Ethiopia Allegedly Spied on Security Researcher With Israel-Made Spyware
December 5, 2017 | Lorenzo Franceschi-Bicchierai

Marczak is a researcher at Citizen Lab, a group that studies how governments around the world use new technologies such as spyware against dissidents and activists. For years, Marczak and his colleagues have exposed several hacking attacks against people all over the world. This time, however, Marczak himself became the target.

Wi-Fi + Malware = Surveillance Dealers' Answer To Spying On WhatsApp
December 4, 2017 | Thomas Fox-Brewster, Forbes

Nicholas Weaver, senior staff researcher focusing on computer security at the International Computer Science Institute at Berkeley, wasn't impressed with what Almenta advertised. "Really, this is a surveillance vendor taking some off-the-shelf tools, combining it with a directional antenna, slapping some [graphical user interface] on it, and probably selling it for way, way, way, way too much money," he said.

Google says phishing attacks are the biggest risk to web users
November 10, 2017 | James Walker, Digital Journal

Google teamed up with the University of California, Berkeley and the International Computer Science Institute to find the most common way in which user accounts get hijacked. The study looked at a variety of hacking techniques to determine the biggest threat to web users. The results may come as a surprise.

'I think we must be honest: If it wasn't Mimikatz there would be some other tool.' - Nicholas Weaver

What iPhone X Face ID Means for You
November 1, 2017 | Nicole Kobie, Teen Vogue

"Biometrics, be it face or fingerprint, offer a tradeoff between a very narrow additional security risk and a lot of convenience," added Weaver. "The convenience is I no longer have to keep typing my password all the time."

"That is nuke drive," Nicholas Weaver, a computer science researcher at the International Computer Science Institute, told Ars. "Degaussing literally destroys the drive because it not only erases data, it erases the synchronization information on the drive."

“Without public evidence, its smoke but no fire. But it’s enough to encourage everybody to ditch Kaspersky,” Nicholas Weaver, senior researcher for networking and security at Berkeley’s International Computer Science Institute, tells Fast Company.

Nicholas Weaver, a computer scientist at the University of California, Berkeley, notes that a determined attacker could always send a person to physically compromise a server.

Others we spoke to, like Nicholas Weaver, a senior staff researcher at the International Computer Science Institute in Berkeley, Calif., also pointed to ARP spoofing as the method of attack. "ARP spoofing is effectively the same thing as DHCP spoofing, you're responding to a broadcast request you aren't supposed to," he said.

How to protect your Wi-Fi network from a Krack attack
October 17, 2017 | Alex Scroxton, Computer Weekly

Writing on his blog, Nicholas Weaver, a senior staff researcher focusing on computer security at the International Computer Science Institute in Berkeley, California, and a lecturer in computer science at UC Berkeley, said that although Krack was a novel vulnerability, it did not allow attackers to join the network and relied too much on physical proximity.