search engines
Auto Added by WPeMatico
Auto Added by WPeMatico
Back in December 2020 we covered the launch of a new kind of smartphone app-based search engine, Xayn.
“A search engine?!” I hear you say? Well, yes, because despite the convenience of modern search engines’ ability to tailor their search results to the individual, this user-tracking comes at the expense of privacy. This mass surveillance might be what improves Google’s search engine and Facebook’s ad targeting, to name just two examples, but it’s not very good for our privacy.
Internet users are admittedly able to switch to the U.S.-based DuckDuckGo, or perhaps France’s Qwant, but what they gain in privacy, they often lose in user experience and the relevance of search results, through this lack of tailoring.
What Berlin-based Xayn has come up with is personalized, but a privacy-safe web search on smartphones, which replaces the cloud-based AI employed by Google et al. with the innate AI in-built into modern smartphones. The result is that no data about you is uploaded to Xayn’s servers.
And this approach is not just for “privacy freaks”. Businesses that need search but don’t need Google’s dominant market position are increasingly attracted by this model.
And the evidence comes today with the news that Xayn has now raised almost $12 million in Series A funding led by the Japanese investors Global Brain and KDDI (a Japanese telecommunications operator), with participation from previous backers, including the Earlybird VC in Berlin. Xayn’s total financing now comes to more than $23 million.
It would appear that Xayn’s fusion of a search engine, a discovery feed and a mobile browser has appealed to these Asian market players, particularly because Xayn can be built into OEM devices.
The result of the investment is that Xayn will now also focus on the Asian market, starting with Japan, as well as Europe.
Leif-Nissen Lundbæk, co-founder and CEO of Xayn said: “We proved with Xayn that you can have it all: great results through personalization, privacy by design through advanced technology and a convenient user experience through clean design.”
He added: “In an industry in which selling data and delivering ads en masse are the norm, we choose to lead with privacy instead and put user satisfaction front and center.”
The funding comes as legislation such as the EU’s GDPR or California’s CCPA have both raised public awareness about personal data online.
Since its launch, Xayn says its app has been downloaded around 215,000 times worldwide, and a web version of its app is expected soon.
Over a call, Lundbæk expanded on the KDDI aspect of the fund-raising: “The partnership with KDDI means we will give users access to Xayn for free, while the corporate — such as KDDI — is the actual customer but gives our search engine away for free.”
The core features of Xayn include personalized search results; a personalized feed of the entire internet, which learns from their Tinder-like swipes, without collecting or sharing personal data; and an ad-free experience.
Naoki Kamimeada, partner at Global Brain Corporation said: “The market for private online search is growing, but Xayn is head and shoulders above everyone else because of the way they’re re-thinking how finding information online should be.”
Kazuhiko Chuman, head of KDDI Open Innovation Fund, said: “This European discovery engine uniquely combines efficient AI with a privacy-protecting focus and a smooth user experience. At KDDI, we’re constantly on the lookout for companies that can shape the future with their expertise and technology. That’s why it was a perfect match for us.”
In addition to the three co-founders (Leif-Nissen Lundbæk, chief executive officer, Professor Michael Huth, chief research officer, and Felix Hahmann, chief operations officer), Dr Daniel von Heyl will come on board as chief financial officer. Frank Pepermans will take on the role of chief technology officer and Michael Briggs will join as chief growth officer.
Powered by WPeMatico
Around 15% of website traffic comes through paid search ads. But to turn passive searchers into active shoppers, your ads should answer their question and entice them to click.
We’ve tested thousands of paid search ads at Demand Curve and through our agency Bell Curve. This post breaks down 14 questions your paid search ads should answer to ensure you’re only paying for the highest-intent shoppers.
An important distinction between paid search and organic search is that paid ads are an interruption. Users of search engines are simply looking for an answer to their question. The people who see your ads don’t owe you anything. Just because you’re paying to have your ad show up first doesn’t mean they’re going to pay attention to it.
To generate genuine interest in your paid ads, reframe your offer as a favor.
You can do this in two ways:
For example, reframing free delivery as an extra convenience makes the offer that much more attractive.
Use ad extensions by listing additional benefits in the description of the page. For example, including “customized plans” in the pricing extension page signals to your customer that they’ll have control over the cost. This will help to attract the curiosity of even the most cost-conscious buyers.
