Zack Whittaker

Security Editor

Zack Whittaker is the security editor at TechCrunch. You can send tips securely via Signal and WhatsApp to +1 646-755-8849. He can also be reached by email at zack.whittaker@techcrunch.com and zack.whittaker@protonmail.com

The Latest from Zack Whittaker

Education nonprofit Edraak ignored a student data leak for two months

Edraak, an online education nonprofit, exposed the private information of thousands of students after uploading student data to an unprotected cloud storage server, apparently by mistake. The nonprofi

The do’s and don’ts of bug bounty programs with Katie Moussouris

Cybersecurity veteran Katie Moussouris explains what startups should (and shouldn't) do, what to prioritize, and the difference between vulnerability disclosure, penetration testing and bug bounties.

US charges California man over Shopify data breach

A grand jury has indicted a California resident accused of stealing Shopify customer data on over a hundred merchants, TechCrunch has learned. The indictment charges Tassilo Heinrich with aggravated i

How Jamaica failed to handle its JamCOVID scandal

Amber Group claimed it faced "cyberattacks, hacking and mischievous players." In reality, the app was just not that secure.

Microsoft outage knocks sites and services offline

Microsoft stumbled back online Thursday after an hours-long outage in the middle of the U.S. west coast working afternoon. Besides its homepage, Microsoft’s Xbox and Office services went down, l

US cuts trade ties to Myanmar, leaving internet access uncertain

The U.S. government has cut trade ties to Myanmar, two months after the country’s military staged a coup overthrowing the country’s president and also its de facto leader, Aung San Suu Kyi

Apple releases iPhone, iPad and Watch security patches for zero-day bug under active attack

Apple has released an update for iPhones, iPads and Watches to patch a security vulnerability under active attack by hackers. The security update lands as iOS 14.4.2 and iPadOS 14.4.2, which also cove

A new Android spyware masquerades as a ‘system update’

Security researchers say a powerful new Android malware masquerading as a critical system update can take complete control of a victim’s device and steal their data. The malware was found bundle

FatFace tells customers to keep its data breach ‘strictly private’

Clothing giant FatFace had a data breach, but doesn’t want you to tell anyone about it. The company sent an email to customers this week disclosing that it first detected a breach on January 17.

Roll still doesn’t know how its hot wallet was hacked

Move fast, break things, get hacked. That’s what happened at Roll, the social currency platform that allows creators to mint and distribute their own Ethereum-based cryptocurrency known as socia

A newly-wormable Windows botnet is ballooning in size

Researchers say a botnet targeting Windows devices is rapidly growing in size, thanks to a new infection technique that allows the malware to spread from computer to computer. The Purple Fox malware w

Instagram and WhatsApp hit by outage

Instagram and WhatsApp experienced an apparent outage on Friday. It began around 1:40 p.m. ET and lasted for more than half an hour. WhatsApp was unable to connect to the server, and messages were not

Startups, get your bug bounty crash course at Early Stage 2021

In cybersecurity, nothing is “unhackable.” Security bugs are an unavoidable consequence of an online world, but how companies receive and respond to hackers can make or break them. Get it

Secureframe raises $18M Series A to simplify cybersecurity compliance

Security compliance may not be the hottest conversation starter, but it’s a critical and often grueling process that companies have to endure every year to show that their security practices are

$5.7M stolen in Roll crypto heist after hot wallet hacked

A security breach at cryptocurrency platform Roll allowed a hacker to obtain the private key to its hot wallet and steal its contents — worth about $5.7 million. In a statement, the company said it

Hackers are exploiting vulnerable Exchange servers to drop ransomware, Microsoft says

Hackers are exploiting recently discovered vulnerabilities in Exchange email servers to drop ransomware, Microsoft has warned, a move that puts tens of thousands of email servers at risk of destructiv

America’s small businesses face the brunt of China’s Exchange server hacks

As the U.S. reportedly readies for retaliation against Russia for hacking into some of the government’s most sensitive federal networks, the U.S. is facing another old adversary in cyberspace: C

A bug in a popular iPhone app exposed thousands of call recordings

A security vulnerability in a popular iPhone call recording app exposed thousands of users’ recorded conversations. The flaw was discovered by Anand Prakash, a security researcher and founder of

Apple releases important iPhone, iPad, Mac and Watch security patches

Apple has released a set of security updates for iPhones, iPads, Macs and Watches. There are no new features — but these are updates you will still want to install. As part of these security fixes,

Airlines warn of data breaches after SITA passenger system hack

Global air transport data giant SITA has confirmed a data breach involving passenger data. The company said in a brief statement on Thursday that it had been the “victim of a cyberattack,”
Load More