Year: 2019

Hello, weekenders. This is Week-in-Review, where I give a heavy amount of analysis and/or rambling thoughts on one story while scouring the rest of the hundreds of stories that emerged on TechCrunch this week to surface my favorites for your reading pleasure.

Last week, I talked about how services like Instagram had moved beyond letting their algorithms take over the curation process as they tested minimizing key user metrics such as “like” counts on the platform.

---

The big story

The big news stories this week intimately involved the government poking its head into the tech industry. What was clear between the two biggest stories, the DoJ approving the Sprint/T -Mobile merger and the FTC giving Facebook a $5 billion slap on the wrist, is that big tech has little to worry about its inertia being contained.

It seems the argument from Spring and T-Mobile that it was better to have three big telecom companies in the U.S. rather than two contenders and two pretenders, seems to have stuck. Similarly, Facebook seems to have done a worthy job of indicating that it will handle the complicated privacy stuff but that they’ll let the government orgs see what they’re up to.

Fundamentally, none of these orgs seem to want to harm the growth of these American tech companies and I have a tough time believing that perspective is going to magically get more toothy in some of these early antitrust investigations. The government might be making a more concerted effort to understand how these businesses are structured, but even focusing solely on something like the cloud businesses of Microsoft, Google and Amazon, I have little doubt that the government is going to spend an awfully long time in the observation phase.

The danger is erraticism and for that the worst government fear for tech isn’t a three-letter agency, it’s the Twitter ramblings of POTUS.

feedback -> @lucasmtny

Onto the rest of the week’s news.

Trends of the week

Here are a few big news items from big companies, with green links to all the sweet, sweet added context:

• Apple dropping $1 billion on Intel’s modem business
  Apple is snapping up a missing link in its in-house component production with the $1B purchase of most of Intel’s modem business. This follows a dramatic saga between Intel, Qualcomm and Apple over the past year, but Apple will be making its own smartphone modems the question is when they actually end up in new iPhones. Read more here.
• Microsoft dropping $1 billion on OpenAI
  Microsoft announced this week that it is dumping $1 billion into Sam Altman’s OpenAI research group. The partnership is pretty major, but it’s just one of the interesting avenues Microsoft is using to ensure its Azure services gain notable customers. Read more here.
• Galaxy Fold is coming back!
  After a very embarrassing soft launch, Samsung which managed to make it a several devices beyond the Note 7 before another garbage fire is trying its hand at the Galaxy Fold again and will be releasing it sometime in September. It seems like the carriers are a little dubious of the prospect and T-Mobile has already opted out of carrying it. Read more here.

GAFA Gaffes [Facebook Edition!!]

How did the top tech companies screw up this week? This clearly needs its own section, in order of badness:

1. Facebook gets five:
   [Facebook settles with FTC: $5 billion and new privacy guarantees]
2. FTC isn’t quite done with Facebook:
   [Facebook says it’s under antitrust investigation by the FTC]
3. Facebook dismissed CA warnings:
   [Facebook ignored staff warnings about sketchy Cambridge Analytica in September 2015]
4. Facebook left kids vulnerable:
   [Facebook fails to keep Messenger Kids safety promise]

Our premium subscription service had another week of interesting deep dives. This week, my colleague Danny spoke with some top VCs about why fintech startups have been raising massive amounts of cash and he seemed to walk away with some interesting impressions.

Why fintech VC mega rounds have become so common

“…The biggest challenge that has faced fintech companies for years — really, the industry’s consistent Achilles’ heel — is the cost of acquiring a customer. Financial customer relationships are incredibly valuable, and the cost of acquiring a user for any product is among the most expensive in every major channel.

And those costs are going up…”

Here are some of our other top reads for premium subscribers.

• The roles tools play in employee engagement
• Which types of startups are most often profitable
• What to watch for in a VC term sheet

We’re excited to announce The Station, a new TechCrunch newsletter all about mobility. Each week, in addition to curating the biggest transportation news, Kirsten Korosec will provide analysis, original reporting and insider tips. Sign up here to get The Station in your inbox beginning in August.

A hacker gained access to internal files and documents owned by security company and SSL certificate issuer Comodo by using an email address and password mistakenly exposed on the internet.

The credentials were found in a public GitHub repository owned by a Comodo software developer. With the email address and password in hand, the hacker was able to log into the company’s Microsoft-hosted cloud services. The account was not protected with two-factor authentication.