Image Credits: Demand Curve
Approximately 80% of e-commerce shopping carts are abandoned, mostly because shoppers don’t feel any urgency to complete the transaction. Online shoppers aren’t in any rush, as the internet is open 24/7 and inventory feels unlimited.
Use ad copy that bridges the gap between their problem and your solution. The easiest way to create that curiosity bridge is by asking a question.
To answer the question, “Why should I buy now?”, you’re going to have to create an incentive to get them to take action now.
Powered by WPeMatico
Richard Socher, former chief scientist at Salesforce, who helped build the Einstein artificial intelligence platform, is taking on a new challenge — and it’s a doozy. Socher wants to fix consumer search and today he announced you.com, a new search engine to take on the mighty Google.
“We are building you.com. You can already go to it today. And it’s a trusted search engine. We want to work on having more click trust and less clickbait on the internet,” he said. He added that in addition to trust, he wants it to be built on kindness and facts, three worthy but difficult goals to achieve.
He said that there were several major issues that led him and his co-founders to build a new search tool. For starters, he says that there is too much information and nobody can possibly process it all. What’s more, as you find this information, it’s impossible to know what you can trust as accurate, and he believes that issue is having a major impact on society at large. Finally, as we navigate the internet in 2020, the privacy question looms large as is how you balance the convenience-privacy trade-off.
He believes his background in AI can help in a consumer-focused search tool. For starters the search engine, while general in nature, will concentrate on complex consumer purchases where you have to open several tabs to compare information.
“The biggest impact thing we can do in our lives right now is to build a trusted search engine with AI and natural language processing superpowers to help everyone with the various complex decisions of their lives, starting with complex product purchases, but also being general from the get-go as well,” he said.
While Socher was light on details, preferring to wait until GA in a couple of months to share some more, he said he wants to differentiate from Google by not relying on advertising and what you know about the user. He said he learned from working with Marc Benioff at Salesforce that you can make money and still build trust with the people buying your product.
He certainly recognizes that it’s tough to take on an entrenched incumbent, but he and his team believe that by building something they believe is fundamentally different, they can undermine the incumbent with a classic “Innovator’s Dilemma” kind of play where they’re doing something that is hard for Google to reproduce without undermining their primary revenue model.
He also sees Google running into antitrust issues moving forward and that could help create an opening for a startup like this. “I think a lot of stuff that Google [has been doing] … with the looming antitrust will be somewhat harder for them to get away with on a continued basis,” he said.
He acknowledges that trust and accuracy elements could get tricky as social networks have found out. Socher hinted at some social sharing elements they plan to build into the search tool including allowing you to have your own custom you.com URL with your name to facilitate that sharing.
Socher said he has funding and a team together working actively on the product, but wouldn’t share how much or how many employees at this point. He did say that Benioff and venture capitalist Jim Breyer are primary backers and he would have more information to share in the coming months.
For now, if you’re interested, you can go to the website and sign up for early access.
Powered by WPeMatico
Sophos said it is fixing a vulnerability in its Cyberoam firewall appliances, which a security researcher says can allow an attacker to gain access to a company’s internal network without needing a password.
The vulnerability allows an attacker to remotely gain “root” permissions on a vulnerable device, giving them the highest level of access, by sending malicious commands across the internet. The attack takes advantage of the web-based operating system that sits on top of the Cyberoam firewall.
Once a vulnerable device is accessed, an attacker can jump onto a company’s network, according to the researcher who shared their findings exclusively with TechCrunch.
Cyberoam devices are typically used in large enterprises, sitting on the edge of a network and acting as a gateway to allow employees in while keeping hackers out. These devices filter out bad traffic, and prevent denial-of-service attacks and other network-based attacks. They also include virtual private networking (VPN), allowing remote employees to log on to their company’s network when they are not in the office.
It’s a similar vulnerability to recently disclosed flaws in corporate VPN providers, notably Palo Alto Networks, Pulse Secure and Fortinet, which allowed attackers to gain access to a corporate network without needing a user’s password. Many large tech companies, including Twitter and Uber, were affected by the vulnerable technology, prompting Homeland Security to issue an advisory to warn of the risks.
Sophos, which bought Cyberoam in 2014, issued a short advisory this week, noting that the company rolled out fixes on September 30.
