Ideaforge

The cybersecurity firm Synack will offer its penetration testing services to states for free in an effort to secure election systems for the 2018 midterms.

Synack, founded by two former NSA analysts, is best known for its bug bounty program that allows its carefully curated stable of researchers to probe a client’s systems for vulnerabilities. The researchers then disclose those soft spots through Synack’s platform.

The company’s offerings are already tuned to the needs of sensitive government clients, and Synack has worked with IRS and the Department of Defense through its “Hack the Pentagon” bug bounty program. States wary of bug bounties should have some peace of mind knowing that Synack emphasizes the intense vetting and low acceptance rate of its research team.

From now until November 6, Synack will offer free penetration testing for voter registration sites and voter databases through its “Secure the Election” initiative.

The offer’s fine print:

“Each eligible recipient will be limited to one (1) free 14-day Synack Crowdsourced Vulnerability Discovery Test of an online voter registration website or remotely-accessible database that is expected to be used in the November 2018 mid-term election.”

It’s possible that states wary of the federal government’s involvement in state and local elections will be less skittish of help coming from the private sector. The Department of Homeland security has stepped up its role in securing elections, but federal resources, including cybersecurity audits, remain opt-in.

Synack isn’t the only security company talking to states about securing elections. In late 2017, Cloudflare announced that it would extend it DDoS protection for free to states for their voter databases, voter registration sites and election result sites through what it calls “the Athenian Project.”  In April, enterprise security firm Centrify offered states its services at a discount in a similar “Secure the Vote” program.

“Synack’s pro bono service looks for vulnerabilities in remotely-accessible voter registration databases and online voter registration websites from a hacker’s perspective,” the company said in a press release.

“Synack’s crowd of researchers discovers vulnerabilities left undetected by other solutions and then helps to remediate them before an adversary can exploit them on election day.”

Source: Tech Crunch

Calling all creative hackers, coders and programmers around the world. We’ve cooked up a special Virtual Hackathon to celebrate TechCrunch Disrupt San Francisco 2018 — our biggest Disrupt event ever. Think of it as a Hackathon without borders. Teams from across the globe can submit their most impressive hacks. Sign up for the Hackathon right now, and start creating today.

In previous Disrupt Hackathons, teams had only 24 hours to work their magic. But when you call for thousands of worldwide competitors to join the fun, well, you gotta give them a bit more time. That’s why we’re launching today — plenty of time to form your team, come up with an idea and get your hack on in the run-up to Disrupt SF 2018, which takes place on September 5-7.

Here’s how the virtual Disrupt SF Hackathon works. Our expert judges will review, evaluate and score every eligible submitted hack. The 70 highest-scoring teams will receive 5 Innovator passes to TechCrunch Disrupt SF 2018.

From that group, the top 30 teams will exhibit their hacks in our Hackathon Demo area at Disrupt SF to over 10,000 attendees and a separate panel of judges who will determine the 10 teams that get to demo their creation on The Next Stage. Out of those 10, the judges will choose one winner to be our very first Virtual Hackathon Champion. Oh, yeah — the winner gets the $10,000 cash prize.

Now a Disrupt Hackathon, virtual or otherwise, wouldn’t be a Hackathon without lots of very real sponsored prizes, cash and swag. You won’t be disappointed on that front, trust us. We have some great prizes from TomTom, BYTON and Viond on tap so far, and many more to be announced in the coming weeks.

Need more inspiration? Disrupt Hackathons have resulted in some pretty sweet hacks. Just take a look at the range of products the grand-prize winners of Hackathons-past created:

• Disrupt London 2016: The Emotion Journal — a voice journaling app that performs real-time analysis to assess and track the user’s emotional state over time
• Disrupt NY 2017: reVIVE — a VR product that provides diagnostic and treatment mechanisms for ADHD
• Disrupt SF 2017: Alexa Shop Assist — lets you ask Alexa to locate products in a store
• Disrupt Berlin 2017: Quick Insurance — a simple way to purchase insurance for all your valuable stuff

They created these awesome hacks in a mere 24 hours. Now just imagine what thousands of tech coders, creators, hackers and programmers from around the world can create between now and when Disrupt SF ’18 kicks off on September 5. The mind boggles.

Disrupt San Francisco 2018 takes place September 5-7. The Virtual Hackathon starts now. Do you have the raw tech talent and creativity to win it all? There’s only one way to find out. Sign up for the Hackathon today.

Source: Tech Crunch

Welcome back to CTRL+T, the TechCrunch podcast where Megan Rose Dickey and I talk about the stories we want to talk about and figure out what they mean in relation to life.