Jelle Ursem, a Netherlands-based security researcher who found the credentials, contacted Comodo vice president Rajaswi Das by WhatsApp to secure the account. The password was revoked the following day.

Ursem told TechCrunch that the account allowed him to access internal Comodo files and documents, including sales documents and spreadsheets in the company’s OneDrive — and the company’s organization graph on SharePoint, allowing him to see the team’s biographies, contact information including phone numbers and email addresses, photos, customer documents, calendar, and more.

He also shared several screenshots of folders containing agreements and contracts with several customers — with the names of customers in each filename, such as hospitals and U.S. state governments. Other documents appeared to be Comodo vulnerability reports. Ursem’s cursory review of the data did not turn up any customer certificates private keys, however.

“Seeing as they’re a security company and give out SSL certificates, you’d think that the security of their own environment would come first above all else,” said Ursem.

But according to Ursem, he wasn’t the first person to find the exposed email address and password.

“This account has already been hacked by somebody else, who has been sending out spam,” he told TechCrunch. He shared a screenshot of a spam email sent out, purporting to offer tax refunds from the French finance ministry.

We reached out to Comodo for comment prior to publication. A spokesperson said the account was an “automated account used for marketing and transactional purposes,” adding: “The data accessed was not manipulated in any way and within hours of being notified by the researcher, the account was locked down.”

It’s the latest example of exposed corporate passwords found in public GitHub repositories, where developers store code online. All too often developers upload files inadvertently containing private credentials used for internal-only testing. Researchers like Ursem regularly scan repositories for passwords and report them to the companies, often in exchange for bug bounties.

Earlier this year Ursem found a similarly exposed set of internal Asus passwords on an employee’s GitHub public account. Uber was also breached in 2016 after hackers found internal credentials on GitHub.

The John S. and James L. Knight Foundation is looking for pitches on how to enhance and augment traditional creative arts through immersive technologies.

Through a partnership with Microsoft the foundation is offering a share of a $750,00 pool of cash and the option of technical support from Microsoft, including mentoring in mixed-reality technologies and access to the company’s suite of mixed reality technologies.

“We’ve seen how immersive technologies can reach new audiences and engage existing audiences in new ways,” said Chris Barr, director for arts and technology innovation at Knight Foundation, in a statement. “But arts institutions need more knowledge to move beyond just experimenting with these technologies to becoming proficient in leveraging their full potential.”

Specifically, the foundation is looking for projects that will help engage new audiences; build new service models; expand access beyond the walls of arts institutions; and provide means to distribute immersive experiences to multiple locations, the foundation said in a statement.

“When done right, life-changing experiences can happen at the intersection of arts and technology,” said Victoria Rogers, Knight Foundation vice president for arts. “Our goal through this call is to help cultural institutions develop informed and refined practices for using new technologies, equipping them to better navigate and thrive in the digital age.”

Launched at the Gray Area Festival in San Francisco, the new initiative is part of the Foundation’s art and technology focus, which the organization said is designed to help arts institutions better meet changing audience expectations. Last year, the foundation invested $600,000 in twelve projects focused on using technology to help people engage with the arts.

“We’re incredibly excited to support this open call for ways in which technology can help art institutions engage new audiences,” says Mira Lane, Partner Director Ethics & Society at Microsoft. “We strongly believe that immersive technology can enhance the ability for richer experiences, deeper storytelling, and broader engagement.”

Here are the winners from the first $600,000 pool:

• ArtsESP – Adrienne Arsht Center for the Performing Arts

Project lead: Nicole Keating | Miami | @ArshtCenter

Developing forecasting software that enables cultural institutions to make data-centered decisions in planning their seasons and events.

• Exploring the Gallery Through Voice – Alley Interactive

Project lead: Tim Schwartz | New York | @alleyco, @cooperhewitt, @SinaBahram

Exploring how conversational interfaces, like Amazon Alexa, can provide remote audiences with access to an exhibition experience at Cooper Hewitt, Smithsonian Design Museum.

• The Bass in VR – The Bass

Project lead: T.J. Black | Miami Beach | @TheBassMoA

Using 360-degree photography technology to capture and share the exhibit experience in an engaging, virtual way for remote audiences.

• AR Enhanced Audio Tour – Crystal Bridges Museum of American Art

Project lead: Shane Richey | Bentonville, Arkansas | @crystalbridges

Developing mobile software to deliver immersive audio-only stories that museum visitors would experience when walking up to art for a closer look.

