Zack Whittaker, TechCrunch

Zack Whittaker


New York, NY, United States

Contact Zack

Discover and connect with journalists and influencers around the world, save time on email research, monitor the news, and more.

Start free trial

  • TechCrunch
  • Yahoo
  • ZDNet
  • CBS News
  • CNET
  • Fortune

Recent articles by Zack:

A hack at ODIN Intelligence exposes a huge trove of police raid files

The breach exposes the police tech firm's own systems but also confidential law enforcement data uploaded by ODIN's police customers. → Read More

Mailchimp says it was hacked — again

This is the second breach to hit Mailchimp in six months. It also appears to be almost identical to a previous incident. → Read More

Norton LifeLock says thousands of customer accounts breached

The cybersecurity company said the credential stuffing attack may have allowed intruders access to customer-saved passwords. → Read More

CircleCI says hackers stole encryption keys and customers’ source code

In a post-mortem, CircleCi blamed malware stole an employee's session token allowing intruders to access customer data. → Read More

Microsoft ends Windows 7 security updates

The decade-old operating system will continue to run, but will remain vulnerable to ongoing security threats and vulnerabilities. → Read More

Meet the cybercriminals of 2022

Arrested, seized, doxed and detained. These are just some of the ways police and prosecutors around the world took down the biggest cyber-crime operations of the year, even if it meant resorting to new and unconventional eyebrow-raising methods. From stashing billions of bitcoin under the floorboards to teenage hackers gatecrashing Fortune 500 networks, this year […] → Read More

It’s all in the (lack of) details: 2022’s badly handled data breaches

2022 has been a year-long lesson in how not to respond to a data breach. → Read More

LastPass says hackers stole customers’ password vaults

The password manager giant said hackers stole both encrypted and unencrypted customer data, including password vaults. → Read More

Even the FBI says you should use an ad blocker

The feds say cybercriminals are buying online ads to impersonate brands with the aim of stealing or extorting money from victims. → Read More

Support King, banned by FTC, linked to new stalkerware operation

Leaked data shows SpyTrac is one of the biggest known active stalkerware operations with over a million compromised Android devices. → Read More

Apple fixes ‘actively exploited’ zero-day security vulnerability affecting most iPhones

The iPhone security flaw was discovered by a Google unit that uncovers nation-state spyware, hacking and cyberattacks. → Read More

Florida state tax website bug exposed filers’ data

The security researcher who discovered the now-fixed vulnerability said there were more than 700,000 applications in the system. → Read More

LastPass says it was breached — again

The password manager said a hacker used information stolen from a breach of LastPass' systems in August to break in again. → Read More

A simple Android lock screen bypass bug landed a researcher $70,000

Google paid the security researcher for reporting a bug that skirted Android lock screen protections. → Read More

Google says surveillance vendor targeted Samsung phones with zero-days

The three vulnerabilities were found in Samsung's custom-built software and fixed in 2021. → Read More

Twitter chief information security officer Lea Kissner departs

The social media giant's security lead resigned two weeks after Elon Musk's $44 billion takeover. → Read More

Aiphone door entry systems can be ‘easily’ bypassed thanks to NFC bug

The vulnerability in the door entry security system, used in government buildings and apartment complexes, cannot be fixed. → Read More

SolarWinds says it’s facing SEC ‘enforcement action’ over 2020 hack

The software maker was hacked by Russian spies as part of an espionage campaign targeting corporations and government departments. → Read More

Twitter’s verification chaos is now a cybersecurity problem

Cybercriminals are already taking advantage of Twitter's latest tumult by sending verification-themed phishing emails. → Read More

Amazon accidentally exposed an internal server packed with Prime Video viewing habits

The server, which Amazon took offline, was not protected with a password. → Read More