Month: March 2019

A popular family tracking app was leaking the real-time locations of more than 238,000 users for weeks after the developer left a server exposed without a password.

The app, Family Locator, built by Australia-based software house React Apps, allows families to track each other in real-time, such as spouses or parents wanting to know where their children are. It also lets users set up geofenced alerts to send a notification when a family member enters or leaves a certain location, such as school or work.

But the backend MongoDB database was left unprotected and accessible by anyone who knew where to look.

Sanyam Jain, a security researcher and a member of the GDI Foundation, found the database and reported the findings to TechCrunch.

Based on a review of the database, each account record contained a user’s name, email address, profile photo and their plaintext passwords. Each account also kept a record of their own and other family members’ real-time locations precise to just a few feet. Any user who had a geofence set up also had those coordinates stored in the database, along with what the user called them — such as “home” or “work.”

None of the data was encrypted.

TechCrunch verified the contents of the database by downloading the app and signing up using a dummy email address. Within seconds, our real-time location appeared as precise coordinates in the database.

We contacted one app user at random who, albeit surprised and startled by the findings, confirmed to TechCrunch that the coordinates found under their record were accurate. The Florida-based user, who did not want to be named, said that the database was the location of their business. The user also confirmed that a family member listed in the app was their child, a student at a nearby high school.

Several other records we reviewed also included the real-time locations of parents and their children.

TechCrunch spent a week trying to contact the developer, React Apps, to no avail. The company’s website had no contact information — nor did its bare-bones privacy policy. The website had a privacy-enabled hidden WHOIS record, masking the owner’s email address. We even bought the company’s business records from the Australian Securities & Investments Commission, only to learn the company owner’s name — Sandip Mann Singh — but no contact information. We sent several messages through the company’s feedback form, but received no acknowledgement.

On Friday, we asked Microsoft, which hosted the database on its Azure cloud, to contact the developer. Hours later, the database was finally pulled offline.

It’s not known precisely how long the database was exposed for. Singh still hasn’t acknowledged the data leak.

Source: Tech Crunch

From Extra Crunch

• We hope all of you enjoyed the conversation with Eric Peckham and Lucas Matney on GDC and game streaming. For those who couldn’t join, a transcript should be coming shortly.
• Our enterprise reporter Ron Miller has a dive into how Salesforce became the model for enterprise SaaS companies, with some great early details into the launch of AppExchange.
• Continuing his growth discussion, Julian Shapiro of BellCurve.com discusses the acquisition marketing costs across 14 ad networks. This is a follow up of his Extra Crunch post on what startups are most profitable?

Wide Angle

Stories from outside the 280/101 corridor

Source: Tech Crunch

In a recently published, roughly 75-page report, British non-profit organization The Royal Society for the Encouragement of Arts (RSA) outlined several scenarios for how the UK labor market will be impacted by frontier technologies such as automation, AI, AVs and more.

The analysis titled “The Four Futures of Work” was conducted in collaboration with design and consulting firm Arup and was spearheaded by the RSA’s “Future Work Centre”, which focuses on the impact of new technologies on work and is backed by law firm Taylor Wessing, the Friends Provident Foundation, Google’s philanthropic arm Google.org and others.

The report is less of a traditional research paper and more of a qualitative, theoretical and abstract exploration of how the world might look depending on how certain technological and sociological variables (immigration, political will, etc.) develop. The authors don’t try to estimate growth paths for new technologies nor do they try to reach a definitive conclusion on what the future of work will look like. The work instead looks to lay out multiple possible outcomes in order to help citizens prepare for transformations in labor and to derive policy recommendations to mitigate externalities in each scenario.

As opposed to traditional quantitative data-based methodologies, research was conducted using “morphological scenario analysis.” The authors’ worked with technologists, industry executives and academic researchers to identify the technological and non-technological uncertainties that will have a critical impact on the future of work, before projecting three (minimal impact, moderate impact, and severe impact) possible scenarios of how each will look by the year 2035. With input from the report’s collaborators, the researchers then chose the four most compelling and sensical scenarios for how the future of work look.

The value of the report depends entirely on how readers intend to use it. If one hopes to gauge market sizes or inform forecasts or is looking for scientific, quantitative research with data — they should not read this. The report is more useful as a way to understand the different ways new technologies may evolve through thought-provoking, fun-yet-probabilistic, and poetic narratives of hypothetical future economic structures and how they might function.