• Smart Label Initiative – Eli and Edythe Broad Art Museum at Michigan State University

Project lead: Brian Kirschensteiner | East Lansing, Michigan | @msubroad

Creating a system of smart labels that combine ultra-thin touch displays and microcomputers to deliver interactive informational content about artwork to audiences.

• Improving Arts Accessibility through Augmented Reality Technology – Institute on Disabilities at Temple University, in collaboration with People’s Light

Project lead: Lisa Sonnenborn | Philadelphia | @TempleUniv,@IODTempleU, @peopleslight 

Making theater and performance art more accessible for the deaf, hard of hearing and non-English speaking communities by integrating augmented reality smart glasses with an open access smart captioning system to accompany live works.

• ConcertCue – Massachusetts Institute of Technology (MIT); MIT Center for Art, Science & Technology

Project lead: Eran Egozy | Cambridge, Massachusetts | @EEgozy,@MIT,@ArtsatMIT, @MIT_SHASS

Developing a mobile app for classical music audiences that receives real-time program notes at precisely-timed moments of a live musical performance.

• Civic Portal – Monument Lab

Project lead: Paul Farber and Ken Lum | Philadelphia | @monument_lab, @PennDesign, @SachsArtsPhilly, @paul_farber

Encouraging public input on new forms of historical monuments through a digital tool that allows users to identify locations, topics and create designs for potential public art and monuments in our cities.

• Who’s Coming? – The Museum of Art and History at the McPherson Center

Project lead: Nina Simon | Santa Cruz, California | @santacruzmah, @OFBYFOR_ALL

Prototyping a tool in the form of a smartphone/tablet app for cultural institutions to capture visitor demographic data, increasing knowledge on who is and who is not participating in programs.

• Feedback Loop – Newport Art Museum, in collaboration with Work-Shop Design Studio

Project lead: Norah Diedrich | Newport, Rhode Island | @NewportArtMuse

Enabling audiences to share immediate feedback and reflections on art by designing hardware and software to test recording and sharing of audience thoughts.

• The Traveling Stanzas Listening Wall – Wick Poetry Center at Kent State University Foundation

Project lead: David Hassler | Kent, Ohio | @DavidWickPoetry,@WickPoetry,@KentState, @travelingstanza

Producing touchscreen installations in public locations that allow users to create and share poetry by reflecting on and responding to historical documents, oral histories, and multimedia stories about current events and community issues.

• Wiki Art Depiction Explorer – Wikimedia District of Columbia, in collaboration with the Smithsonian Institution

Project lead: Andrew Lih | Washington, District of Columbia | @wikimedia, @fuzheado

Using crowdsourcing methods to improve Wikipedia descriptions of artworks in major collections so people can better access and understand art virtually.

Is space truly within reach for startups and VC?

With the 50th anniversary of the moon landing taking place this past week, Darrell Etherington takes a temperature check of the current state of spacetech, chatting with startups like Wyvern and NSLComm. What he finds is actually a fairly positive picture — not only are there a huge number of original ideas and serious dollars flowing into the … space (couldn’t resist), but there are also clear trajectories to real products in the short-to-medium term. Writing about satellites:

Now, driven largely by miniaturization and manufacturing efficiency gains resulting from the ubiquity of home computing and smartphones, those components are a lot more affordable and a lot more available. High-quality optics can be had off the shelf for a relative song; antennas, solar cells, batteries and more have all dropped off a cliff in terms of manufacturing cost. Consumer hardware startups benefited from this trend as well, but it’s paying dividends to companies with higher-altitude ambitions, too.

[…]

Thanks to improvements in materials science, NSLComm was able to develop a proprietary technology to quickly deploy long communications antennas in orbit from relatively small craft, letting them offer high-bandwidth ground and air connectivity at a fraction of the cost needed by large satellite operators, while still maintaining favorable margins.

How top VCs view the new future of micromobility

Transportation into the cold vacuum of space isn’t the only hot zone for VC investment. Transportation itself is still getting a lot of love, but the investment theses are changing as more data comes in from the first wave of micromobility startups. At our Sessions: Mobility event, we had our VC reporter Kate Clark interview Sarah Smith of Bain Capital Ventures, Michael Granoff of Maniv Mobility, and Ted Serbinski of TechStars Detroit to discuss the future of this market, and we’ve now posted an exclusive edited transcript for Extra Crunch members.

This week professor David Carroll, whose dogged search for answers to how his personal data was misused plays a focal role in The Great Hack: Netflix’s documentary tackling the Facebook-Cambridge Analytica data scandal, quipped that perhaps a follow up would be more punitive for the company than the $5BN FTC fine released the same day.