The researcher, who asked to remain anonymous, said an attacker would only need an IP address of a vulnerable device. Getting vulnerable devices was easy, they said, by using search engines like Shodan, which lists around 96,000 devices accessible to the internet. Other search engines put the figure far higher.
A Sophos spokesperson disputed the number of devices affected, but would not provide a clearer figure.
“Sophos issued an automatic hotfix to all supported versions in September, and we know that 99% of devices have already been automatically patched,” said the spokesperson. “There are a small amount of devices that have not as of yet been patched because the customer has turned off auto-update and/or are not internet-facing devices.”
Customers still affected can update their devices manually, the spokesperson said. Sophos said the fix will be included in the next update of its CyberoamOS operating system, but the spokesperson did not say when that software would be released.
The researcher said they expect to release the proof-of-concept code in the coming months.
Powered by WPeMatico
Founders need to get smart quickly about the many nuanced aspects of building a company, from understanding weird language in a big term sheet to hiring a key software developer.
But the best practical advice is scattered across blog posts, podcasts and books, and it gets outdated quickly as industry norms evolve. Even experienced founders spend a lot of time searching and still end up with the wrong information.
Holloway has an ambitious solution: Today, it’s launching a library of book-length online guides about work, written and regularly updated by teams of industry experts.
The flagship title is called Raising Venture Capital, which features 340 thoughtfully organized pages in 15 sections and three appendices on all aspects of the funding process. Designed for easy reading and easy searching in spite of the information density and length (it has a 14-hour total read-time), the guide could become a go-to resource for the startup world.
Some sections will be most appealing to newer founders, like the part on whether to raise VC in the first place. Other portions are relevant to even the most experienced serial entrepreneurs — like how to think through potential drag-along and pay-to-play provisions, full-ratchet anti-dilution clauses and other tricky terms one might find. Did you know that investors can include more than 20 types of conditions in a term sheet? Do you know how to handle each one?
With $4.6 million in seed funding from a combination of top tech investors and The New York Times that it is also announcing now, Holloway intends to expand to cover the wide variety of work-related topics about startups and technology, and beyond. The next guide, currently in progress, will be on technical hiring and recruiting. A relatively shorter sample guide on equity compensation is already available for free.
The goal is to democratize access to how the best are doing business today (and take on traditional publishing).
“We didn’t just do this for Silicon Valley and New York,” and other startup-heavy cities, co-founder and chief executive Andy Sparks tells me, “we did this for people in cities like Columbus and Atlanta where startup communities are growing, but knowledge is harder to come by.”
The lawyers and other experts who author and edit the guides could otherwise cost more than $800 an hour, he explains, and won’t have time for many clients in the first place. (The company estimates there are $40,000 worth of legal fees in the VC guide.)
Sparks, previously the co-founder of analytics platform Mattermark, is also the lead author on “Raising Venture Capital” — along with another 20 or so contributors, like Brad Feld of the Foundry Group, and Darby Wong, co-founder of the popular legal document startup Clerky . The lead author of the technical recruiting guide is Ozzie Osman, former head of product engineering at Quora, and a main contributor to it is Aditya Agarwal, the former CTO of Dropbox.
The current pricing is $100 per guide forever (including future updates), with a discount available if you pre-order. Sparks says this may change to ensure the guides stay affordable, as well as cover the very real costs of producing this quality of content.

The big-picture bet is that the startup market is large enough to create strong demand for the initial guides, in the same way that many successful tech startups of this decade have started out serving companies like themselves. Some of the topics that Holloway is working on, like tech recruiting, naturally blend in with the rest of the business world and those wider audiences. Eventually, through expansion into broader work-related topics, Holloway’s online-first approach could compete against the existing book publishing industry at a bigger scale.
This is why the company is investing heavily in its software, in addition to its content. The interface was inspired by the experiences of co-founder Joshua Levy, a veteran technologist who found himself writing popular third-party guides on GitHub about how to use common services like AWS. Features in the software include search results that break out sections and sources, a detailed left-hand index view, a hyperlinked in-house glossary of hundreds of key terms, notes of warning and importance from experts and numerous links to third-party sources.
“We decided to invest in a digital reading experience that makes reading book-length content in a browser a great experience,” Sparks said, “which also means you will land on the right guide when you go hunting for answers on search engines like Google .”
