Category: UNCATEGORIZED

Thousands of ransomware victims may finally get some long-awaited relief.

New Zealand-based security company Emsisoft has built a set of decryption tools for Stop, a family of ransomware that includes Djvu and Puma, which they say could help victims recover some of their files.

Stop is believed to be the most active ransomware in the world, accounting for more than half of all ransomware infections, according to figures from ID-Ransomware, a free site that helps identify infections. But Emsisoft said that figure is likely to be far higher.

If you’ve never had ransomware, you’re one of the lucky ones. Ransomware is one of the more common ways nowadays for some criminals to make money by infecting computers with malware that locks files using encryption. Once the Stop ransomware infects, it renames a user’s files with one of any number of extensions, replacing .jpg and .png files with .radman, .djvu and .puma, for example. Victims can unlock their files in exchange for a ransom demand — usually a few hundred dollars in cryptocurrency,.

Not all ransomware is created equally. Some security experts have been able to unlock some victims’ files without paying up by finding vulnerabilities in the code that powers the ransomware, allowing them in some cases reverse the encryption and return a victim’s files back to normal.

Stop is the latest ransomware that researchers at Emsisoft have been able to crack.

“It’s more of a complicated decryption tool than you would normally get,” said Michael Gillespie, the tools’ developer and a researcher at Emsisoft. “It is a very complicated ransomware,” he said.

In Stop’s case, it encrypts user files with either an online key that’s pulled from the attacker’s server; or an offline key, which encrypts users’ files when it can’t communicate with the server. Gillespie said many victims have been infected with offline keys because the attackers’ web infrastructure was often down or inaccessible to the infected computer.

Here are how the tools work.

The ransomware attackers give each victim a ‘master key,’ said Gillespie. That master key is combined with the first five bytes of each file that the ransomware encrypts. Some filetypes, like .png image files, share the same five bytes in every .png file. By comparing an original file with an encrypted file and applying some mathematical computations, he can decrypt not only that .png file but other .png of the same filetype.

Some filetypes share the same initial five bytes. Most modern Microsoft Office documents, like .docx and .pptx share the same five bytes as .zip files. With any before and after file, any one of these filetypes can decrypt the others.

There’s a catch. The decryption tool is “not a cure all” for your infected computer, said Gillespie.

“The victim has to find a good before and after of basically every format that they want to recover,” he said.

Once the system is clean of the ransomware, he said victims should try to look for any files that were backed up. That could be default Windows wallpapers, or it can mean going through your email and finding an original file that you sent and matching it with the now-encrypted file.

When the user uploads a “before and after” pair of files to the submission portal, the server will do the math and figure out if the pair of files are compatible and will spit back which extensions can be decrypted.

But there are pitfalls, said Gillespie.

“Any infections after the end of August 2019, unfortunately there’s not much we can do unless it was encrypted with the offline key,” he said. If an online key was pulled from the attacker’s server, victims are out of luck. He added that files submitted to the portal have to be above 150 kilobytes in size or the decryption tools won’t work, because that’s how much of the file the ransomware encrypts. And some file extensions will be difficult if not impossible to recover because each file extension handles the first five bytes of the file differently.

“The victim really needs to put in some effort,” he said.

This isn’t Gillespie’s first rodeo. For a time, he was manually processing decryption keys for victims whose files had been encrypted with an offline key. He built a rudimentary decryption tool, the aptly named STOPDecrypter, which decrypted some victims’ files. But keeping the tool up to date was a cat and mouse game he was playing with the ransomware attackers. Every time he found a workaround, the attackers would push out new encrypted file extensions in an effort to outwit him.

“They were keeping me on my toes constantly,” he said.

Since the launch of STOPDecrypter, Gillespie has received thousands of messages from people whose systems have been encrypted by the Stop ransomware. By posting on the Bleeping Computer forums, he has been able to keep victims up to date with his findings and updates to his decryption tool.

But as some victims became more desperate to get their files back, Gillespie has faced the brunt of their frustrations.

“The site’s moderators were patiently responding. They’ve kept the peace,” he said. “A couple of other volunteers on the forums have also been helping explain things to victims.”

“There’s been a lot of community support trying to help in every little small bit,” he said.

Gillespie said the tool will also be fed into Europol’s No More Ransom Project so that future victims will be notified that a decryption tool is available.

The turbulence of Brexit has left both UK and European startups alike wondering about the best path forward. From recruiting to acquiring investment to scaling into other parts of Europe, the challenges seem to be mounting. By December, who knows what will have happened on the Brexit landscape, such is the chaos.