The documentary — which we previewed ahead of its general release Wednesday — does an impressive job of articulating for a mainstream audience the risks for individuals and society of unregulated surveillance capitalism, despite the complexities involved in the invisible data ‘supply chain’ that feeds the beast. Most obviously by trying to make these digital social emissions visible to the viewer — as mushrooming pop-ups overlaid on shots of smartphone users going about their everyday business, largely unaware of the pervasive tracking it enables.

Facebook is unlikely to be a fan of the treatment. In its own crisis PR around the Cambridge Analytica scandal it has sought to achieve the opposite effect; making it harder to join the data-dots embedded in its ad platform by seeking to deflect blame, bury key details and bore reporters and policymakers to death with reams of irrelevant detail — in the hope they might shift their attention elsewhere.

Data protection itself isn’t a topic that naturally lends itself to glamorous thriller treatment, of course. No amount of slick editing can transform the close and careful scrutiny of political committees into seat-of-the-pants viewing for anyone not already intimately familiar with the intricacies being picked over. And yet it’s exactly such thoughtful attention to detail that democracy demands. Without it we are all, to put it proverbially, screwed.

The Great Hack shows what happens when vital detail and context are cheaply ripped away at scale, via socially sticky content delivery platforms run by tech giants that never bothered to sweat the ethical detail of how their ad targeting tools could be repurposed by malign interests to sew social discord and/or manipulate voter opinion en mass.

Or indeed used by an official candidate for high office in a democratic society that lacks legal safeguards against data misuse.

But while the documentary packs in a lot over an almost two-hour span, retelling the story of Cambridge Analytica’s role in the 2016 Trump presidential election campaign; exploring links to the UK’s Brexit leave vote; and zooming out to show a little of the wider impact of social media disinformation campaigns on various elections around the world, the viewer is left with plenty of questions. Not least the ones Carroll repeats towards the end of the film: What information had Cambridge Analytica amassed on him? Where did they get it from? What did they use it for? — apparently resigning himself to never knowing. The disgraced data firm chose declaring bankruptcy and folding back into its shell vs handing over the stolen goods and its algorithmic secrets.

There’s no doubt over the other question Carroll poses early on the film — could he delete his information? The lack of control over what’s done with people’s information is the central point around which the documentary pivots. The key warning being there’s no magical cleansing fire that can purge every digitally copied personal thing that’s put out there.

And while Carroll is shown able to tap into European data rights — purely by merit of Cambridge Analytica having processed his data in the UK — to try and get answers, the lack of control holds true in the US. Here, the absence of a legal framework to protect privacy is shown as the catalyzing fuel for the ‘great hack’ — and also shown enabling the ongoing data-free-for-all that underpins almost all ad-supported, Internet-delivered services. tl;dr: Your phone doesn’t need to listen to if it’s tracking everything else you do with it.

The film’s other obsession is the breathtaking scale of the thing. One focal moment is when we hear another central character, Cambridge Analytica’s Brittany Kaiser, dispassionately recounting how data surpassed oil in value last year — as if that’s all the explanation needed for the terrible behavior on show.

“Data’s the most valuable asset on Earth,” she monotones. The staggering value of digital stuff is thus fingered as an irresistible, manipulative force also sucking in bright minds to work at data firms like Cambridge Analytica — even at the expense of their own claimed political allegiances, in the conflicted case of Kaiser.

If knowledge is power and power corrupts, the construction can be refined further to ‘data corrupts’, is the suggestion.

The filmmakers linger long on Kaiser which can seem to humanize her — as they show what appear vulnerable or intimate moments. Yet they do this without ever entirely getting under her skin or allowing her role in the scandal to be fully resolved.

She’s often allowed to tell her narrative from behind dark glasses and a hat — which has the opposite effect on how we’re invited to perceive her. Questions about her motivations are never far away. It’s a human mystery linked to Cambridge Analytica’s money-minting algorithmic blackbox.

Nor is there any attempt by the filmmakers to mine Kaiser for answers themselves. It’s a documentary that spotlights mysteries and leaves questions hanging up there intact. From a journalist perspective that’s an inevitable frustration. Even as the story itself is much bigger than any one of its constituent parts.

It’s hard to imagine how Netflix could commission a straight up sequel to The Great Hack, given its central framing of Carroll’s data quest being combined with key moments of the Cambridge Analytica scandal. Large chunks of the film are comprised from capturing scrutiny and reactions to the story unfolding in real-time.