Holloway co-founders Joshua Levy (left) and Andy Sparks (right)
You’ll even see a number of links to TechCrunch and Extra Crunch articles in the guides. Sparks tells me that the company plans to continue to link to a wide variety of sources in the future — so when guest columnists write something great and practical on Extra Crunch, we will help them to get this work featured in Holloway as well. The company is also accepting a variety of contributor types for its guides going forward, which you can find more details about here.
(On that note, we’ve published an excerpt from Holloway’s “Raising Venture Capital” guide, about pro rata terms and issues, on Extra Crunch. Subscribers can go check it out here, and find a special discount to Holloway inside.)
Sparks is careful to say that the current guides are not literally finished, despite all the effort put into them so far. And indeed, they will never be. Holloway is named after the “hollow ways” seen in the European countryside, where well-used roads have gradually sunk through hundreds of years of regular use. The company intends for its guides to be the paths that people who build companies tread year after year, where the knowledge that accumulates from the usage of many forms the clear direction that those in the future take.
The company’s investors include NEA, South Park Commons, The New York Times Co., Precursor Ventures and Comcast Ventures as well as Day One Ventures, Social Capital, Abstract Ventures, 415, Royal Bank of Canada, Lightspeed Ventures, & Full Tilt Capital. Angels include Leo Polovets, Lee Linden, Raj De Datta, Neil Parikh, Mikhail Larionov, Danielle & Kevin Morrill, Srinath Sridhar, Dennis Phelps and Kevin Lee.
Powered by WPeMatico
Entrepreneurs take a long journey when naming their brainchild, comparable to a parent naming their own flesh and blood.
There are many reasons behind naming – one untalked-of and probably the most important. This is, how to choose a name that gets you more business.
Technology changes how we do business. So, when developing a business name, putting some thought into how people are going to find you and what you want them to do after they find you could go a long way.
Ignoring this could do just the opposite and result in being harder to find, getting less return from your advertising and having your competitors capitalize off your brand.
Businesses have been using things like alphabetical order, call to action, keywords and more to shape business names for optimized discovery, recall and responsiveness since the phone book.
When looking for a business, I’m sure you’ve seen at least one of these two business name optimizations frequently used in the past for discovery:
Pre-internet, a listing in the phone book was key to getting your business discovered – but how did businesses get to the top of the list in their category? Piece of cake. Free listings in the white pages were categorized by business type and ordered alphabetically. Many companies ended their name with a describing word of their category and started it with something like “AAA” “AA”, “AA1” and “A AAA” to be one of the first listings in their category. You will still find thousands of these business names in different locations by typing “AAA” into yellowpages.com.
Prior to 2012, search engine algorithms gave weight in their rankings to sites that included keywords in their domain, otherwise known as exact-match domains. So, Google was more likely to rank “accountantsmelbourne-dot-com” higher than “abc-partners-dot-com” if a user searched for “Accountants Melbourne” because the keywords matched the search with similar words in its domain.
Over time, domain names and business names alike grew longer. Many were purposefully packed with every major keyword applicable to their niche.
Powered by WPeMatico
In 2019, it’s estimated that every minute there are 150 new websites coming online. While many of these won’t be long-term ventures, a large percentage will eventually find themselves looking to organic search engine traffic to grow their reach.
This invariably leads people to the task of keyword research; uncovering the search terms most likely to result in prospective customers.
With increased competition it’s imperative you don’t just focus on the traditional sources of keyword inspiration that every other business uses.
In the past year alone I’ve personally helped hundreds of business owners grow search engine traffic to their websites. This responsibility drives me to succeed in one key area: Finding relevant search terms to target that their competitors have likely missed.
In this article, I will highlight some of the most overlooked ideas and sources of data to reveal words and phrases relevant to your business that are high in intent but lacking in competition.
If you can find the keywords your audience are searching for, but your competitors haven’t found, you can leverage a huge advantage to increase traffic and engagement on your content.
Google is constantly improving their ability to understand searcher intent. That is, they know what people are looking for and the results that will satisfy those searches.
When it comes to any industry that offers products or services, one of the most common search queries is often some variation of “best [industry] [services / products]”.
Powered by WPeMatico
Google is widely expected to be handed a third antitrust fine in Europe this week, with reports suggesting the European Commission’s decision in its long-running investigation of AdSense could land later today.
Right on cue the search giant has PRed another Android product tweak — which it bills as “supporting choice and competition in Europe”.
