Zack Whittaker

Security Editor

Zack Whittaker is the security editor at TechCrunch. You can send tips securely via Signal and WhatsApp to +1 646-755-8849. He can also be reached by email at zack.whittaker@techcrunch.com and zack.whittaker@protonmail.com

The Latest from Zack Whittaker

Dozens of journalists’ iPhones hacked with NSO ‘zero-click’ spyware, says Citizen Lab

Citizen Lab researchers say they have found evidence that dozens of journalists had their iPhones silently compromised with spyware known to be used by nation-states. For more than the past year, Lond

You can now securely submit tips to TechCrunch using SecureDrop

Now we're making it easier and more secure for you to contact our reporters and editors.

Just how bad is that hack that hit US government agencies?

"There’s not a single organization who can claim cybersecurity perfection."

2020 was a disaster, but the pandemic put security in the spotlight

Let’s preface this year’s predictions by acknowledging and admitting how hilariously wrong we were when this time last year we said that 2020 “showed promise.” In fairness (alm

Gift Guide: 9 security and privacy gifts to keep your friends and family safe

For many of us, being home a lot more right now also means being online a lot more. It's a great time to evaluate how you're keeping your data safe — and to help others in your life do the same.

Decrypted: Google finds a devastating iPhone security flaw, FireEye hack sends alarm bells ringing

In case you missed it: A ransomware attack saw patient data stolen from one of the largest U.S. fertility networks; the Supreme Court began hearing a case that may change how millions of Americans use

Massachusetts governor won’t sign police reform bill with facial recognition ban

Massachusetts Governor Charlie Baker has returned a police reform bill back to the state legislature, asking lawmakers to strike out several provisions — including one for a statewide ban on police

Spotify resets passwords after a security bug exposed users’ private account information

Spotify said it has reset an undisclosed number of user passwords after blaming a software vulnerability in its systems for exposing private account information to its business partners. In a data bre

Robot lawyer startup DoNotPay now lets you file FOIA requests

DoNotPay, the consumer advice company that started out helping people easily challenge parking tickets, has come a long way since it launched. It’s expanded to help consumers cancel memberships,

Cybersecurity firm FireEye says it was hacked by a nation-state

FireEye, normally the first company that cyberattack victims will call, has now admitted it too has fallen victim to hackers, which the company called a “sophisticated threat actor” that w

Researchers say hardcoded passwords in GE medical imaging devices could put patient data at risk

Dozens of medical imaging devices built by General Electric are secured with hardcoded default passwords that can’t be easily changed, but could be exploited to access sensitive patient scans, a

Cyber insurance startup At-Bay raises $34M Series C, adds M12 as a new investor

Cybersecurity insurance startup At-Bay has raised $34 million in its Series C round, the company announced Tuesday. The round was led by Qumra Capital, a new investor. Microsoft’s venture fund M

Cloudflare and Apple design a new privacy-friendly internet protocol

Engineers at Cloudflare and Apple say they’ve developed a new internet protocol that will shore up one of the biggest holes in internet privacy that many don’t know even exists. Dubbed Obl

Dragos raises $110M Series C as demand to secure industrial systems soars

Cybersecurity firm Dragos has raised $110 million in its Series C, almost triple the amount that it raised two years ago in its last round. Dragos was founded in 2016 to detect and respond to threats

Twitter now supports hardware security keys for iPhones and Android

Twitter said Wednesday that accounts protected with a hardware security key can now log in from their iPhone or Android device. The social media giant rolled out support for hardware security keys in

Massachusetts lawmakers vote to pass a statewide police ban on facial recognition

Massachusetts lawmakers have voted to pass a new police reform bill that will ban police departments and public agencies from using facial recognition technology across the state. The bill was passed

Ivanti has acquired security firms MobileIron and Pulse Secure

IT security software company Ivanti has acquired two security companies: Enterprise mobile security firm MobileIron and corporate virtual network provider Pulse Secure. In a statement on Tuesday, Ivan

Thousands of US lab results and medical records spilled online after a security lapse

NTreatment, a technology company that manages electronic health and patient records for doctors and psychiatrists, left thousands of sensitive health records exposed to the internet because one of its

The Supreme Court will hear its first big CFAA case

The Supreme Court will hear arguments on Monday in a case that could lead to sweeping changes to America’s controversial computer hacking laws — and affect how millions use their computers and

US Fertility says patient data was stolen in a ransomware attack

U.S. Fertility, one of the largest networks of fertility clinics in the United States, has confirmed it was hit by a ransomware attack and that data was taken. The company was formed in May as a partn
Load More