But in displaying the ruthlessly transactional underpinnings of social platforms where the world’s smartphone users go to kill time, unwittingly trading away their agency in the process, Netflix has really just begun to open up the defining story of our time.

Tesla’s games library is getting bigger, and the latest announced title is probably a familiar one to gaming fans: Cuphead. This indie game was released in 2017 for Xbox One and Windows after making a big debut in 2013, attracting a lot of attention thanks to its hand-drawn, retro Disney-esque animation style.

Tesla CEO Elon Musk revealed that Cuphead would be getting a Tesla port sometime in August, replying to a post in which Tesla announced its latest addition to the in-car arcade library: Chess. The game will run at 60fps on the in-car display, Musk added, noting that while 4K isn’t supported for Tesla’s screens, the game “doesn’t need” that high resolution.

Cuphead has since been released for both macOS and Nintendo Switch, and has gained critical acclaim for its challenging gameplay in addition to its unique graphic style. The game works with one or two players (which Tesla cars also now support via gamepad controllers for some other titles) and basically involves side-scrolling run-and-gun action punctuated by frequent boss fights.

Musk continued on Twitter regarding the Cuphead port that it will use a Unity port for Tesla’s in-car OS, which is already done, and currently they’re in the process of refining the controls. A limit of available onboard storage will be solved by allowing added game storage via USB, so that Tesla owners will be able to add flash drives to hold more downloaded games.

Earlier this month, Netflix announced that it would be developing an animated series based on Cuphead, and the game has sold over 4 million copies world-wide so far. Tesla launched Tesla Arcade last month as a dedicated in-car app to host the growing collection of games it’s brought to the car – and it’s worth noting that you can only access these games while in park.

 

Gatik AI, the autonomous vehicle startup that’s aiming for the sweet middle spot in the world of logistics, is officially on the road through a partnership with Walmart .

The company received approval from the Arkansas Highway Commissioner’s office to launch a commercial service with Walmart . Gatik’s autonomous vehicles (with a human safety driver behind the wheel) is now delivering customer online grocery orders from Walmart’s main warehouse to its neighborhood stores in Bentonville, Arkansas.

The AVs will aim to travel seven days a week on a two-mile route — the tiniest of slivers of Walmart’s overall business. But the goal here isn’t ubiquity just yet. Instead, Walmart is using this project to capture the kind of data that will help it learn how best to integrate autonomous vehicles into their stores and services.

Gatik uses Ford transit vehicles outfitted with a self-driving system. Co-founder and CEO Gautam Narang has previously told TechCrunch that the company can fulfill a need in the market through a variety of use cases, including partnering with third-party logistics giants like Amazon, FedEx  or even the U.S. Postal Service, auto part distributors, consumer goods, food and beverage distributors as well as medical and pharmaceutical companies.

The company, which emerged from stealth in June, has raised $4.5 million in a seed round led by former CEO and executive chairman of Google Eric Schmidt’s Innovation Endeavors. Other investors include AngelPad, Dynamo Fund, Fontinalis Partners, Trucks Venture Capital and angel investor Lior Ron, who heads Uber Freight.

Gatik isn’t the only AV company working with Walmart. Walmart has partnerships with Waymo and Udelv. Both of these partnerships involve pilot programs in Arizona.

Udelv is testing the use of autonomous vans to deliver online grocery orders to customers. Last year, members of Waymo’s early rider program received grocery savings when they shopped from Walmart.com. The riders would then take a Waymo car to their nearby Walmart store for grocery pickup.

The chemist who helped create the magic sauce behind Juul, Xing Chenyue, unveiled the product of her new startup Myst Labs this week after two years of development: electronic cigarette alternatives designed for China’s 350 million smokers, the world’s biggest smoking population.

This new contender makes for a potentially heated battlefield given that Juul will reportedly enter China soon. TechCrunch has reached out to Juul about its expansion, but has not heard back at the time of writing.

Pax Labs — the company that spun out Juul in 2017 — was a 20-person team when Xing joined as one of its first scientists in 2013. During her nearly three-year post at what would become America’s largest vaping company, Xing helped invent nicotine salts, the compounds that made Juul an instant hit. The patented technology inspired a raft of followers because it allows high levels of nicotine to be inhaled more easily and with less irritation, according to the U.S. Centers for Disease Control and Prevention.