Rather than summarize the four detailed scenarios in the report and all the conclusions discussed, which can be found in the executive summary or full report, here are a few takeaways and the most interesting highlights in our view:

The underwhelming:

Source: Tech Crunch

Biotech venture funding has been on a tear for the past couple of years, and corporate investors in the space are doing their part to boost the totals.

Here at Crunchbase, we’ve put together an index of the largest pharma and biotech companies active in startup investment, along with their in-house venture arms. For the second year in a row, we’re tallying their venture investments by round count and dollar totals.

The broad finding? Corporate biotech investors sharply increased the sums put into startup rounds they led in 2018. Overall, they also participated in rounds that were valued at nearly twice year-ago levels.

These aren’t small sums either. In all of 2018, corporate venture investors participated in rounds valued at $8 billion. Rounds with a corporate bio VC as lead investor, meanwhile, totaled around $1.7 billion.

Below, we drill down into a bit more detail, looking at funding totals for the past five years, largest rounds and most active investors.

As bio deals balloon, corporate VCs get spendier

First, it’s worth noting that overall global biotech venture funding rose sharply last year and has been running at historically high levels for the past few years.

For 2018, biotech startups globally raised just shy of $29 billion in seed through late rounds from all investors, according to Crunchbase data. That’s up from $19 billion in 2017.¹

 

Most biotech deals do not include a corporate backer, but a pretty substantial minority do. In 2018, investors in our corporate biotech index participated in 138 seed, venture or growth-stage funding rounds, up from 122 in 2017.

Round counts did not rise as much as investment totals, as the average biotech deal has been getting bigger. The sector has not been immune from the rise of supergiant funding rounds, and deals valued in the hundreds of millions have become far more common.

That’s reflected in the funding totals. Altogether, 2018 rounds with a corporate backer were valued at $8 billion, including contributions from all investors. That’s up from $4.2 billion in 2017.

They’re leading more rounds, too

We also look specifically at bio funding rounds in which a corporate backer was the lead investor. In these cases, it’s safe to assume that the corporate investor put up a large portion, or possibly even all, of the reported funding.

For 2018, we saw corporate bio investors leading a larger number of deals, with a much larger aggregate value than prior years.

There were a few supergiant rounds in the mix. The largest was a $300 million late-stage round for personal genetic testing provider 23andMe, led by GlaxoSmithKline.

Two others were led by Celgene. One was a $250 million early-stage round last February for Celularity, a startup it spun out to focus on cancer treatments using placental cells. The other was a $101 million round last March for Vividion, developer of a proteomic drug discovery platform.

In all, corporate bio investors led at least 30 funding rounds in 2018, with an aggregate value of $1.7 billion. That’s approximately triple 2017 levels.

Active players

Of course, not all corporate bio players are equally exposed to startups. Some are far more active than others.

One example is Novartis and its Novartis Venture Fund, which has participated in 15 deals with an aggregate value of nearly $730 million since 2018. Over the past three years, it has done 40 deals, with an aggregate value of $1.6 billion.

Celgene, which agreed to be acquired by Bristol-Myers Squibb earlier this year (the deal hasn’t closed yet), is another really active venture player. The New Jersey company has participated in 30 deals valued at nearly $1.8 billion over the past three years, including 13 since the beginning of 2018.

Outsourcing innovation

The rise in corporate VC investment in pharma and biotech appears to reflect the continuation of a long-term trend toward supplementing and even supplanting in-house R&D with venture investment. Recent quarters, however, demonstrate that it’s becoming an increasingly expensive strategy, as round sizes grow and investors devote more dollars to funding hot startups.

1. The numbers reported in this annual look at corporate biotech investment differ from a report on the same topic we put out a year ago. A few factors contributed to the differences, including some additions to the corporate investor list, changes in the Crunchbase data set around deal categorizations and adjustment to deal types.

Source: Tech Crunch

A couple of years ago, Clark, a New York-based startup, appeared on the scene with tutoring software that aimed to both make it easier for educators to start and manage a tutoring business by handling on its platform all the work that tutors struggle to find time to do, from drumming up students, to managing scheduling and payments, to making it far simpler to communicate with parents.

Today the company is announcing a bit of a shift, moving away from simply selling access to its business software for a monthly subscription fee and helping tutors set up their very own storefronts, replete with websites, certifications, marketing materials, and even clients who Clark is helping them to find.

How it will work, from a dollars standpoint: Clark will charge an upfront fee for setting up the business and getting it off the ground, then charge a smaller monthly fee for use of the its software, which is 15 percent of sessions fees for students who are referred by Clark for the initial year, and then 15 percent of all sessions after that.

