Latest Privacy Fracas Drops Facebook In The Middle Of Anti-Huawei Hysteria
June 7, 2018 | Karl Bode, Techdirt
Press
"You might think that Facebook or the device manufacturer is trustworthy,” said Serge Egelman, a privacy researcher at the University of California, Berkeley, who studies the security of mobile apps. “But the problem is that as more and more data is collected on the device — and if it can be accessed by apps on the device — it creates serious privacy and security risks."
Facebook let phone makers get data trove on users and friends
June 3, 2018 | Gabriel J.X. Dance, Nicholas Confessore, and Michael LaForgia, New York Times
“You might think that Facebook or the device manufacturer is trustworthy,” said Serge Egelman, a privacy researcher at the University of California, Berkeley, who studies the security of mobile apps. “But the problem is that as more and more data is collected on the device — and if it can be accessed by apps on the device — it creates serious privacy and security risks.”
Bitcoin Could Be a Problem for U.S. Security Clearances
May 22, 2018 | Daniel Flatley, Bloomberg
But Nicholas Weaver, a researcher at the International Computer Science Institute at the University of California, Berkeley, said the Pentagon is right to scrutinize clearance applicants who own cryptocurrencies, even those who are buying and holding them as investments, known as "HODL’ers."
Why secure email may be an illusion
May 22, 2018 | Steven Nelson, Washington Examiner
It's a wake-up call that some experts believe is overdue. “If you want confidential communications, you can't use email period,” said Nicholas Weaver, a computer science professor at the University of California at Berkeley, though he believes few people can exploit the vulnerabilities.
Ad Software Dev Doesn't Like Being Called Out For Privacy Violations; Sends Threatening Letter To Researchers Who Exposed It
May 16, 2018 | Tim Cushing, Techdirt
Serge Egelman, one of the paper's co-authors, notes that thousands of apps are violating this law every day. In just one example, an advertising SDK (software development kit) made by ironSource is harvesting personal data from 466 child-directed apps.
Suspect Identified in C.I.A. Leak Was Charged, but Not for the Breach
May 15, 2018 | Scott Shane and Adam Goldman, New York Times
Despite the scale of the breach, Nicholas Weaver, a researcher at the International Computer Science Institute in Berkeley, Calif., said WikiLeaks had exaggerated the danger to civil liberties from the C.I.A. hacking tools, which he said were actually designed to target small numbers of high-priority targets.
How worried should parents be about apps and websites collecting children’s data?
May 14, 2018 | Wency Leung, The Globe and Mail
Narseo Vallina-Rodriguez, one of the authors of the recent Proceedings on Privacy Enhancing Technologies study, says he and his team did not know why the apps they examined were collecting personal data from children – whether they were doing it intentionally or by mistake, and whether that data was used for commercial purposes or internal purposes.
Cops Can Find the Location of Any Phone in the Country in Seconds, and a Senator Wants to Know Why
May 11, 2018 | Joseph Cox, Motherboard
Nicholas Weaver, a senior researcher at the International Computer Science Institute at the University of California, Berkeley, told Motherboard in a Twitter message "This once again shows that data is like an oil spill: the contamination gets everywhere. The notion that a chain of 3+ companies, including one specifically intended for marketing, is able to resell access to everyone's real-time location with pretty high precision is disturbing but it shouldn't be surprising."
A Proposed Database of Food Stamp Recipients Isn't Only Cruel, It's a Security Risk
May 3, 2018 | Kaleigh Rogers, Motherboard
“I don't see it as any riskier than any of the other gazillion databases from a technical front,” Weaver told me via email. “Rather, it seems more likely to cause damage from a social front by needlessly and cruelly denying benefits due to innocent mistakes such as a transposed digit or forgotten social security number.”
A Lot Of Apps Sell Your Data. Here's What You Can Do About It.
May 1, 2018 | Nicole Nguyen, Buzzfeed
“Most third-party services operate in the background and do not provide any visual cues inside the apps, effectively tracking users without their knowledge or consent while remaining virtually invisible,” wrote researchers in a February 2018 study. Meanwhile, the collected data is virtually untraceable as it is passed from data broker to marketers to others.