Xing left Juul when the company made a foray into marijuana vaporizers, a move that didn’t particularly interest the scientist, a non-smoker whose ambition is to “help smokers meet their nicotine needs whilst reducing the harmful substances they consume,” Xing told TechCrunch in a phone interview.

The China-born scientist took up a project management role at publicly-traded pharmaceutical company Dermia before eventually returning to cigarettes research by starting Myst Labs, which she co-founded in 2017 with Thomas Yao, a venture capitalist she had met over a decade ago at Fudan University in Shanghai.

As Myst began to take form, Juul was on course to reach its whopping $38 billion valuation even while it was under fire for luring teenagers into vaping. Meanwhile in China, vaping had just begun to catch on. Research from Soochow Securities (in Chinese) shows that China, despite being the world’s biggest producer of vaping devices, accounts for merely 6% of the world’s e-cig market. Xing wanted to seize the opportunity and this time, she’s in control over what comes out of the lab.

“We certainly want to reach the same level of society-wide impact in China as Juul does in the U.S. We hope Myst can leave a positive mark on Chinese smokers,” said Xing. “Myst can slowly transform the way people smoke and gradually reduce the level of their nicotine intake.”

Myst’s first product, dubbed the P1 series, is a 399 yuan ($58) flash-drive-shaped device that comes with a nicotine level of 3% or 5% and sports a retractable cigarette holder for hygiene and a “click” sound that mimics a lighter. Myst will ship in China through online and offline channels and said it plans to sell in international markets down the road. Its price point is comparable to Juul’s pricing in the U.S.

Myst does not market itself as a smoking cessation tool because to do so would require approval from China’s drug regulator. Rather, the startup bills itself as a “new type of cigarette substitute for adult smokers.” It has avoided using images of young, cool-looking models, the style of campaigns that backfired on Juul. To verify customers’ age, Myst applies facial recognition, an increasingly ubiquitous technology in China where people scan their face to pay for things or access certain entertainment services such as video games and live videos.

That positioning also allows the company to potentially evade stepping on the toes of China’s powerful cigarette monopoly, which provides the government with handsome sums of tax revenues.

From Silicon Valley to Shenzhen

Myst deploys about half of its 20-person team to conduct research and development in Silicon Valley. The rest of the company mainly works out of Shenzhen, the electronics manufacturing hub that also produces the majority of the world’s vaporizers.

“We are combining Silicon Valley research and China’s supply chain, a strategy that sets us apart from most vaporizers on the market,” Yao, who heads up business development at Myst, told TechCrunch.

He compared China’s vaping craze to what happened to smartphones between 2010 and 2011 when copycats of incumbents crowded the market in a gold rush. Countless knockoffs of Juul and other established brands now flood the market. Companies with various degrees of development capabilities have also mushroomed — at least 20 Chinese e-cig startups have received venture investment in the last seven months.

As with the smartphone market that’s now dominated by a small rank of players, Yao believed the bad apples in vaping will eventually be weeded out. “This [counterfaiting] happens whenever China experiences a technological breakthrough. Chinese brands get eliminated at a rate to which no other country can compare. Perhaps a lot of [e-cig] companies will go out of business by the end of this year.” A sector reshuffle will result in part from government regulation, which can arrive in China anytime soon.

Xing believes Myst’s edge lies in the quality of its products. According to Yao, the company spends about 20% of the money raised on R&D.

Yao declined to disclose how much the company has banked but said it has sufficient funds in the coffer and that “money isn’t an issue” because he has personally invested in Myst. Yao had previously picked some winners by backing mobility unicorn Lime and India’s wallet leader Paytm in their early days.

The co-founder has also brought to the table key personnel for the business, including Myst’s chief executive officer Daniel Chen, who previously managed Hong Kong-listed robotics firm Super Robotics; chief operation officer Martin Liu, former CEO of Blackberry China; head of product Yingqun Cao, a former product manager at Google Home and Juul; and lastly head of design Jiandong Hao, previously a design director at global design firm IDEO.

The pool of talent is reflective of Myst’s vision to digitize smoking, which can manifest in the form of a connected vaporizer that tracks users’ health conditions just like a smart wristband does. Myst’s current generation of products does not yet enable the futuristic scenario, but Yao maintained that digitization is key to smoking.

“For smokers, vaporizers could become the second most used electronic devices after smartphones,” he said.

Investigative news site Bellingcat has confirmed several of its staff were targeted by an attempted phishing attack on their Protonmail accounts, which the journalists and the email provider say failed.