In the coming months Google says it will start prompting users of existing and new Android devices in Europe to ask which browser and search apps they would like to use.
This follows licensing changes for Android in Europe which Google announced last fall, following the Commission’s $5BN antitrust fine for anti-competitive behavior related to how it operates the dominant smartphone OS.
tl;dr competition regulation can shift policy and product.
Albeit, the devil will be in the detail of Google’s self-imposed ‘remedy’ for Android browser and search apps.
Which means how exactly the user is prompted will be key — given tech giants are well-versed in the manipulative arts of dark pattern design, enabling them to create ‘consent’ flows that deliver their desired outcome.
A ‘choice’ designed in such a way — based on wording, button/text size and color, timing of prompt and so on — to promote Google’s preferred browser and search app choice by subtly encouraging Android users to stick with its default apps may not actually end up being much of a ‘choice’.
According to Reuters the prompt will surface to Android users via the Play Store. (Though the version of Google’s blog post we read did not include that detail.)
Using the Play Store for the prompt would require an Android device to have Google’s app store pre-loaded — and licensing tweaks made to the OS in Europe last year were supposedly intended to enable OEMs to choose to unbundle Google apps from Android forks. Ergo making only the Play Store the route for enabling choice would be rather contradictory. (As well as spotlighting Google’s continued grip on Android.)
Add to that Google has the advantage of massive brand dominance here, thanks to its kingpin position in search, browsers and smartphone platforms.
So again the consumer decision is weighted in its favor. Or, to put it another way: ‘This is Google; it can afford to offer a ‘choice’.’
In its blog post getting out ahead of the Commission’s looming AdSense ruling, Google’s SVP of global affairs, Kent Walker, writes that the company has been “listening carefully to the feedback we’re getting” vis-a-vis competition.
Though the search giant is actually appealing both antitrust decisions. (The other being a $2.7BN fine it got slapped with two years ago for promoting its own shopping comparison service and demoting rivals’.)
“After the Commission’s July 2018 decision, we changed the licensing model for the Google apps we build for use on Android phones, creating new, separate licenses for Google Play, the Google Chrome browser, and for Google Search,” Walker continues. “In doing so, we maintained the freedom for phone makers to install any alternative app alongside a Google app.”
Other opinions are available on those changes too.
Such as French pro-privacy Google search rival Qwant, which last year told us how those licensing changes still make it essentially impossible for smartphone makers to profit off of devices that don’t bake in Google apps by default. (More recently Qwant’s founder condensed the situation to “it’s a joke“.)
Qwant and another European startup Jolla, which leads development of an Android alternative smartphone platform called Sailfish — and is also a competition complainant against Google in Europe — want regulators to step in and do more.
The Commission has said it is closely monitoring changes made by Google to determine whether or not the company has complied with its orders to stop anti-competitive behavior.
So the jury is still out on whether any of its tweaks sum to compliance. (Google says so but that’s as you’d expect — and certainly doesn’t mean the Commission will agree.)
In its Android decision last summer the Commission judged that Google’s practices harmed competition and “further innovation” in the wider mobile space, i.e. beyond Internet search — because it prevented other mobile browsers from competing effectively with its pre-installed Chrome browser.
So browser choice is a key component here. And ‘effective competition’ is the bar Google’s homebrew ‘remedies’ will have to meet.
Still, the company will be hoping its latest Android tweaks steer off further Commission antitrust action. Or at least generate more fuzz and fuel for its long-game legal appeal.
Current EU competition commissioner, Margrethe Vestager, has flagged for years that the division is also fielding complaints about other Google products, including travel search, image search and maps. Which suggests Google could face fresh antitrust investigations in future, even as the last of the first batch is about to wrap up.
The FT reports that Android users in the European economic area last week started seeing links to rival websites appearing above Google’s answer box for searches for products, jobs or businesses — with the rival links appearing above paid results links to Google’s own services.
The newspaper points out that tweak is similar to a change promoted by Google in 2013, when it was trying to resolve EU antitrust concerns under the prior commissioner, Joaquín Almunia.
However rivals at the time complained the tweak was insufficient. The Commission subsequently agreed — and under Vestager’s tenure went on to hit Google with antitrust fines.
Walker doesn’t mention these any of additional antitrust complaints swirling around Google’s business in Europe, choosing to focus on highlighting changes it’s made in response to the two extant Commission antitrust rulings.
