ship-grain/
• Reaction and response:
• Canada disrupts attempt to export banned materials to Russia https://globalnews.ca/news/9032327/canada-disrupts-attempt-export-banned-materials-russia/
• As Russia strangles gas flow, Canada has ‘responsibility' to step up on LNG: Freeland https://globalnews.ca/news/9034688/russia-gas-cuts-canada-lng-opportunity/
• Sanctions & economic Impact:
• Nord Stream 1: The 12-metre turbine threatening Europe's gas supply https://www.bbc.co.uk/news/world-europe-62408993
• Banned Russian oligarchs exploited UK secrecy loophole https://www.bbc.co.uk/news/uk-62410715
• Russian sanctions have been working in an unexpected way, and history says the West will come out on top in the economic struggle, economist Paul Krugman says https://markets.businessinsider.com/news/commodities/russia-energy-sanctions-oil-natural-gas-western-war-paul-krugman-2022-8
• Information, Disinformation, and Propaganda:
• Ukraine takes down 1,000,000 bots used for disinformation https://www.bleepingcomputer.com/news/security/ukraine-takes-down-1-000-000-bots-used-for-disinformation/

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

• Innovations & Inventions:
• New magnesium superionic conductor towards lithium-free solid-state batteries https://scienmag.com/new-magnesium-superionic-conductor-towards-lithium-free-solid-state-batteries/
• Quantum Innovation.
• Scientists challenge Google's quantum supremacy claims using 512 GPUs https://www.techspot.com/news/95543-chinese-scientists-challenge-google-previous-quantum-supremacy-claims.html
• Experiment with post-quantum cryptography today https://blog.cloudflare.com/experiment-with-pq/
• Other:
• Earth Just Had Its Shortest Day on Record, Thanks to a 'Wobble' https://www.sciencealert.com/earth-just-set-a-new-record-for-the-shortest-day-all-thanks-to-a-wobble
• A New Private Moon Race Kicks Off Soon https://www.scientificamerican.com/article/a-new-private-moon-race-kicks-off-soon/
• JWST Turns Its Gaze on the Cartwheel Galaxy https://www.universetoday.com/156994/jwst-turns-its-gaze-on-the-cartwheel-galaxy/