Zack Whittaker

Zack Whittaker

Security Editor

Zack Whittaker is the security editor at TechCrunch. You can send tips securely via Signal and WhatsApp to +1 646-755-8849. He can also be reached by email at zack.whittaker@techcrunch.com.

The Latest from Zack Whittaker

Apple releases iOS, iPadOS and macOS security fixes for two zero-days under active attack

Apple released surprise software updates for iPhones, iPads and Macs on Wednesday that fix two security vulnerabilities known by Apple to be actively exploited by attackers. The two vulnerabilities we

TechCrunch launches TheTruthSpy spyware lookup tool

TechCrunch today launched a spyware lookup tool that allows anyone to check if their Android device was compromised by a fleet of consumer-grade spyware apps, including TheTruthSpy. The aim is to help

Hands-on with Lockdown Mode in iOS 16

Lockdown Mode is a new Apple feature you should hope you’ll never need to use. But for those who do, like journalists, politicians, lawyers and human rights defenders, it’s a last line of

Twitter fixes security bug that exposed at least 5.4 million accounts

Twitter says it has fixed a security vulnerability that allowed threat actors to compile information of 5.4 million Twitter accounts, which were listed for sale on a known cybercrime forum. The vulner

Hackers stole passwords for accessing 140,000 payment terminals

Hackers had access to dashboards used to remotely manage and control thousands of credit card payment terminals manufactured by digital payments giant Wiseasy, a cybersecurity startup told TechCrunch.

JusTalk spilled millions of user messages and locations for months

Popular messaging app JusTalk left a huge database of unencrypted private messages publicly exposed to the internet without a password for months. The messaging app has around 20 million international

Messaging app JusTalk is spilling millions of unencrypted messages

Popular video calling and messaging app JusTalk claims to be both secure and encrypted. But a security lapse has proven the app to be neither secure nor encrypted after a huge cache of users’ un

Security flaws in a popular GPS tracker are exposing a million vehicle locations

Security vulnerabilities in a popular Chinese-built GPS vehicle tracker can be easily exploited to track and remotely cut the engines of at least a million vehicles around the world, according to new

Runa Sandvik’s new startup Granitt secures at-risk people from hackers and nation states

Few know the threats that journalists face better than Sandvik, a native Norwegian. She defended The New York Times newsroom from hackers and nation-state adversaries, trained reporters to cloak their

A ransomware attack on a debt collection firm is one of 2022’s biggest health data breaches

A ransomware attack on a little-known debt collection firm that serves hundreds of hospitals and medical facilities across the U.S. could be one of the biggest data breaches of personal and health inf

Amazon’s Ring gave a record amount of doorbell footage to the government in 2021

Ring, the maker of internet-connected video doorbells and security cameras, said in its latest transparency report that it turned over a record amount of doorbell footage and other information to U.S.

A huge data leak of 1 billion records exposes China’s vast surveillance state

A massive store of data containing information on about one billion Chinese residents could be one of the biggest breaches of personal information in history. Portions of the leaked data appeared last

Apple says Lockdown Mode in iOS 16 will help block government spyware attacks

Apple said Wednesday it will bring a new “Lockdown Mode” to its upcoming iPhone and Mac software that will switch off certain features aimed at helping targeted individuals combat governme

WeWork India exposed visitors’ personal information and selfies

WeWork India has fixed a security lapse that exposed the personal information and selfies of tens of thousands of people who visited WeWork India’s coworking spaces. Security researcher Sandeep

How did a rental startup I’d never heard of leak my home address?

I consider myself a fairly privacy-conscious person, going out of my way to evade online tracking and, for the most part, avoiding spam mail. But when I found myself staring at my home address on the

Period tracker Stardust surges following Roe reversal, but its privacy claims aren’t airtight

Period tracking app Stardust surged to the top of the U.S. Apple App Store in the wake of the Supreme Court’s decision to overturn Roe v. Wade after the app promised it will encrypt its users’ pri

Google is notifying Android users targeted by Hermit government-grade spyware

Security researchers at Lookout recently tied a previously unattributed Android mobile spyware, dubbed Hermit, to Italian software house RCS Lab. Now, Google threat researchers have confirmed much of

Ex-Amazon employee convicted over data breach of 100 million CapitalOne customers

Paige Thompson, a former Amazon employee accused of stealing the personal information of 100 million customers by breaching banking giant CapitalOne in 2019, has been found guilty by a Seattle jury on

Researchers say Hermit, a powerful mobile spyware, is used by governments

Security researchers at Lookout have released new details about an Android spyware deployed in targeted attacks by national governments, with victims in Kazakhstan, Syria and Italy. The spyware, which

India’s farmers exposed by new Aadhaar data leak

A security researcher said an Indian government website was exposing the Aadhaar numbers of India’s farmers, potentially amounting to millions of people. Atul Nair told TechCrunch that he found
Load More