“After the Commission’s July 2018 decision, we changed the licensing model for the Google apps we build for use on Android phones, creating new, separate licenses for Google Play, the Google Chrome browser, and for Google Search. In doing so, we maintained the freedom for phone makers to install any alternative app alongside a Google app,” he writes.
Nor does he make mention of a recent change Google quietly made to the lists of default search engine choices in its Chrome browser — which expanded the “choice” he claims the company offers by surfacing more rivals. (The biggest beneficiary of that tweak is privacy search rival DuckDuckGo, which suddenly got added to the Chrome search engine lists in around 60 markets. Qwant also got added as a default choice in France.)
Talking about Android specifically Walker instead takes a subtle indirect swipe at iOS maker Apple — which now finds itself the target of competition complaints in Europe, via music streaming rival Spotify, and is potentially facing a Commission probe of its own (albeit, iOS’ marketshare in Europe is tiny vs Android). So top deflecting Google.
“On Android phones, you’ve always been able to install any search engine or browser you want, irrespective of what came pre-installed on the phone when you bought it. In fact, a typical Android phone user will usually install around 50 additional apps on their phone,” Walker writes, drawing attention to the fact that Apple does not offer iOS users as much of a literal choice as Google does.
“Now we’ll also do more to ensure that Android phone owners know about the wide choice of browsers and search engines available to download to their phones,” he adds, saying: “This will involve asking users of existing and new Android devices in Europe which browser and search apps they would like to use.”
We’ve reached out to Commission for comment, and to Google with questions about the design of its incoming browser and search app prompts for Android users in Europe and will update this report with any response.
Powered by WPeMatico
Security researchers have found dozens of companies inadvertently leaking sensitive corporate and customer data because staff are sharing public links to files in their Box enterprise storage accounts that can easily be discovered.
The discoveries were made by Adversis, a cybersecurity firm, which found major tech companies and corporate giants had left data inadvertently exposed. Although data stored in Box enterprise accounts is private by default, users can share files and folders with anyone, making data publicly accessible with a single link. But Adversis said these secret links can be discovered by others. Using a script to scan for and enumerate Box accounts with lists of company names and wildcard searches, Adversis found more than 90 companies with publicly accessible folders.
Not even Box’s own staff were immune from leaking data.
The company said while much of the data is legitimately public and Box advises users how to minimize risks, many employees may not know the sensitive data they share can be found by others.
Worse, some public folders were scraped and indexed by search engines, making the data found more easily.
In a blog post, Adversis said Box administrators should reconfigure the default access for shared links to “people in your company” to reduce accidental exposure of data to the public.
Adversis said it found passport photos, bank account and Social Security numbers, passwords, employee lists, financial data like invoices and receipts and customer data among the data found. The company contacted Box to warn of the larger exposures of sensitive data, but noted that there was little overall improvement six months after its initial disclosure.
“There is simply too much out there and not enough time to resolve each individually,” he said.
Adversis provided TechCrunch with a list of known exposed Box accounts. We contacted several of the big companies named, as well as those known to have highly sensitive data, including:
Box, which initially had no comment when we reached out, had several folders exposed. The company exposed signed non-disclosure agreements on their clients, including several U.S. schools, as well as performance metrics of its own staff, the researchers said.
Box spokesperson Denis Roy said in a statement: “We take our customers’ security seriously and we provide controls that allow our customers to choose the right level of security based on the sensitivity of the content they are sharing. In some cases, users may want to share files or folders broadly and will set the permissions for a custom or shared link to public or ‘open’. We are taking steps to make these settings more clear, better help users understand how their files or folders can be shared, and reduce the potential for content to be shared unintentionally, including both improving admin policies and introducing additional controls for shared links.”
The cloud giant said it plans to reduce the unintended discovery of public files and folders.
Amadeus, Apple, Box, Discovery, Herbalife, Edelman and PointCare all reconfigured their enterprise accounts to prevent access to their leaking files after TechCrunch reached out.
Amadeus spokesperson Alba Redondo said the company decommissioned Box in October and blamed the exposure on an account that was “misconfigured in public mode,” which has now been corrected and external access to it is now closed. “We continue to investigate this issue and confirm there has been no unauthorized access of our system,” said the spokesperson, without explanation. “There is no evidence that confidential information or any information containing personal data was impacted by this issue,” the spokesperson added.