At Disrupt Berlin in December, we’ll hear from investor Bindi Karia who has deep European ties, founder Glenn Shoosmith who’s expanding his startup internationally and German-born but UK-domiciled VC Volker Hirsch on how to make the right decisions in the face of these obstacles.

Bindi Karia works as a venture partner at a large london-based VC and has held positions in and around the tech industry for as long as she’s been working. She’s been a consultant at PwC Consulting, worked in corporate environments like Microsoft Ventures, served within a startup at Trayport, as an advisor across a number of organizations (Startup Europe, TechStars Startup Weekend, Tech London Advocates, European Innovation Council, WEF). She’s been a banker with Silicon Valley Bank and currently invests as a partner at a large London-based VC firm, as well as serving on the advisory board for seven different startups. She brings a wealth of knowledge to the conversation and understands the differing perspectives involved in each startup’s journey to success.

Volker Hirsch will bring us not only his perspective as a former entrepreneur-turned-VC but also as a German-born citizen living in the UK and dealing with Brexit. He is a Partner at Amadeus, working on its early-stage funds whose investment focus is on artificial intelligence & machine learning, autonomous systems, human-machine interfaces, cybersecurity, enterprise SaaS, digital health and medical technologies.

Volker founded or co-founded a total of 6 companies to date. He is currently co-founder of Blue Beck, a 40-strong mobile development house and a Venture Partner at Emerge Education, Europe’s leading early-stage EdTech investor.

Prior to joining Amadeus Capital, Volker was amongst the first angel investors in companies like Pi-Top, Bibblio (where he is also Chairman), Aula Education and Wonde. His personal investment portfolio comprises about a dozen investments with companies based across Europe and the US.

Previously, Volker was the Chief Strategy Officer at Scoreloop, a mobile social gaming platform, which he helped grow from (almost) inception to 450m users at its peak. When the company got acquired by BlackBerry in 2011, he served as BlackBerry’s Global Head of Business Development – Games.

Lastly, Glenn Shoosmith will bring his perspective as a founder with a substantial operation in the UK but who recently expanded into the US. Originally founded as BookingBug in 2008, the renamed JRNI (pronounced ‘journey’) has become one of the market-leading multichannel appointment scheduling and customer journey platforms, helping leading global retailers, banks, central and local governments enhance their customer experience and save costs. JRNI has a team of over 100 based in London, Boston and Sydney.

Glenn has been a passion advocate for London and the UK as a technology hub within Europe and in the past has helped shape government policy towards innovation and technology, both as an early advocate for Tech City, and an advisor and representative of the government nationally and internationally.

On the heels of getting the FCC’s proposal to merge with Sprint, T-Mobile announced a plan to partner with the Jeffrey Katzenberg’s mobile streaming service, Quibi. According to statements provided to the L.A. Times, Quibi CEO Meg Whitman specifically called out T-Mobile’s “impressive 5G road map” as a good fit for the soon-to-launch streaming service.

The partnership will give T-Mobile’s 83.1 million customers access to Quibi’s premium content, but no details as to how it would be bundled into the carrier’s plans are currently available. It’s possible that Quibi will either be offered at a discount for T-Mobile users, or it could be available as an add-on or available with a special bundle deal.

The deal will present a new competitor to AT&T’s streaming services, AT&T TV Now (previously DirecTV Now) and low-cost WatchTV, as well as its upcoming premium service, HBO Max. Verizon (TechCrunch’s parent parent company) also dabbled with mobile streaming with go90, but that service was shut down last year after failing to gain adoption.

The news of the T-Mobile deal comes on the heels of a series of rapid-fire announcements about the shows and celebs who will be contributing to Quibi, which will provide a range of programming including news, lifestyle, comedy, drama, horror, reality, action and more. And all is broken up into shorter-form bits — or “quick bites,” hence the service’s name.

As for the programming, Quibi has brought in big names like Sam Raimi, Guillermo del Toro, Antoine Fuqua and producer Jason Blum, Liam Hemsworth, Lorne Michaels, Steven Speilberg, Tyra Banks, Idris Elba, Trevor Noah, Queen Latifah, Sophie Turner, and others.

“Quibi will deliver premium video content for millennials on a technology platform that is built exclusively for mobile, so a telecommunications partner like T-Mobile, with their broad coverage today and impressive 5G road map, is the perfect fit,” Quibi Chief Executive Meg Whitman said in a statement, run by the L.A. Times.

“Quibi is leading the way on how video content is made and experienced in a mobile-first world,” said Mike Sievert, president and chief operating officer of T-Mobile. “That’s why our partnership makes perfect sense — two mobile-centric disrupters coming together to give customers something new and remarkable.”