This week is Apple’s big developer conference, creatively called Worldwide Developers Conference (or WWDC), and TechCrunch was there. Each year the company showcases the things developers will be able to do in upcoming versions of Apple’s various operating systems (iOS, macOS, tvOS and watchOS). While there were a bunch of features that didn’t really elicit much excitement from either of us, there was one in particular that we are quite looking forward to: Memoji. We talk about it all and what messaging in general means out there in that big bad world of ours.

Also this week, Kanye West made his latest album, ye, available on platforms other than Tidal, which is a departure from what he did for the release of his 2016 release, Pablo. We talked about that for a second. Because these days you can’t have a conversation about the rapper without getting into his recent comments about American slavery having been a choice. So we did that.

Click play on the little player below or, better yet, subscribe on Apple Podcasts, Stitcher, Overcast, CastBox or whatever other podcast platform you can find.

Source: Tech Crunch

For the past decade, telecommunications companies around the globe have been grappling with falling average revenues per user equaling stagnant growth rates.

While particularly mobile operators have enabled increasing prosperity in third-world countries, new ways of working and fueled entirely new markets, much of the wealth created has landed on the books of companies that we look upon with increasing discomfort: Google, Amazon, Alibaba, Tencent and others. And as if this was not enough, the very ingredient — ubiquitous connectivity — that has served as lubricant for the disruption of entire industries is now on the verge of being disrupted itself.

While many expect finance or healthcare to be next on the list of global serial disruptors, and technologies like wearables, blockchain and AI are cited to be the nails in the coffins of these industries, small players have cooked up the ingredients that could well marginalize today’s prevailing telco business models globally. There are three ingredients that could make that happen…

Lack of customer trust

Among the top 100 most trusted brands globally, you will find companies of almost any industry, except telco. You will find our serial disruptors, big brand consumer packaged goods, car manufacturers — even banks, payment companies and healthcare service providers. But you won’t find telcos. In their battle for growth, telcos globally have largely alienated their customers for the sake of managing yield and profitability.

Furthermore, simple customer engagement processes are often broken, and telcos have struggled to achieve a high quality of service with zero defects, high responsiveness and a great customer experience on even their most relevant customer interactions. They have broken the trust equation with their customers.

Why is that relevant? Because trust is an important ingredient in disintermediation, à la Uber or Airbnb. Uber has put trust and ease into the car-hailing business, while Airbnb has put the trust in-between guest and host. On the flip side, an existing trusted relationship is hard to disintermediate.

However, the telco-customer relationship, as global brand indicators show, is ready to be disrupted. Perhaps even more so than the bank-client or doctor-patient relationships.

Liquid infrastructure

While telcos are grappling with fixing their customer front ends, becoming more nimble and responsive to customer needs and putting “greatness” back into the overall customer experience equation, small startups (and large telco suppliers alike) are creating what is known as “liquid infrastructures.”

In today’s cloud-based world, global network traffic is exploding while traffic patterns, with globally scaled and load-balanced cloud-based back-ends, are becoming more and more fluid and less predictable. Likewise, decreasing enterprise assets actually connect to the enterprise network directly.

The internet of things (IoT) is creating massively distributed architectures with globally roaming assets that need to seamlessly blend into critical enterprise applications. So, enterprises are challenged with creating more flexible network infrastructures that not only connect their various operating sites, but also create reliable connections to public cloud service providers, while connecting remote and mobile IoT assets to the core network. And all that while accommodating massive shifts in traffic patterns depending on the day of the week, time of day or reconfigurations happening at service providers.

Liquid infrastructure promises to provide a solution for such challenges, and it’s not a concept telcos are capable of, or offering, in the market place as of now. It is players like Waltz Networks, a venture-backed startup from San Francisco, that are disrupting the market place by providing solutions for the completely self-managed, liquid infrastructure that can handle today’s network demand.

Envision such an offering as a global OTT service and you have a recipe for a serious contender to the global enterprise telco services market.

“On the fly” mobile access

Redtea Mobile is another such interesting disruptor in the telco space. Imagine your IoT assets are roaming around the world globally. Which telco would you go to in order to buy a data plan, plus device management, which enables you to provision and deprovision your devices globally and on the fly?

Telcos globally have been struggling to come up with competitive offerings that make managing such global asset bases economical and a breeze. That is firstly because none of the globally leading telcos can offer a truly global network — be it of their own or partner assets. Secondly, given multiple telcos are forced to collaborate if they want to offer a global virtual mobile data service, long-standing roaming agreements often stand in the way of economical pricing models. Telcos are not yet willing to sacrifice existing global roaming revenue at the expense of a potentially growing global IoT mobility data market opportunity.