“Yet again, Bellingcat finds itself targeted by cyber attacks, almost certainly linked to our work on Russia,” wrote Eliot Higgins, founder of the investigative news site in a tweet. “I guess one way to measure our impact is how frequently agents of the Russian Federation try to attack it, be it their hackers, trolls, or media.”

News emerged that a small number of Protonmail email accounts were targeted during the week — several of which belonged to Bellingcat’s researchers who work on projects relating to activities by the Russian government. A phishing email purportedly from Protonmail itself asked users to change their email account passwords or generate new encryption keys on a similarly named domain set up by the attackers. Records show the fake site was registered anonymously, according to an analysis by security researchers.

In a statement, Protonmail said the phishing attacks “did not succeed” and denied that its systems or user accounts had been hacked or compromised.

“The most practical way to obtain email data from a ProtonMail user’s inbox is by compromising the user, as opposed to trying to compromise the service itself,” said Protonmail’s chief executive Andy Yen. “For this reason, the attackers opted for a phishing campaign that targeted the journalists directly.”

Yen said the attackers tried to exploited an unpatched flaw in third-party software used by Protonmail, which has yet to be fixed or disclosed by the software maker.

“This vulnerability, however, is not widely known and indicates a higher level of sophistication on the part of the attackers,” said Yen.

It’s not known conclusively who was behind the attack. However, both Bellingcat and Protonmail said they believe certain tactics and indicators of the attack — and the fact that the targets were Bellingcat’s researchers working on the ongoing investigation into the downing of flight MH17 by Russian forces and the release of nerve agent in the U.K. — may point to hackers associated with the Russian government.

Higgins said in a tweet that this week’s attempted attack likely targeted a number of people “in the tens” unlike earlier attacks attributed to the Russian government-backed hacker group, known as APT 28 or Fancy Bear.

Bellingcat in the past year has gained critical acclaim for its investigations into the Russian government, uncovering the names of the alleged Russian operatives behind the suspected missile attack that blew up Malaysian airliner MH17 in 2014. The research team also discovered the names of the Russian operatives who were since accused of poisoning former Russian intelligence agent Sergei Skripal and his daughter Yulia in a nerve agent attack in Salisbury, U.K. in 2018.

The researchers use open-source intelligence and information gathering where police, law enforcement and intelligence agencies often fail.

It’s not the first time that hackers have targeted Bellingcat. Its researchers were targeted several times in 2016 and 2017 following the breach on the Democratic National Committee which saw thousands of internal emails stolen and published online.

A phone call to the Russian consulate in New York requesting comment was not returned.

Hello and welcome back to Startups Weekly, a weekend newsletter that dives into the week’s noteworthy startups and venture capital news. Before I jump into today’s topic, let’s catch up a bit. Last week, I noted some challenges plaguing mental health tech startups. Before that, I wrote about Zoom and Superhuman’s PR disasters.

Remember, you can send me tips, suggestions and feedback to kate.clark@techcrunch.com or on Twitter @KateClarkTweets. If you don’t subscribe to Startups Weekly yet, you can do that here.

Anyway, onto the subject on everyone’s mind this week: SoftBank’s second Vision Fund.

Well into the evening on Thursday, SoftBank announced a target of $108 billion for the Vision Fund 2. Yes, you read that correctly, $108 billion. SoftBank indeed plans to raise even more capital for its sophomore vehicle than it did for the record-breaking debut vision fund of $98 billion, which was majority-backed by the government funds of Saudi Arabia and Abu Dhabi, as well as Apple, Foxconn and several other limited partners.

Its upcoming fund, to which SoftBank itself has committed $38 billion, has attracted investment from the National Investment Corporation of National Bank of Kazakhstan, Apple, Foxconn, Goldman Sachs, Microsoft and more. Microsoft, a new LP for SoftBank, reportedly hopped on board with the Japanese telecom giant as part of a grand scheme to convince the massive fund’s portfolio companies to transition to Microsoft Azure, the company’s cloud platform that competes with Amazon Web Services . Here’s more on that and some analysis from TechCrunch editor Jonathan Shieber.

News of the second Vision Fund comes as somewhat of a surprise. We’d heard SoftBank was having some trouble landing commitments for the effort. Why? Well, because SoftBank’s investments have included a wide-range of upstarts, including some uncertain bets. Brandless, a company into which SoftBank injected a lot of money, has struggled in recent months, for example. Wag is said to be going downhill fast. And WeWork, backed with billions from SoftBank, still has a lot to prove.