Terms of the deal were not disclosed.

We’ve reached out to T-Mobile and Quibi for further confirmation and comment.

 

Hello and welcome back to Equity, TechCrunch’s venture capital-focused podcast where each week we discuss other people’s money and what sense their investment choices make (or don’t).

This week was honestly a treat. We had Kate Clark in the studio along with Alex Wilhelm and a special guest, Sarah Guo from Greylock Partners, a venture firm (obviously). Guo has the distinction of having the best-ever fun fact on the show.

We kicked off with Grammarly, a company that recently put $90 million into its accounts. We chatted about for whom it was built, and if we use it today. One thing that felt clear was that consumers are more willing than before to pay for their tooling. And that means that companies like Grammarly may prove strong investment candidates.

Next, we hit on two more rounds, namely Tiger Global’s investment into Lattice and Clari’s $60 million Series D. Starting with Lattice, a performance management company founded by none other than Sam Altman’s brother, Jack. The startup raised $25 million from Tiger Global, read more about that here.

Clari led us a to a discussion of vertical SaaS, and Guo’s views on the future of SaaS products (she’s bullish). Alex and Guo had a lot to say on this subject.

After talking over a few rounds the discussion turned to the Q3 venture market. A few things stood out from the data and projections. First, that early-stage fundraising was a little light in the quarter. It could be a single-quarter wobble, but the data was worth chewing on all the same. And, second, that Seed deal and dollar volume were hot once again.

And we wrapped with a discussion of Tempest, a new sobriety-focused startup that raised a $10 million round. Honestly, we aren’t sure how we feel about the business model. Please let us know if you have thoughts.

It was a good time. A big thanks to Guo for coming on the show, and a shoutout to the team that makes Equity happen: Chris Gates, and Henry Pickavet.

Volvo Group has established a new dedicated business group focused on autonomous transportation, with a mandate that covers industry segments like mining, ports and moving goods between logistics hubs of all kinds. The vehicle maker has already been active in putting autonomous technology to work in these industries, with self-driving projects including at a few quarries and mines, and in the busy port located at Gothenburg, Sweden.

The company sees demand for this kind of autonomous technology use growing, and decided to establish an entire business unit to address it. The newly-formed group will be called Volvo Autonomous Solutions, and its official mission is to “accelerate the development, commercialization and sales of autonomous transport solutions,” focused on the kind of transportation “where there is a need to move large volumes of goods and material on pre-defeined routes, in receptive flows.”

Their anticipation of the growth of this sector comes in part from direct customer feedback, the automaker notes. It’s seen “significant increase in inquires from customers,” according to a statement from Martin Lundstedt, Volvo Group’s President and CEO.

Officially, Volvo Autonomous Solutions won’t be a formal new business area under its parent company until January 2020, but the company is looking for a new head of the unit already, and it’s clear they see a lot of potential in this bourgeoning market.

Unlike autonomous driving for consumer automobiles, this kind of self-driving for fixed route goods transportation is a nice match to the capabilities of technology as they exist today. These industrial applications eliminate a lot of the chaos and complexity of driving in, say, urban environments and with a lot of other human-driven vehicles on the road, and their routes are predictable and repeatable.

Japan has officially announced that it will participate with NASA’s Lunar Gateway project (via NHK), which will seek to establish an orbital research and staging station around the Moon. The Lunar Gateway is a key component of NASA’s Artemis program, which aims to land the first American woman and the next American man on the surface of the Moon by 2024.

Japan’s involvement was confirmed on Friday at a meeting of the country’s Strategic Headquarters for National Space Policy, at which Japan Prime Minister Shinzo Abe was present. The governing body accepted a recommendation from a panel established to study the possibility that Japan should indeed join NASA’s efforts.

Working with NASA on its Lunar Gateway will serve to benefit Japan in a few ways, the panel determined, including by boosting its profile as a technology leader and by strengthening U.S.-Japan relations when it comes to ensuring space is a place where international collaboration on peaceful ventures and research can take place.

Further details about how Japan will participate aren’t yet available, which makes sense given this decision has only just been made. Japanese lunar exploration startup ispace welcomed the news, and anticipates possibly being able to contribute in some capacity, specifically via the partnership it announced with Draper earlier this year.

“We welcome this development with great optimism for the future of lunar exploration, as well as the relationship between Japan and the United States,” said Takeshi Hakamada, Founder & CEO of ispace in an emailed statement. “We firmly believe the Draper-ispace partnership can complement the US-Japan efforts for a sustainable return to the Moon at the commercial level.”