Despite these challenges, however, the demand is increasing. While global mobile traffic was 7 exabytes in 2016, it will skyrocket 700 percent by 2021. That’s where Redtea Mobile comes into the picture. With Redtea Mobile’s technology, you could imagine someone buying regional capacity with enough associated international mobile subscriber identities (IMSI), the unique numbers assigned to mobile phone users, around the globe at wholesale prices, bundling this capacity as a global mobile IoT data service, and reselling it to enterprises globally to fuel their IoT devices.

The way Redtea Mobile’s technology works is that it can reprogram eSIMs on the fly from the cloud, so a device that operates on one mobile network in one country can be reprogrammed to another network on the fly once it crosses the border.

Both Redtea Mobile and Waltz Network enable the disintermediation of telcos, cutting out the expensive middle man. In the scenarios described above, the end-customer relationship would likely not reside with the telco, but with a service provider smartly repackaging core telco services with new technology into an over-the-top (OTT) service that completely marginalizes the telco to a pure infrastructure provider — much like the Uber drivers or the Airbnb property owners. And, as my first argument suggests, it is unlikely that many customers will bemoan the demise of global telcos as customer-facing service providers.

So what can telcos do?

Enough cases have proven already that companies are better off disrupting than being disrupted.

True, telcos have one strength that is impossible to beat — they own assets that are hard, in most markets impossible, to replicate. However, while telcos will not vanish entirely, they run the risk of being completely marginalized. To prevent that, they should drive disruptive change of their own. While small companies are innovating, telcos could be at the forefront of deploying those technologies across their infrastructure and of developing new and innovative offerings that disrupt their prevailing products and business models on top of those technologies.

Will this be enough to win? No, telcos will still have to fix the trust equation with their customers, become more responsive, etc.

But if telcos rely on their stagnant existing revenue streams and are too timid in embracing disruption, they are likely to continue their slow path toward the ultimate horror scenario of many telco executives: that of becoming a dump pipe.

Source: Tech Crunch

Facebook and Google were paid millions for political advertising purposes in Washington but failed for years to publish related information — such as the advertiser’s address — as required by state law, alleges a lawsuit by the state’s attorney general.

Washington law requires that “political campaign and lobbying contributions and expenditures be fully disclosed to the public and that secrecy is to be avoided.”

Specifically, “documents and books of account” must be made available for public inspection during the campaign and for three years following; these must detail the candidate, name of advertiser, address, cost and method of payment, and description services rendered.

Bob Ferguson, Washington’s attorney general, filed a lawsuit yesterday alleging that both Facebook and Google “failed to obtain and maintain” this information. Earlier this year, Eli Sanders of Seattle’s esteemed biweekly paper The Stranger requested to view the “books of account” from both companies, and another person followed up with an in-person visit; both received unsatisfactory results.

They alerted the AG’s office to these investigations in mid-April, and here we are a month and a half later with a pair of remarkably concise lawsuits. (This appears to be separate from the Seattle Election Commission’s allegations of similar failings by Facebook in February.)

All told Facebook took in about $3.4 million over the last decade, including “$2.5 million paid through political consultants and other agents or intermediaries, and $619,861 paid directly to Facebook.” Google received about $1.5 million over the same period, almost none of which was paid directly to the company. (I’ve asked the AG’s office for more information on how these amounts are defined.)

The total yearly amounts listed in the lawsuits may be interesting to anyone curious about the scale of political payments to online platforms at the state scale, so I’m reproducing them here.

Facebook

• 2013: $129,099
• 2014: $310,165
• 2015: $147,689
• 2016: $1,153,688
• 2017: $857,893

Google

• 2013: $47,431
• 2014: $72,803
• 2015: $56,639
• 2016: $310,175
• 2017: $295,473

(Note that these don’t add up to the totals mentioned above; these are the numbers filed with the state’s Public Disclosure Committee. 2018 amounts are listed but are necessarily incomplete, so I omitted them.)

At least some of the many payments making up these results are not properly documented, and from the looks of it, this could amount to willful negligence. If a company is operating in a state and taking millions for political ads, it really can’t be unaware of that state’s disclosure laws. Yet according to the lawsuits, even basic data like names and addresses of advertisers and the amounts paid were not collected systematically, let alone made available publicly.

