Zack Whittaker

@zackwhittaker
19.1K Followers
443 Following
3.6K Posts
Security editor, TechCrunch
Email: [email protected]
Signal: zackwhittaker.1337
New York, NY
Newsletterhttps://this.weekinsecurity.com
TechCrunchhttps://techcrunch.com/author/zack-whittaker
Zack Whittaker7h ago
Show threadLorenzo Franceschi-Bicchierai7h ago

UPDATE: A member of ShinyHunters told us that they took the stolen European Commission's data directly from TeamPCP. In other words, the hackers are hacking each other now.

https://techcrunch.com/2026/04/03/europes-cyber-agency-blames-hacking-gangs-for-massive-data-breach-and-leak/

Europe’s cyber agency blames hacking gangs for massive data breach and leak | TechCrunch

CERT-EU blamed the cybercrime group TeamPCP for the recent hack on the European Commission, and said the notorious ShinyHunters gang was responsible for leaking the stolen data online.

TechCrunch
Zack Whittaker8h ago
Lorenzo Franceschi-Bicchierai9h ago

NEW: CERT-EU accused cybercrime gang TeamPCP of being behind the recent European Commission hack.

It also accused ShinyHunters of being behind the leak of the stolen data, which was around 92 gigabytes, and contained full names, email addresses, and some email content.

http://techcrunch.com/2026/04/03/europes-cyber-agency-blames-hacking-gangs-for-massive-data-breach-and-leak/

Europe’s cyber agency blames hacking gangs for massive data breach and leak | TechCrunch

CERT-EU blamed the cybercrime group TeamPCP for the recent hack on the European Commission, and said the notorious ShinyHunters gang was responsible for leaking the stolen data online.

TechCrunch
Zack Whittaker13h ago

/me opens laptop: good morni....

* sirens wailing *
* distant sounds of explosions *
* helicopter going down *
* Dido singing in background *

/closes laptop: and that's enough internet for, yep, 8:23 am

Zack Whittaker1d ago

New, by me: Telehealth giant Hims & Hers confirmed its customer service ticketing system was hacked. A spokesperson said it was a social engineering attack. The hacker stole mostly customer support tickets, including customer names and contact information, but also the contents of customer requests.

https://techcrunch.com/2026/04/02/telehealth-giant-hims-hers-says-its-customer-support-system-was-hacked/

Telehealth giant Hims & Hers says its customer support system was hacked | TechCrunch

The U.S. telehealth giant says hackers stole customer support ticket data over the course of several days in February.

TechCrunch
Zack Whittaker1d ago

New, by me: A popular Canadian money transfer app exposed thousands of driver's licenses and passports to the open web. Anyone with a link was able to view the data in their browser.

The data goes back to September 2020, and was updating daily until the server was secured this week.

https://techcrunch.com/2026/04/02/canadian-money-transfer-app-duc-expose-drivers-licenses-passports-amazon-server/

Exclusive: Money transfer app Duc exposed thousands of driver's licenses and passports to the open web

An exposed Amazon-hosted server allowed anyone to access reams of customer data without needing a password.

TechCrunch
Zack Whittaker1d ago

Big news: ICE now has spyware, the agency's acting director confirms.

https://techcrunch.com/2026/04/02/ice-says-it-bought-paragons-spyware-to-use-in-drug-trafficking-cases/

ICE says it bought Paragon's spyware to use in drug trafficking cases | TechCrunch

The acting director of U.S. Immigration and Customs Enforcement told lawmakers that the use of Paragon spyware is necessary to counter terrorists’ “thriving exploitation of encrypted communications platforms.”

TechCrunch
Zack Whittaker1d ago
Lorenzo Franceschi-Bicchierai1d ago

NEW: ICE confirms that it's planning to use Paragon's spyware to counter “foreign terrorist organizations’ thriving exploitation of encrypted communication platforms.”

ICE's acting director Todd Lyons said the agency will “comply with constitutional requirements,” without specifying what those are.

It's unclear if the agency’s criminal investigative unit Homeland Security Investigations (HSI) has already used the spyware.

http://techcrunch.com/2026/04/02/ice-says-it-bought-paragons-spyware-to-use-in-drug-trafficking-cases/

ICE says it bought Paragon's spyware to use in drug trafficking cases | TechCrunch

The acting director of U.S. Immigration and Customs Enforcement told lawmakers that the use of Paragon spyware is necessary to counter terrorists’ “thriving exploitation of encrypted communications platforms.”

TechCrunch
Zack Whittaker2d ago
TechCrunch2d ago
The security update protects a raft of older iPhones and iPads from attacks linked to leaked hacking tools called DarkSword. https://techcrunch.com/2026/04/01/apple-releases-security-fix-for-older-iphones-and-ipads-to-protect-against-darksword-attacks/?utm_source=dlvr.it&utm_medium=mastodon
Zack Whittaker2d ago
Lorenzo Franceschi-Bicchierai2d ago

NEW: WhatsApp alerted around 200 users who were tricked into installing a fake app that was actually government spyware.

The company accused Italian spyware maker SIO of being behind the app, and announced it plans to send the company "a formal legal demand to stop any such malicious activity."

http://techcrunch.com/2026/04/01/whatsapp-notifies-hundreds-of-users-who-installed-a-fake-app-that-was-actually-government-spyware/

WhatsApp notifies hundreds of users who installed a fake app made by government spyware maker | TechCrunch

The Meta-owned company said it identified around 200 users who were tricked into installing a fake version of WhatsApp that was actually Italian-made spyware.

TechCrunch
Zack Whittaker2d ago

Not a joke: Hasbro was hacked. The American toymaking giant said in an SEC filing that it may take weeks for it to recover. Much of the company's website appears down.

https://techcrunch.com/2026/04/01/hasbro-hacked-may-take-several-weeks-to-recover/

Hasbro says it was hacked, and may take 'several weeks' to recover | TechCrunch

The American toy-making giant noted that it was continuing to "implement measures to secure its business operations," suggesting that the hackers may still be in the company's systems.

TechCrunch