Called its “business in a box” product, it’s an interesting twist and part of a broader wave of startups that are capitalizing on the growing number of people who are self employed, or who want to be, or who simply want to supplement their income with a ‘side hustle.’ Bird’s recent decision to partner with local entrepreneurs in other parts of the world who will manage their own fleets of its electric scooters (and pay Bird a cut of their revenue), is another recent example. Clark may also have drawn inspiration from Wonderschool, a venture-backed startup that’s empowering early childhood educators to open their own in-home preschools or day cares while it handles the administration and logistics.

What teachers get with this new product, specifically, is support in building their business from the ground up, including website creation and branding, building a presence on review sites, marketing the business and search engine optimization, and a hands-on bootcamp for managing a business that covers things like setting rates and managing clients, according to cofounder and CEO Megan O’Connor. She also tells us that once a business is off the ground, customers will get access to the company’s software, which should allow them to schedule tutoring sessions, manage payments and invoices, give session feedback to parents through a communications tool, and match with new students. Not last, Clark has a dedicated customer success team based in New York, says O’Connor, so clients have somewhere to turn.

According to Clark, the startup has so far facilitated roughly 20,000 tutoring sessions and it has hundreds of businesses across the country using its existing service. It’s because many of these clients weren’t sure how to get their businesses of the ground that Clark adopted this new model, which will also strive to connect parents with educators that match their children’s needs (parents have final say over who ultimately hire)

Clark has raised just $1 million to date, including from Lightspeed Venture Partners, Rethink Education, Flatworld Partners and Winklevoss Capital —  money it has using to grow its business along with the revenue it has brought in from the outset by charging for its services.

Whether its new direction speeds up its momentum remains an open question, but the company is operating in a huge market. According to some new market research on the global private tutoring opportunity, the market was valued at $96 billion in 2017, and it’s expected to generate more than $177 billion by 2026.

Source: Tech Crunch

Mailchimp today announced that the Mailchimp app, which let its users use their Shopify data to create targeted email campaigns, for example, is no longer available in the Shopify marketplace. The reason for this, Shopify itself says, is that it “had growing concerns about Mailchimp’s app because of the poor merchant experience and their refusal to respect our Partner Program Agreement.”

Clearly, this isn’t the most amicable divorce.

“It’s critical for our merchants to have accurate, complete insight into their businesses and customers, and this isn’t possible when Mailchimp locks in their data,” Shopify explains. “Specifically, Mailchimp refuses to synchronize customer information captured on merchants’ online stores and email opt-out preferences. As a result, our merchants, other apps, and partner ecosystem can’t reliably serve their customers or comply with privacy legislation.”

Unsurprisingly, Mailchimp’s side of the story is a bit different. “Yesterday, we asked Shopify to remove the Mailchimp for Shopify integration from their marketplace,” the company wrote. “We made this decision because Shopify released updated terms that would negatively impact our business and put our users at risk.”

Mailchimp says it refused to provide Shopify with all the customer data it asked for because Shopify’s terms simply weren’t fair or practical.

“We have been negotiating for months with Shopify on trying to get terms that were very fair and equitable to both of our businesses — and there were several points that we just weren’t willing to compromise on,” Joni Deus, Mailchimp’s director of partnerships, told me. “Anything that hurts our customers’ privacy was a non-starter for us.” She also told me that Shopify specifically asked for pretty much any data Mailchimp collects about its users, including data it collected in the past since the app was installed. “We had no way of getting that consent from our users retroactively,” Deus noted.

There may be another wrinkle to this story, too. In recent months, Mailchimp partnered with Square to launch its shoppable landing pages. That puts Mailchimp deeper into the e-commerce business and into competition with Shopify.

In its statement, Mailchimp argues that it integrates with more than 150 different apps and platforms. “We won’t compromise on that just because Shopify sees it as a competitive threat,” the company wrote. “We want people to have choices,” Deus added. “The marketplace is starting to collide and people are starting to compete with each other. Many of our other partners are also in our space and we would never limit a competitor from what they were willing to do for their business.”

In the end, we’ve got two companies that both argue they are putting their customers’ privacy first. This doesn’t strike me as a conflict where there was no reasonable compromise to be had, though, so in the end, it’s now on both companies’ customers to figure out what to do next.

For users, there are still plenty of other options, including the use of third-party integrations that link the two services together, including Zapier, Automate.io and ShopSync. Indeed, using those is Mailchimp’s recommendation for its current users.

Source: Tech Crunch

Mozilla today announced a new iOS version of Firefox that has been specifically optimized for Apple’s iPad. Given the launch of the new iPad mini this week, that’s impeccable timing. It’s also an admission that building a browser for tablets is different from building a browser for phones, which is what Mozilla mostly focused on in recent years.