It’s impossible to characterize flouting the law in such a way as an innocent mistake, and certainly not when the mistake is repeated year after year. This isn’t an academic question: if the companies are found to have intentionally violated the law, the lawsuit asks that damages be tripled (technically, “trebled.”)

Neither company addressed the claims of the lawsuit directly when contacted for comment.

Facebook said in a statement that “Attorney General Ferguson has raised important questions and we look forward to resolving this matter with his office quickly.” The company also noted that it has taken several steps to improve transparency in political spending, such as its planned political ad archive and an API for requesting this type of data.

Google said only that it is “currently reviewing the complaint and will be engaging with the Attorney General’s office” and asserted that it is “committed” to transparency and disclosure, although evidently not in the manner Washington requires.

The case likely will not result in significant monetary penalties for the companies in question; even if fines and damages totaled tens of millions it would be a drop in the bucket for the tech giants. But deliberately skirting laws governing political spending and public disclosure is rather a bad look for companies under especial scrutiny for systematic dishonesty — primarily Facebook.

If the AG’s suit goes forward and the companies are found to have intentionally avoided doing what the law required, they (and others like them) would be under serious pressure to do so in the future, not just in Washington, but in other states where similar negligence may have taken place. AG Ferguson seems clearly to want to set a precedent and perhaps inspire others to take action.

I’ve asked the AG’s office for some clarifications and additional info, and will update this post if I hear back.

Source: Tech Crunch

Here’s a heartfelt gift for all you procrastinating early-stage startup founders who haven’t gotten your act together to apply to compete in Startup Battlefield at Disrupt San Francisco 2018 on September 5-7. You’re strapped for time, we get it. So, we’re extending the application deadline by one week.

You now have until June 13 — that’s seven days to collect your team and take your shot at winning $100,000. Yup, we doubled the prize money this year because we’re supersizing Disrupt SF. We’ve moved to Moscone Center West, which offers three times the floor space. That’ll make it much more comfortable for the more than 10,000 attendees, 1,200 exhibitors and more than 400 media outlets we expect to take in all that Disrupt has to offer.

Like, for example, Startup Battlefield — humanity’s best launching pad for early-stage startups. Seriously, winning this gig can have life-altering implications. Consider New York-based chore wizard Hello Alfred, which won Startup Battlefield at Disrupt SF back in 2014. The company — founded by Jessica Beck and Marcela Sapone — is ready to scale having just scored $40 million in a Series B round of funding. That’s what we call a good ROI.

In case you’re wondering how well other Battlefield competitors have fared, listen up. The Startup Battlefield alumni community consists of more than 800 companies and has collectively raised more than $8 billion in funding and produced more than 100 exits. You may recognize a few of them: Mint, Dropbox, Yammer, Fitbit, Getaround and Cloudflare. The networking opportunities alone make applying worth your time.

And let’s not forget all the press and investor interest. The competition takes place on the Disrupt Main Stage in front of a live audience that numbers in the thousands. The funding you seek is no doubt sitting in that audience. If you make the cut, experienced TechCrunch editors will coach you on the finer points of startup-pitching, so you’ll make the best impression possible.

We live-stream the entire event around the world on TechCrunch.com, YouTube, Facebook and Twitter. And it’ll be available later, on demand. Remember, applying and competing in Startup Battlefield is 100 percent free. Where else will you find media and investor exposure at that price?

Battlefield competitors also get to exhibit their company in Startup Alley for all three days of the show — for free. Remember all those attendees and media outlets? They spend a lot of time combing the Alley for the next big thing. Competing in the Battlefield is the gift that keeps on giving.

Disrupt San Francisco 2018 takes place on September 5-7 at Moscone Center West. You have one extra week to get your application to us. Don’t delay any longer. Apply to Startup Battlefield right now.

Source: Tech Crunch

The Oculus Connect developer conference is back for its fifth year of chasing the VR dream.

Facebook VP or VR Hugo Barra announced that the company’s virtual reality-centric conference would be returning to San Jose on September 26 and 27. In past years, Oculus has used the conference to reveal its latest prototype hardware and to announce new software upgrades. This year, VR took center stage at Facebook’s F8 developer conference with the company using the event to launch the $199 Oculus Go standalone headset while also showcasing its latest prototype “Half Dome”.

It will be interesting to see what VR announcements are saved for Oculus at its own developer centric event and whether they use the opportunity to talk more about prototypes like its positionally-tracked “Santa Cruz” standalone which they have discussed the development of for the past two years.

Registration details for OC5 aren’t available yet but the application has typically gone live in mid-summer.

Source: Tech Crunch