Zack Whittaker

Zack Whittaker

Security editor

Zack Whittaker is the security editor at TechCrunch. You can send tips securely via Signal and WhatsApp to +1 646-755-8849, and his PGP fingerprint for email is: 4D0E 92F2 E36A EC51 DAAE 5D97 CB8C 15FA EB6C EEA5.

He can also be reached by email: zack.whittaker@techcrunch.com.

The Latest from Zack Whittaker

Google defeats shareholders on ‘Dragonfly’ censored search in China

A shareholder resolution aimed at halting Google’s efforts to bring a censored version of its search engine to China has failed. Shareholders tabled a resolution to demand Google put the brakes

For pen testing firm IOActive, security is cultural not transactional

IOActive may not be a household name but you almost certainly know its work. The Seattle-headquartered company has been behind some of the most breathtaking hacks in the past decade. Its researchers h

House lawmakers demand end to warrantless collection of Americans’ data

Two House lawmakers are pushing an amendment that would effectively defund a massive data collection program run by the National Security Agency unless the government promises to not intentionally col

Homeland Security has tested a working BlueKeep remote code execution exploit

Homeland Security’s cyber agency says it has tested a working exploit for the BlueKeep vulnerability, capable of achieving remote code execution on a vulnerable device. To date, most of the priv

Target checkouts hit by outage for a second day in a row

Another day, another Target checkout outage. Many took to social media to complain that checkouts at the retail giant went down for a second day in a row. Many stores were only taking cash and gift ca

Millions of Venmo transactions scraped in warning over privacy settings

A computer science student has scraped seven million Venmo transactions to prove that users’ public activity can still be easily obtained, a year after a privacy researcher downloaded hundreds o

After Equifax breach, US watchdog says agencies aren’t properly verifying identities

A federal watchdog says the government should stop relying on the credit agencies to verify the identifies of those using government services. In a report out this week, the the Government Accountabil

Black Hat scraps Rep. Will Hurd as keynote speaker amid voting record controversy

Rep. Will Hurd will no longer give the keynote address at the Black Hat security conference amid questions about his voting record on women’s rights. Hurd, a Texas Republican congressman, was sc

Thousands of medical injury claim records exposed by ad agency

An internet advertising company specializing in helping law firms sign up potential clients has exposed close to 150,000 records from a database that was left unsecured. The database contained submiss

Rep. Will Hurd to keynote Black Hat draws ire for voting record on women’s rights

A decision to confirm Rep. Will Hurd as the keynote speaker at the Black Hat security conference this year has prompted anger and concern by some long-time attendees because of his voting record on wo

A widely used infusion pump can be remotely hijacked, say researchers

A workstation used to dock an infusion pump widely used in hospitals and medical facilities has critical security flaws that allow it to be remotely hijacked and controlled, according to security rese

Facebook collected device data on 187,000 users using banned snooping app

Facebook obtained personal and sensitive device data on about 187,000 users of its now-defunct Research app, which Apple banned earlier this year after the app violated its rules. The social media gia

Homeland Security’s Jeanette Manfra is coming to Disrupt SF

We can’t talk cybersecurity without hearing from the government. We’re thrilled to announce Homeland Security Assistant Director Jeanette Manfra, a senior executive at the department&#8217

Google opens its Android security-key tech to iPhone and iPad users

Google will now allow iPhone and iPad owners to use their Android security key to verify sign-ins, the company said Wednesday. Last month, the search and mobile giant said it developed a new Bluetooth

Most US mobile banking apps have security and privacy flaws, researchers say

You might figure the biggest U.S. banks would have some of the most secure mobile apps. Spoiler alert: not so much. New findings from security firm Zimperium, shared exclusively with TechCrunch, say m

Some sage security advice after Radiohead’s unreleased music hack

Bad news: Radiohead was hacked. Last week, a hacker stole the band’s lead singer Thom Yorke’s private minidisk archive from the band’s third album and subsequent major worldwide hit,

Card readers at electric vehicle charging stations will weaken security, researchers say

Electric vehicle charging stations could become one of the next big targets for fraudsters — thanks to proposals in several state that researchers say would weaken their security. Most electric vehi

CBP says traveler photos and license plate images stolen in data breach

U.S. Customs and Border Protection has confirmed a data breach has exposed the photos of travelers and vehicles traveling in and out of the United States. The photos were transferred to a subcontracto

AI security startup Darktrace’s CEO defeats buzzword bingo with trust and transparency

It takes a lot of trust to allow a company to come in and install a mystery box on their network to monitor for threats. It’s like inviting in a security guard to sit in your living room to make

Top voting machine maker reverses position on election security, promises paper ballots

Voting machine maker ES&S has said it “will no longer sell” paperless voting machines as the primary device for casting ballots in a jurisdiction. ES&S chief executive Tom Burt con
Load More