Ethiopia targets activists with Israeli spyware: Report
December 11, 2017 | Jillian Kestler-D'Amours, Al Jazeera

Israel's CyberBit Solutions Ltd sold spyware to Ethiopia, which used the technology "to target activists and journalists, even PhD students and lawyers", explained Bill Marczak, a researcher at the University of Toronto's Citizen Lab, which wrote the report.

Ethiopia Allegedly Spied on Security Researcher With Israel-Made Spyware
December 5, 2017 | Lorenzo Franceschi-Bicchierai

Marczak is a researcher at Citizen Lab, a group that studies how governments around the world use new technologies such as spyware against dissidents and activists. For years, Marczak and his colleagues have exposed several hacking attacks against people all over the world. This time, however, Marczak himself became the target.

Wi-Fi + Malware = Surveillance Dealers' Answer To Spying On WhatsApp
December 4, 2017 | Thomas Fox-Brewster, Forbes

Nicholas Weaver, senior staff researcher focusing on computer security at the International Computer Science Institute at Berkeley, wasn't impressed with what Almenta advertised. "Really, this is a surveillance vendor taking some off-the-shelf tools, combining it with a directional antenna, slapping some [graphical user interface] on it, and probably selling it for way, way, way, way too much money," he said.

Google says phishing attacks are the biggest risk to web users
November 10, 2017 | James Walker, Digital Journal

Google teamed up with the University of California, Berkeley and the International Computer Science Institute to find the most common way in which user accounts get hijacked. The study looked at a variety of hacking techniques to determine the biggest threat to web users. The results may come as a surprise.

'I think we must be honest: If it wasn't Mimikatz there would be some other tool.' - Nicholas Weaver

What iPhone X Face ID Means for You
November 1, 2017 | Nicole Kobie, Teen Vogue

"Biometrics, be it face or fingerprint, offer a tradeoff between a very narrow additional security risk and a lot of convenience," added Weaver. "The convenience is I no longer have to keep typing my password all the time."

"That is nuke drive," Nicholas Weaver, a computer science researcher at the International Computer Science Institute, told Ars. "Degaussing literally destroys the drive because it not only erases data, it erases the synchronization information on the drive."

“Without public evidence, its smoke but no fire. But it’s enough to encourage everybody to ditch Kaspersky,” Nicholas Weaver, senior researcher for networking and security at Berkeley’s International Computer Science Institute, tells Fast Company.

Nicholas Weaver, a computer scientist at the University of California, Berkeley, notes that a determined attacker could always send a person to physically compromise a server.

Others we spoke to, like Nicholas Weaver, a senior staff researcher at the International Computer Science Institute in Berkeley, Calif., also pointed to ARP spoofing as the method of attack. "ARP spoofing is effectively the same thing as DHCP spoofing, you're responding to a broadcast request you aren't supposed to," he said.