“We know that iPads aren’t just bigger versions of iPhones,” Mozilla writes in today’s announcement. “You use them differently, you need them for different things. So rather than just make a bigger version of our browser for iOS, we made Firefox for iPad look and feel like it was custom made for a tablet.”

So with this new version, Firefox for iPad gets support for iOS features like split screen and the ability to set Firefox as the default browser in Outlook for iOS. The team also optimized tab management for these larger screens, including the option to see tabs as large tiles, “making it easy to see what they are, see if they spark joy and close with a tap if not.” And if you have a few tabs you want to share, then you can do so with the Send Tabs feature Mozilla introduced earlier this year.

Starting a private browsing session on iOS always took a few extra tabs. The iPad version makes this a one-tap affair as it prominently highlights this feature in the tab bar.

Because quite a few iPad users also use a keyboard, it’s no surprise that this version of Firefox also supports keyboard shortcuts.

If you are an iPad user in search of an alternative browser, Firefox may now be a viable option for you. Give it a try and let us know what you think in the comments (just don’t remind us how you work from home for only a few hours a day and make good money… believe me, we’re aware).

Source: Tech Crunch

[Editor’s note: This is the first of a series of articles that we’re writing about branding for startups. It’s part of our latest initiative to find the best brand designers and agencies in the world who work with early-stage companies — nominate a talented brand designer you’ve worked with.]  

When designer Ryan Hubbard joined Intercom, a SaaS unicorn that makes customer engagement tools, he knew that he would be working at the forefront of brand design. The company’s leadership empowered its Intercom Brand Studio to help Intercom stand out in an increasingly crowded field.

“I always look to figure out what is possible or push expectations,” Hubbard says. “There’s a more traditional view on brand design — the idea that people are there to create order and make rules. And that’s valid, but it’s not how I look at it.”

Now a senior designer at Medium, Hubbard has a lot more to say on how startups should approach branding to make a memorable impression.  

The essential principle of branding

“The one thing you should probably have buttoned up prior to investing in brand is some kind of clear point of view about who you are as a company and what makes you different,” says Hubbard.

While the elements of a brand are primarily visual, brand identity is based on foundational values and attitudes that define a company.

That’s why it’s essential to start with your company’s unique story. Those who approach branding as an exercise in defining and expressing their core ideas will find it much easier to create a striking and memorable brand.

Intercom has a compelling origin story about friends in Dublin longing for online customer service to mimic the welcoming atmosphere of the coffee shop where they liked to work. Accordingly, Intercom’s brand focuses on values like approachability, personality, warmth, and helpfulness.

Those values translate into the brand’s visual language: a smile-like logo, joyful colors, quirky illustration.

“You could start with, ‘What is the story you’re telling?’” says Hubbard. “The stronger and better you can be with your story, that’s a really strong foundation for a good brand.”

How to define your look and feel

The basic elements of visual branding include logo, language, colors, imagery, and typography. A strong brand is one that can be distilled down to the most basic elements and still be recognizable. Even a single word written a particular way can convey volumes.

“There’s a lot you can communicate with just typography,” says Hubbard. “The best identity systems I’ve seen – not just in tech – are all brands that are really strong with typography.”

Free-flowing creativity is key in experimenting with these elements. You’ll be holding on tight to your brand identity as you refine your story and identify your values. But it’s important to be open to all kinds of creative expression when you start designing.

“Don’t be too precious with exactly how you want everything to look,” advises Hubbard. “You can’t have a predetermined direction in your mind when you’re going into it.”

Get ideas and images out onto the page quickly. Then identify which draft elements light a spark and develop them. It will soon become obvious which connect most strongly.

How to deploy your branding

Once you have a brand identity system in hand, the next step is deploying it consistently. Your brand must be consistent across touch points, both inside and outside the organization.

But don’t mistake consistency for rigidity. If your brand is built on ideas and not just on a simple collection of visual elements, you can be consistent and creative. Allow your brand to have a life of its own, anchored by its core values and principles.

“It’s really easy to create a brand system that gives you no flexibility for expression, so you wind up putting the same thing over there over and over again,” says Hubbard. “If you don’t give yourself any room to do new exciting things with your brand, you’ll get stagnant and forgotten.”

That’s a death knell for any company, but a strong brand identity system will keep your brand at the forefront of customers’ minds.

Help us find the best startup brand designers and agencies in the world — nominate a talented brand designer you’ve worked with.

Source: Tech Crunch