NASA astronauts Christina H Koch and Jessica Meir will make history this morning, as they take part in the first ever spacewalk in the agency’s history featuring only women. The two astronauts will be venturing outside of the International Space Station in order to effect a repair on a failed power controller for the station, with coverage beginning at 6:30 AM ET (3:30 AM PT) via the livestream above, and Koch and Meir set to leave the station’s airlock at 7:50 AM ET (4:50 AM PT).

This historic event is happening seven months after its original intended target date, after that attempt had to be scrubbed because the ISS was missing a medium-sized spacesuit that one of the two woman would need. Astronaut Anne McClain was going to take part alongside Koch at that time, but McClain’s time on the station ended in June. McClain attempted to make a large-sized suit work, but her mobility was too limited.

NASA sent up a second medium spacesuit in October to ensure that they wouldn’t encounter a similar problem a second time around, but rightly faced criticism for the apparent discrimination of having enough suits to ensure multiple men could spacewalk, but not multiple women. The agency seems to have a genuine interest in curbing any perception of discrimination inherent in its spacesuit program, however, and emphasized that the spacesuits designed for its Artemis Moon mission program are designed to provide maximum mobility for astronauts of all shapes and sizes.

This mission will be record-breaking not just for NASA, but for all human space exploration, marking the first time there’s ever been a two-woman spacewalk. Definitely an exciting and momentous event, so be sure to tune in via the stream above.

This is it, startup founders. Today, October 18, is the last day and your final opportunity to be chosen as a TC Top Pick, to score a free Startup Alley Exhibitor Package and to shine a bright spotlight on your company at Disrupt Berlin 2019 on 11-12 December.

You have only a few hours left to beat today’s 12 p.m. (PT) deadline. It’s quick, it’s painless and it’s free. What are you waiting for? Apply to be a TC Top Pick while you still can.

Every early-stage startup needs exposure to survive and thrive. Exposure to potential customers, to accredited media and to investors with the backing to make dreams come true. Our TC Top Picks provides exposure to possibility.

If your startup falls into one of the categories listed below, we want you. TechCrunch editors will vet the applications and choose up to five startups that represent the best of each category: AI/Machine Learning, Biotech/Healthtech, Blockchain, Fintech, Mobility, Privacy/Security, Retail/E-commerce, Robotics/IoT/Hardware, CRM/Enterprise and Education.

If you earn a TC Top Pick designation, you receive a free Startup Alley Exhibitor Package and a VIP experience. Your package includes one full day exhibiting in Startup Alley (the Disrupt expo floor), three Founder passes, press lists and invitations to networking parties, to name just a few perks.

Our Top Picks cohort generates a lot of curiosity, and Disrupt attendees flock to Startup Alley to meet and greet. It’s networking nirvana, where you can connect with potential customers, investors, mentors, collaborators — think infinite opportunity.

And yet another great opportunity awaits. TechCrunch editors interview each Top Pick startup live on the Showcase Stage. While we promote the interview video across our social media platforms, you can use it to drive traffic to your website and as a long-term marketing tool for pitching investors and customers.

And then there’s the Wild Card. TechCrunch editors will pick one early-stage startup exhibiting in the Alley to be the Wild Card, and that startup will compete in Startup Battlefield, our epic pitch competition. It’s a chance to win even more investor and media love along with the $50,000 prize. Last year, Legacy earned the Wild Card slot, and then went on to win the Startup Battlefield competition.

Disrupt Berlin 2019 takes place on 11-12 December. So much opportunity, so little time left to take advantage of it. The TC Top Picks opportunity is free, and the benefits are priceless. Don’t miss your chance — apply to be a TC Top Pick before 12 p.m. (PT) today, 18 October.

Is your company interested in sponsoring or exhibiting at Disrupt Berlin 2019? Contact our sponsorship sales team by filling out this form.

French startup Madbox is raising a $16.5 million (€15 million) Series A funding round from Alven. The company is developing mobile games and handles everything from start to finish, from game design to publishing and user acquisition.

Madbox is a young player in the mobile game space. The company is the result of the merger of two tiny Paris-based game studios in July 2018. After a couple of months, the startup released its first game, Dash Valley. And the game quickly ended up trending in the top 50 of top free game downloads in the App Store in the U.S.

The company has released a handful of games since then. At some point, Madbox had three games in the top 10 charts in the U.S. (once again, free game downloads) — StickMan Hook, Sausage Flip and Idle Ball Race. Overall, Madbox has generated 100 million game downloads.

