Zack Whittaker

Zack Whittaker

Security editor

Zack Whittaker is the security editor at TechCrunch. You can send tips securely via Signal and WhatsApp to +1 646-755-8849, and his PGP fingerprint for email is: 4D0E 92F2 E36A EC51 DAAE 5D97 CB8C 15FA EB6C EEA5.

He can also be reached by email: zack.whittaker@techcrunch.com.

The Latest from Zack Whittaker

Facebook failed to block 20% of uploaded New Zealand shooter videos

Facebook said it removed 1.5 million videos from its site within the first 24 hours after a shooter livestreamed his attack on two New Zealand mosques, killing 50 people. In a series of tweets, Facebo

A huge trove of medical records and prescriptions found exposed

A health tech company was leaking thousands of doctor’s notes, medical records, and prescriptions daily after a security lapse left a server without a password. The little-known software compan

Beto O’Rourke could be the first hacker president

Democratic presidential candidate Beto O’Rourke has revealed he was a member of a notorious decades-old hacking group. The former congressman was a member of the Texas-based hacker group, the Cu

Apple’s iCloud recovers after a four-hour outage

Facebook has only just recovered from one of its worst outages to date, and Gmail and Google Drive also experienced a worldwide outage this week. Now, apparently, it was Apple’s turn. The compan

Gearbest security lapse exposed millions of shopping orders

Gearbest, a Chinese online shopping giant, has exposed millions of user profiles and shopping orders, security researchers have found. Security researcher Noam Rotem found an Elasticsearch server leak

Facebook won’t store data in countries with human rights violations — except Singapore

As soon as Mark Zuckerberg said in a lengthy 3,225-word blog post to not build data centers in countries with poor human rights, he had already broken his promise. He chose to ignore Singapore, which

ICE has a huge license plate database targeting immigrants, documents reveal

Newly released documents reveal Immigration and Customs Enforcement is tracking and targeting immigrants through a massive license plate reader database supplied with data from local police department

New Android adware found in 200 apps on Google Play

Security researchers have found a new kind of mobile adware hidden in hundreds of Android apps, and downloaded more than 150 million times from Google Play. The malware masquerading as an ad-serving p

Russia blocks encrypted email provider ProtonMail

Russia has told internet providers to enforce a block against encrypted email provider ProtonMail, the company’s chief has confirmed. The block was ordered by the state Federal Security Service,

US threatens to reduce intelligence sharing if Germany doesn’t ban Huawei

The U.S. government is threatening to reduce the amount of intelligence it shares with Germany if Huawei wins a contract to build the country’s next-generation 5G network. That’s the takea

Dozens of companies leaked sensitive data thanks to misconfigured Box accounts

Security researchers have found dozens of companies inadvertently leaking sensitive corporate and customer data because staff are sharing public links to files in their Box enterprise storage accounts

Tufts expelled a student for grade hacking. She claims innocence

As she sat in the airport with a one-way ticket in her hand, Tiffany Filler wondered how she would pick up the pieces of her life, with tens of thousands of dollars in student debt and nothing to show

Car alarms with security flaws put 3 million vehicles at risk of hijack

Two popular car alarm systems have fixed security vulnerabilities that allowed researchers to remotely track, hijack and take control of vehicles with the alarms installed. The systems, built by Russi

Homeland Security hasn’t done enough to protect election infrastructure, says watchdog

Homeland Security could do more to protect election infrastructure, according to a new report by the department’s watchdog. The report from the inspector general, out Wednesday, said progress ha

Outdoor Tech’s Chips ski helmet speakers are a hot mess of security flaws

Sometimes the “smartest” gadgets come with the shoddiest security. Alan Monie, a security researcher at U.K. cybersecurity firm Pen Test Partners, bought and tested a pair of Chips 2.0 wir

Flawed visitor check-in systems let anyone steal guest logs and sneak into buildings

Security researchers at IBM have found, reported and disclosed 19 vulnerabilities in five popular visitor management systems, which they say can be used to steal data about visitors — or even sneak

Facebook won’t let you opt out of its phone number ‘look up’ setting

Users are complaining that the phone number Facebook hassled them to use to secure their account with two-factor authentication has also been associated with their user profile — which anyone can us

Researchers obtain a command server used by North Korean hacker group

In a rare move, government officials have handed security researchers a seized server believed to be used by North Korean hackers to launch dozens of targeted attacks last year. Known as Operation Sha

Dow Jones’ watchlist of 2.4 million high-risk individuals has leaked

A watchlist of risky individuals and corporate entities owned by Dow Jones has been exposed, after a company with access to the database left it on a server without a password. Bob Diachenko, an indep

Cloudflare expands its government warrant canaries

When the government comes for your data, tech companies can’t always tell you. But thanks to a legal loophole, companies can say if they haven’t had a visit yet. That’s opened up an
Load More