Here’s everything else we know about The Vision Fund 2:

• It’s focused on the “AI revolution through investment in market-leading, tech-enabled growth companies.”
• The full list of investors also includes seven Japanese financial institutions: Mizuho Bank, Sumitomo Mitsui Banking Corporation, MUFG Bank, The Dai-ichi Life Insurance Company, Sumitomo Mitsui Trust Bank, SMBC Nikko Securities and Daiwa Securities Group. Also, international banking services provider Standard Chartered Bank, as well as “major participants from Taiwan.”
• The $108 billion figure is based on memoranda of understandings (MOUs), or agreements for future investment from the aforementioned entities. That means SoftBank hasn’t yet collected all this capital, aside from the $38 billion it plans to invest itself in the new Vision Fund.
• Saudi and Abu Dhabi sovereign wealth funds are not listed as investors in the new fund.
• SoftBank is expected to begin deploying capital fund from Fund 2 immediately, and a first close is expected in two months, per The Financial Times.
• We’ll keep you updated on the Vision Fund 2’s investments, fundraising efforts and more as we learn about them.

On to other news…

IPO Corner

WeWork is planning a September listing

The company made headlines again this week after word slipped it was accelerating its IPO plans and targeting a September listing. We don’t know much about its IPO plans yet as we are still waiting on the co-working business to unveil its S-1 filing. Whether WeWork can match or exceed its current private market valuation of $47 billion is unlikely. I expect it will pull an Uber and struggle, for quite some time, to earn a market cap larger than what VCs imagined it was worth months earlier.

Robinhood had a wild week

The consumer financial app made headlines twice this week. The first time because it raised a whopping $323 million at a $7.6 billion valuation. That is a whole lot of money for a business that just raised a similarly sized monster round one year ago. In fact, it left us wondering, why the hell is Robinhood worth $7.6 billion? Then, in a major security faux pas, the company revealed it has been storing user passwords in plaintext. So, go change your Robinhood password and don’t trust any business to value your security. Sigh.

Another day, another huge fintech round

While we’re on the subject on fintech, TechCrunch editor Danny Crichton noted this week the rise of mega-rounds in the fintech space. This week, it was personalized banking app MoneyLion, which raised $100 million at a near unicorn valuation. Last week, it was N26, which raised another $170 million on top of its $300 million round earlier this year. Brex raised another $100 million last month on top of its $125 million Series C from late last year. Meanwhile, companies like payments platform Stripe, savings and investment platform Raisin, traveler lender Uplift, mortgage backers Blend and Better and savings depositor Acorns have also raised massive new rounds this year. Naturally, VC investment in fintech is poised to reach record levels this year, according to PitchBook.

Uber’s changing board

Arianna Huffington, the CEO of Thrive Global, stepped down from Uber’s board of directors this week, a team she had been apart of since 2016. She addressed the news in a tweet, explaining that there were no disagreements between her and the company, rather, she was busy and had other things to focus on. Fair. Benchmark’s Matt Cohler also stepped down from the board this week, which leads us to believe the ride-hailing giant’s advisors are in a period of transition. If you remember, Uber’s first employee and longtime board member Ryan Graves stepped down from the board in May, just after the company’s IPO. 

Startup Capital

Unity, now valued at $6B, raising up to $525M
Bird is raising a Sequoia-led Series D at $2.5B valuation
SMB payroll startup Gusto raises $200M Series D
Elon Musk’s Boring Company snags $120M
a16z values camping business HipCamp at $127M
An inside look at the startup behind Ashton Kutcher’s weird tweets
Dataplor raises $2M to digitize small businesses in Latin America

Extra Crunch

While we’re on the subject of amazing TechCrunch #content, it’s probably time for a reminder for all of you to sign up for Extra Crunch. For a low price, you can learn more about the startups and venture capital ecosystem through exclusive deep dives, Q&As, newsletters, resources and recommendations and fundamental startup how-to guides. Here are some of my current favorite EC posts:

1. What types of startups are the most profitable?
2. The roles tools play in employee engagement
3. What to watch for in a VC term sheet

#Equitypod

If you enjoy this newsletter, be sure to check out TechCrunch’s venture-focused podcast, Equity. In this week’s episode, available here, Equity co-host Alex Wilhelm, TechCrunch editor Danny Crichton and I unpack Robinhood’s valuation and argue about scooter startups. Equity drops every Friday at 6:00 am PT, so subscribe to us on Apple Podcasts, Overcast and Spotify.

That’s all, folks.