“The core method at Madbox is that we internalize everything,” co-founder and CEO Jean-Nicolas Vernin told me. “We try to automate as many thing as possible.”

In addition to reusing assets from one game to another, Madbox also tries to apply the same method when it comes to user acquisition and marketing. “People often tell us that we have a data-driven culture that is disproportionately developed in our company,” Vernin said.

Madbox has a careful approach when it comes to growth. The company hires slowly and doesn’t release dozens of games in a year.

With 30 to 40 employees and a business model mostly based on ads, the company is currently profitable. Madbox now wants to tackle a wider range of mobile games, from hyper casual to idle games and less casual games. The startup is also opening a second office in Barcelona.

“We are a generation of friends who have worked for well-known casual game studios. And we all think that big game productions will have to become simpler so that people can play them like casual games — and vice versa,” Vernin said. And Madbox wants to be there when these two worlds collide.

Safaricom’s Nairobi based Alpha innovation incubator may have an uncertain future, according to sources.

With two high-level departures, and the passing of Safaricom’s CEO Bob Collymore, there are questions on how or if Alpha will continue to operate.

The space was established in 2017 to spur new product development for Safaricom, which is Kenya’s largest mobile operator and the provider of M-Pesa — East Africa’s most used mobile-money product.

As TechCrunch reported, one of the first objectives of Alpha was to build upon the success of M-Pesa.

As a telco, Safaricom has 69 percent of the Kenya’s mobile subscribers and generates around a fourth ($531 million) of its ≈ $2.2 billion annual revenues (2018) from M-Pesa. The fintech product has 20.5 million customers across a network of 176,000 agents.

While these stats have put Safaricom in a coveted position, the company’s former CEO Bob Collymore expressed concerns over the risk of too many eggs in one basket. For years, Collymore pressed his company to diversify product and revenue streams.

Through in-house development and partnerships, Safaricom added consumer and small business-based products, such as ride-hail app Little and website services, to its mobile and fintech network.

In 2017, Safaricom’s Chief Innovation Officer and first head of Alpha, Kamal Bhattacharya echoed Collymore’s mission to diversify the company’s offerings.

“We’d actually like to move beyond M-Pesa by leveraging its power as a social network to connect people to other product solutions,” he told TechCrunch.

Bhattacharya — who’d come to Safaricom after senior positions at IBM Research Africa and a stint restructuring Kenyan innovation center iHub — recruited a team for Alpha, led by founder and computer scientist Shikoh Gitau.

From a market perspective, Alpha was something to watch since corporate incubators in Africa were (and continue to be) a relatively new component across the continent’s tech ecosystem.

In a space purposely set up away from Safaricom’s HQ, Alpha’s team of innovators set to shaping new digital offerings.

In 2018, the incubator rolled out its first product, a social networking platform called Bonga, to augment M-Pesa.

Since M-Pesa was already established as a commercial network, the idea was to amplify that by creating more social media type transactions around it — channeling Facebook, YouTube, iTunes, PayPal, and eBay in one platform.

With Bonga, Alpha appeared to have some momentum into 2018, before the innovation incubator lost two of its biggest backers.

First, Kamal Bhattacharya, exited Safaricom and his position of lead of Alpha in October 2018. The reason given by the company was a bit of corporate say-nothing-speak: “leaving to pursue other interests.”

The real reasons for Bhattacharya’s sudden exit were unclear. There was, however, plenty of scuttlebutt about powers within Safaricom — resistant to the brand of bureaucracy rattling change Alpha could bring — conspiring to push him out.

After losing its head, Alpha lost another key ally in Bob Collymore when he passed away in July of this year after a fight with cancer.

Alpha said farewell to another senior figure in August when Huston Malande left. It also rebranded Bonga to Zwuup this year — though Safaricom’s last two annual reports don’t indicate how the product has fared under either name, with no mention of Bonga, Zwuup, or Alpha.

What’s next for Alpha?

Several sources close to Safaricom (speaking on background) expressed doubt that it would have the support within the company to continue with Collymore’s passing.

One source suggested Alpha would more likely be morphed into the larger Safaricom bureaucracy rather than shut down completely, to avoid negative news that an abrupt closure would bring.

TechCrunch asked Safaricom directly on the future of Alpha, and specifically if it would confirm or deny reports the innovation incubator could shutdown. A Safaricom spokesperson said it could not comment on anything related to Alpha’s products or performance before Safaricom’s next earnings reporting, scheduled for November 1.

So Kenya’s tech community will have to wait a couple more weeks to see if Safaricom sticks to its experiment to spur inside innovation by creating an outside incubator — or not.