Zack Whittaker

Zack Whittaker

Zack Whittaker is the security editor at TechCrunch. You can send tips securely via Signal and WhatsApp to +1 646-755-8849, and his PGP fingerprint for email is: 4D0E 92F2 E36A EC51 DAAE 5D97 CB8C 15FA EB6C EEA5.

He can also be reached by email: zack.whittaker@techcrunch.com.

The Latest from Zack Whittaker

AdGuard resets all user passwords after account hacks

Popular ad-blocker AdGuard has forcibly reset all of its users’ passwords after it detected hackers trying to break into accounts. The company said it “detected continuous attempts to logi

Delta to start scanning faces at airport check-in

Delta will later this year roll out facial recognition at its terminal at Atlanta International Airport for anyone traveling on an international flight. The airline said the biometric facial scanning

Password bypass flaw in Western Digital My Cloud drives puts data at risk

A security researcher has published details of a vulnerability in a popular cloud storage drive after the company failed to issue security patches for over a year. Remco Vermeulen found a privilege es

Hackers have planted credit card stealing malware on local government payment sites

Security firm FireEye has confirmed that a widely used web payment portal used to pay for local government services, like utilities and permits, has been targeted by hackers. Hackers have broken into

Hackers stole customer credit cards in Newegg data breach

Newegg is clearing up its website after a month-long data breach. Hackers injected 15 lines of card skimming code on the online retailer’s payments page which remained for more than a month betw

Cloudflare wants internet route leaks to be a thing of the past

Internet outages happen all the time. If it’s not someone cutting through a cable in the street, it’s a massive denial-of-service attack pummeling a pillar of the internet with junk data.

State Department confirms data breach exposed employee data

The State Department has confirmed a data breach affecting an unknown number of employees. A spokesperson told TechCrunch that the breach affected “less than 1 percent” of unclassified emp

Cloudflare’s new ‘one-click’ DNSSEC setup will make it far more difficult to spoof websites

Bad news first: the internet is broken for a while. The good news is that Cloudflare thinks it can make it slightly less broken. With “the click of one button,” the networking giant said T

Facebook pilots new political campaign security tools — just 50 days before Election Day

Facebook has rolled out a “pilot” program of new security tools for political campaigns — just weeks before millions of Americans go to the polls for the midterm elections. The social ne

Five security settings in iOS 12 you should change right now

iOS 12, Apple’s latest mobile software for iPhone and iPad, is finally out. The new software packs in a bunch of new security and privacy features you’ve probably already heard about. Here

Altaba to settle lawsuits relating to Yahoo data breach for $47 million

Altaba, the holding company of what Verizon left behind after its acquisition of Yahoo, said it has settled three ongoing legal cases relating to Yahoo’s previously disclosed data breaches. In a

Twitter now puts live broadcasts at the top of your timeline

Twitter will now put live streams and broadcasts started by accounts you follow at the top of your timeline, making it easier to see what they’re doing in realtime. In a tweet, Twitter said tha

A new CSS-based web attack will crash and restart your iPhone

A security researcher has found a new way to crash and restart any iPhone — with just a few lines of code. Sabri Haddouche tweeted a proof-of-concept webpage with just 15 lines of code which, if vis

FEMA to send its first ‘Presidential Alert’ in emergency messaging system test

The Federal Emergency Management Agency will next month test a new “presidential alert” system that will allow the president to send a message to every phone in the US. The alert is the fi

Three years later, Let’s Encrypt has issued over 380 million HTTPS certificates

Bon anniversaire, Let’s Encrypt! The free-to-use nonprofit was founded in 2014 in part by the Electronic Frontier Foundation and is backed by Akamai, Google, Facebook, Mozilla and more. Three

UK warns of satellite and space surveillance problems in case of Brexit ‘no deal’

The U.K. government says that access to satellites and space surveillance programs will suffer in the event of a “no deal” departure from the European Union . Britain has less than six mon

Cryptocurrency mining attacks using leaked NSA hacking tools are still highly active a year later

It’s been over a year since highly classified exploits built by the National Security Agency were stolen and published online. One of the tools, dubbed EternalBlue, can covertly break into almos

US lawmakers warn spy chief that ‘deep fakes’ are a national security threat

What once sounded like science fiction is now a reality: creating almost-perfectly faked videos of people saying things they never did. Surprise: Now they’re a reality, thanks to modern computin

Security flaw in ‘nearly all’ modern PCs and Macs exposes encrypted data

Most modern computers, even devices with disk encryption, are vulnerable to a new attack that can steal sensitive data in a matter of minutes, new research says. In new findings published Wednesday, F

Apple, AT&T, Amazon, Google among tech giants called to Senate Commerce Committee

If you weren’t done watching tech giants get grilled by lawmakers, mark your calendar for September 26 in what’s expected to be another riveting round of questioning. Policy chiefs from AT
Load More