Zack Whittaker

@zackwhittaker
19.4K Followers
444 Following
3.7K Posts
Security editor, TechCrunch
Email: [email protected]
Signal: zackwhittaker.1337
New York, NY
Newsletterhttps://this.weekinsecurity.com
TechCrunchhttps://techcrunch.com/author/zack-whittaker
Zack Whittaker1d ago

Your doctor or therapist might be using AI recording to transcribe your patient notes. Two privacy experts have nine good reasons why you should decline and opt-out.

Some words by me: https://this.weekinsecurity.com/why-your-doctors-ai-recorder-can-be-bad-for-your-health-and-privacy/

Why your doctor's AI recorder can be bad for your health (and privacy)

Privacy experts have nine good reasons why you can โ€” and should โ€” decline a doctor or therapist's request to record your conversations with AI tools.

~this week in security~
Zack Whittaker1d ago

New, by me: App and website hosting giant Vercel says some of its customers had data stolen *prior* to its recent hack, suggesting that the company's security incident is far broader than first known.

Vercel also said it's identified additional customers who had data compromised.

https://techcrunch.com/2026/04/23/vercel-says-some-of-its-customers-data-was-stolen-prior-to-its-recent-hack/

Vercel says some of its customers' data was stolen prior to its recent hack | TechCrunch

The app and website hosting company has found evidence of a second compromise of customer accounts after expanding its initial investigation following a breach in early April.

TechCrunch
Zack Whittaker1d ago

NEW: At least two surveillance vendors are believed to be abusing access to at least three telecommunication companies in an effort to tap people's location data on behalf of their government customers.

The phone companies include one in Israel, one in the U.K., and one in Jersey (Channel Island).

https://techcrunch.com/2026/04/23/surveillance-vendors-caught-abusing-access-to-telcos-to-track-peoples-phone-locations-researchers-say/

Surveillance vendors caught abusing access to telcos to track people's phone locations, researchers say | TechCrunch

The Citizen Lab found two separate surveillance vendors abusing the backbone of cellular networks to spy on several victims across the world.

TechCrunch
Zack Whittaker1d ago

I'll save you a click, but toy maker giant Hasbro is *still* down after a cyberattack on March 28. The company said in an 8-K filing today that the "unauthorized access has been contained and the Company is making progress in fully restoring its systems and operations."

https://www.sec.gov/ix?doc=/Archives/edgar/data/46080/000004608026000016/has-20260423.htm

XBRL Viewer

Zack Whittaker2d ago
Lorenzo Franceschi-Bicchierai2d ago

NEW: Apple fixed the bug that law enforcement agencies, like the FBI, were taking advantage of to extract chat messages that had been deleted or disappeared automatically.

Until now the iPhone stored deleted or disappered messages in a database, allowing authorities to access them with forensic tools.

http://techcrunch.com/2026/04/22/apple-fixes-bug-that-cops-used-to-extract-deleted-chat-messages-from-iphones/

Apple fixes bug that cops used to extract deleted chat messages from iPhones | TechCrunch

The iPhone and iPad bug allowed law enforcement using forensic tools to read messages that had long been deleted by the Signal app.

TechCrunch
Zack Whittaker2d ago
Fesshole ๐Ÿงป2d ago
Just completed financial crime and fraud training online for work, can claim 30 mins for training time. It's my area of expertise so I did the course in 5 mins including the quiz, and will claim 30 mins, which is "fraud".
Zack Whittaker2d ago

New: Cosmetics giant Rituals has confirmed a data breach involving its customer membership database. Won't say how many customers had personal information stolen (names, addresses, phone numbers, and more) but its website says it has 41M+ total customers.

Breach affects EU, UK and US customers.

https://techcrunch.com/2026/04/22/cosmetics-giant-rituals-confirms-data-breach-of-customer-membership-records/

Cosmetics giant Rituals confirms data breach of customer membership records | TechCrunch

The cosmetics retailer, which counts 41 million customers in its membership data, declined to provide an accurate total number of customers affected.

TechCrunch
Zack Whittaker2d ago

U.K. intelligence says at least 100 countries now have access to government spyware, up from around 80 countries in 2023. The rise shows that spyware continues to proliferate and that the bar to obtaining spyware is lower.

https://techcrunch.com/2026/04/22/uk-government-says-100-countries-have-spyware-that-can-hack-peoples-phones/

UK government says 100 countries have spyware that can hack people's phones | TechCrunch

The U.K.'s cybersecurity chief warned that U.K. businesses and critical infrastructure are underestimating the threat from spyware attacks and other cyberthreats, with more governments having access to the powerful surveillance technology than ever.

TechCrunch
Zack Whittaker2d ago
So... Anthropic spent weeks claiming that it couldn't publicly release its Mythos AI model because of its alleged offensive hacking capabilities and.... some AI nerds from Discord just found it and accessed it? Anthropic is a fucking joke. https://www.bloomberg.com/news/articles/2026-04-21/anthropic-s-mythos-model-is-being-accessed-by-unauthorized-users
Zack Whittaker3d ago
TechCrunch3d ago
A former employee of a cybersecurity firm pleaded guilty to aiding ransomware criminals to maximize their profits, with the goal of taking a cut of the ransom. https://techcrunch.com/2026/04/21/ransomware-negotiator-pleads-guilty-to-helping-ransomware-gang/?utm_source=dlvr.it&utm_medium=mastodon