Zack Whittaker

Zack Whittaker

Security Editor

Zack Whittaker is the security editor at TechCrunch. You can send tips securely via Signal and WhatsApp to +1 646-755-8849. He can also be reached by email at zack.whittaker@techcrunch.com and zack.whittaker@protonmail.com.

The Latest from Zack Whittaker

Twitter’s Rinki Sethi on why CISOs win when security is a shared responsibility

Sethi draws on her decade-plus cybersecurity experience to talk about the role of the modern CISO and how the next-generation of CISOs can stay ahead.

Osano, a risk and compliance startup, raises $11M

Osano, a risk and compliance startup, has confirmed it has raised $11 million in new funding. The round was led by Jump Capital, with participation from existing investors LiveOak Venture Partners and

An email ‘autodiscover’ bug is helping to leak thousands of Windows passwords

Shipping companies, power plants and investment banks don’t often share much in common, but new research shows they are all inadvertently leaking thousands of email passwords of their own employ

Web host Epik was warned of a critical security flaw weeks before it was hacked

Hackers associated with the hacktivist collective Anonymous say they have leaked gigabytes of data from Epik, a web host and domain registrar that provides services to far-right sites like Gab, Parler

Apple patches an NSO zero-day flaw affecting all devices

Apple has released security updates for a zero-day vulnerability that affects every iPhone, iPad, Mac and Apple Watch. Citizen Lab, which discovered the vulnerability and was credited with the find, u

Technology giant Olympus hit by BlackMatter ransomware

Olympus said in a brief statement that it is “currently investigating a potential cybersecurity incident” affecting its European, Middle East and Africa computer network. “Upon detec

WhatsApp will finally let users encrypt their chat backups in the cloud

WhatsApp said on Friday it will give its two billion users the option to encrypt their chat backups to the cloud, taking a significant step to put a lid on one of the tricky ways private communication

Texas Right to Life website exposed job applicants’ resumes

Anti-abortion group Texas Right to Life exposed the personal information of hundreds of job applicants after a website bug allowed anyone to access their resumes, which were stored in an unprotected d

Apple delays plans to roll out CSAM detection in iOS 15 after privacy backlash

Apple has delayed plans to roll out its child sexual abuse (CSAM) detection technology that it chaotically announced last month, citing feedback from customers and policy groups. That feedback, if you

FTC bans spyware maker SpyFone, and orders it to notify hacked victims

The Federal Trade Commission has unanimously voted to ban the spyware maker SpyFone and its chief executive Scott Zuckerman from the surveillance industry, the first order of its kind, after the agenc

Apple secures first states to support digital driver’s licenses, but privacy questions linger

Apple’s plan to digitize your wallet is slowly taking shape. What started with boarding passes and venue tickets later became credit cards, subway tickets and student IDs. Next on Apple’s

A popular smart home security system can be remotely disarmed, researchers say

A cybersecurity company says a popular smart home security system has a pair of vulnerabilities that can be exploited to disarm the system altogether. Rapid7 found the vulnerabilities in the Fortress

A new NSO zero-click attack evades Apple’s iPhone security protections, says Citizen Lab

A Bahraini human rights activist’s iPhone was silently hacked earlier this year by a powerful spyware sold to nation-states, defeating new security protections that Apple designed to withstand c

Google says geofence warrants make up one-quarter of all US demands

For the first time, Google has published the number of geofence warrants it’s historically received from U.S. authorities, providing a rare glimpse into how frequently these controversial warran

Apple’s CSAM detection tech is under fire — again

Apple has encountered monumental backlash to a new child sexual abuse material (CSAM) detection technology it announced earlier this month. The system, which Apple calls NeuralHash, has yet to be acti

T-Mobile says at least 47M current and former customers affected by hack

T-Mobile has confirmed that millions of current and former customers had their information stolen in a data breach, following reports of a hack over the weekend. In a statement, T-Mobile, which has mo

A bug in a medical startup’s website put thousands of COVID-19 test results at risk

A California-based medical startup that provides COVID-19 testing across Los Angeles has pulled down a website it used to allow customers to access their test results after a customer found a vulnerab

T-Mobile confirms it was hacked after customer data posted online

T-Mobile has confirmed “unauthorized access” to its systems, days after a portion of customer data was listed for sale on a known cybercriminal forum. The U.S. cell giant, which last year

FEMA just tested the US national emergency alert system

Did you hear it? FEMA just ran its first nationwide test of the U.S. emergency alert system since the pandemic. The Federal Emergency Management Agency, or FEMA, tested both the Emergency Alert System

Apple confirms it will begin scanning iCloud Photos for child abuse images

Later this year, Apple will roll out a technology that will allow the company to detect and report known child sexual abuse material to law enforcement in a way it says will preserve user privacy. App
Load More