Zack Whittaker

@zackwhittaker
19.1K Followers
443 Following
3.6K Posts
Security editor, TechCrunch
Email: [email protected]
Signal: zackwhittaker.1337
New York, NY
Newsletterhttps://this.weekinsecurity.com
TechCrunchhttps://techcrunch.com/author/zack-whittaker
Zack Whittaker31m ago
evacide8h ago
Yael's post demonstrates something about digital privacy/security that I think a lot of people miss: there is no right answer, just a series of trade-offs. And every person has to make their own decisions about which trade-offs are worthwhile. https://blog.yaelwrites.com/options-for-phones-at-protests/
Options for Phones at Protests

Simply showing up to a protest leaves you susceptible to all sorts of surveillance, including cameras, drones, facial recognition, and more. There's not always a lot you can do about pernicious street-level surveillance, but you do have a lot of choices when it comes to your phone. Because there's no

String Literal
Show threadZack Whittaker19h ago

FBI said it's "aware of malicious actors" targeting Patel’s email and that "the information in question is historical in nature and involves no government information."

Many files are dated 2014 to ~2019. But as noted by William Turton on X, a single email is dated 2022, sugesting more may leak.

https://techcrunch.com/2026/03/27/iranian-hackers-claim-breach-of-fbi-director-kash-patels-personal-email-account/

Iranian hackers claim breach of FBI director Kash Patel's personal email account | TechCrunch

Handala, a pro-Iranian hacking group allegedly working for Iran’s government, published emails it said were taken from the Gmail account of FBI director Kash Patel.

TechCrunch
Zack Whittaker20h ago
Lorenzo Franceschi-Bicchierai20h ago

NEW: Iranian-linked hackers claim to have breached the personal Gmail account of FBI director Kash Patel, leaking emails and photos.

We were able to confirm that at least a portion of the emails are authentic.

The U.S. has accused Iran's government of being behind the hacking group Handala.

https://techcrunch.com/2026/03/27/iranian-hackers-claim-breach-of-fbi-director-kash-patels-personal-email-account/

Iranian hackers claim breach of FBI director Kash Patel's personal email account | TechCrunch

Handala, a pro-Iranian hacking group allegedly working for Iran’s government, published emails it said were taken from the Gmail account of FBI director Kash Patel.

TechCrunch
Zack Whittaker20h ago

NEW: Hackers have leaked a portion of FBI director Kash Patel's emails online, confirming Reuters.

TechCrunch has verified that at least portion of the leaked emails from Patel's Gmail account were authentic by verifying cryptographic signatures contained in the emails.

w/ @lorenzofb:

https://techcrunch.com/2026/03/27/iranian-hackers-claim-breach-of-fbi-director-kash-patels-personal-email-account/

Iranian hackers claim breach of FBI director Kash Patel's personal email account | TechCrunch

Handala, a pro-Iranian hacking group allegedly working for Iran’s government, published emails it said were taken from the Gmail account of FBI director Kash Patel.

TechCrunch
Show threadZack Whittaker22h ago
@claus @derekheld interesting, i'll look into this more. i appreciate you both taking the time to reply!
Zack Whittaker23h ago

A Lloyds banking app glitch allowed almost half-a-million people to access the bank transactions from *other* banking customers.

Per a letter from its CEO, "a customer had to access their own list of transactions within small fractions of a second of another person doing the same." 👀

Asking the infosec hivemind. Was this security event a race condition or classified as something else? And why do these data leaks seem to happen often at banks or financial companies?

https://www.theregister.com/2026/03/27/lloyds_app_glitch_turned_transactions/

Lloyds app glitch turned transactions into shared experience for 447k users

: A botched update mixed up transaction data across accounts, with thousands now receiving goodwill payouts

The Register
Zack Whittaker23h ago
BleepingComputer1d ago

The European Commission is investigating a security breach after a threat actor gained access to its Amazon cloud infrastructure.

https://www.bleepingcomputer.com/news/security/european-commission-investigating-breach-after-amazon-cloud-hack/

European Commission investigating breach after Amazon cloud hack

The European Commission, the European Union's main executive body, is investigating a security breach after a threat actor gained access to its Amazon cloud infrastructure.

BleepingComputer
Zack Whittaker1d ago
Show threadLesley Carhart 1d ago
In this year of 2026 if you absolutely have to run your mobile, international event in America - and you choose to run it in Texas, Tennessee, or Florida, that is certainly a choice that reflects which of your members or employees you see as human.
Zack Whittaker1d ago
Zack Whittaker1d ago

For my newsletter and blog ~ this week in security ~ I wrote about meaningful steps you can take to ensure your digital security and privacy while traveling through airports. In this post, you'll find resources to understand the risks you face, and what you can do to protect your data.

Please share! https://this.weekinsecurity.com/security-precautions-to-consider-while-traveling-through-airports/

You can also sign up for my free weekly newsletter (via email or RSS). Out Sundays! https://this.weekinsecurity.com

Security precautions to consider while traveling through airports

As border device searches rise, there are practical steps you can take to protect your devices and data from airport searches.

~this week in security~
Zack Whittaker1d ago
Lorenzo Franceschi-Bicchierai1d ago

NEW: We spoke to a few iPhone security experts about what the discovery of DarkSword means to the long-held assumption that iPhones are very hard to hack.

The answer is nuanced, and not simple. Apple has made significant strides in making iPhones more secure, but DarkSword may change how we think.

http://techcrunch.com/2026/03/26/apple-made-strides-with-ios-26-security-but-leaked-hacking-tools-still-leave-millions-exposed-to-spyware-attacks/

Apple made strides with iOS 26 security, but leaked hacking tools still leave millions exposed to spyware attacks | TechCrunch

Leaked hacking tools threaten the security of millions of older iPhones. Cybersecurity experts weigh in.

TechCrunch