When we asked Amadeus how it concluded there was no improper access, another spokesperson, Ben Hunt, said: “We have the full audit trail for Box and access of these files — none of the files have been downloaded outside of either Amadeus or authorized customers.”
The spokesperson declined to explain its statement when told files were downloaded to verify their contents.
PointCare chief executive Everett Lebherz confirmed its leaking files had been “removed and Box settings adjusted.” Edelman’s global marketing chief Michael Bush said the company was “looking into this matter.”
Herbalife spokesperson Jennifer Butler said the company was “looking into it,” but we did not hear back after several follow-ups. (Butler declared her email “off the record,” which requires both parties agree to the terms in advance, but we are printing the reply as we were given no opportunity to reject the terms.)
When reached, an Apple spokesperson did not comment by the time of publication.
Discovery, Opportunity International, Schneider Electric and United Tissue Network did not return a request for comment.
Data “dumpster diving” is not a new hobby for the skilled, but it’s a necessary sub-industry to fix an emerging category of data breaches: leaking, public and exposed data that shouldn’t be. It’s a growing space that we predicted would grow as more security researchers look to find and report data leaks.
This year alone, we’ve reported data leaks at Dow Jones, Rubrik, NASA, AIESEC, Uber, the State Bank of India, two massive batches of Indian Aadhaar numbers, a huge leak of mortgage and loan data and several Chinese government surveillance systems.
Adversis has open-sourced and published its scanning tool.
Powered by WPeMatico
Far from Apple’s troubles in emerging markets and China, the company is attracting the ire of what should really be a core supporter demographic naturally aligned with the pro-privacy stance CEO Tim Cook has made into his public soapbox in recent years — but which is instead crying foul over perceived hypocrisy.
The problem for this subset of otherwise loyal European iPhone users is that Apple isn’t offering enough privacy.
These users want more choice over key elements such as the search engine that can be set as the default in Safari on iOS (Apple currently offers four choices: Google, Yahoo, Bing and DuckDuckGo, all U.S. search engines; and with ad tech giant Google set as the default).
It is also being called out over other default settings that undermine its claims to follow a privacy by design philosophy. Such as the iOS location services setting which, once enabled, non-transparently flip an associated sub-menu of settings — including location-based Apple ads. Yet bundled consent is never the same as informed consent…
6/ and @Apple also defaults to ON, approx 13 location settings the moment a user enables location settings
that includes using YOUR location to support APPLE’s advertising business interests & $$$. By ‘enabling location based services’ you give your consent to this
@tim_cook pic.twitter.com/scYSg94QgY
— Privacy Matters (@PrivacyMatters) October 19, 2018
As the saying goes you can’t please all of the people all of the time. But the new normal of a saturated smartphone market is imposing new pressures that will require a reconfiguration of approach.
Certainly the challenges of revenue growth and user retention are only going to step up from here on in. So keeping an otherwise loyal base of users happy and — crucially — feeling listened to and well served is going to be more and more important for the tech giant as the back and forth business of services becomes, well, essential to its fortunes going forward.
(At least barring some miracle new piece of Apple hardware — yet to be unboxed but which somehow rekindles smartphone-level demand afresh. That’s highly unlikely in any medium term timeframe given how versatile and capable the smartphone remains; ergo Apple’s greatest success is now Apple’s biggest challenge.)
With smartphone hardware replacement cycles slowing, the pressure on Cook to accelerate services revenue naturally steps up — which could in turn increase pressure on the core principles Cupertino likes to flash around.
Yet without principles there can be no brand premium for Apple to command. So that way ruin absolutely lies.
It’s true that controlling the iOS experience by applying certain limits to deliver mainstream consumer friendly hardware served Apple well for years. But it’s also true iOS has grown in complexity over time having dropped some of its control freakery.
Elements that were previously locked down have been opened up — like the keyboard, for instance, allowing for third party keyboard apps to be installed by users that wish to rethink how they type.
This shift means the imposed limit on which search engines users can choose to set as an iOS default looks increasingly hard for Apple to justify from a user experience point of view.
Though of course from a business PoV Apple benefits by being able to charge Google a large sum of money to remain in the plum search default spot. (Reportedly a very large sum, though claims that the 2018 figure was $9BN have not been confirmed. Unsurprisingly neither party wants to talk about the terms of the transaction.)
The problem for Apple is that indirectly benefiting from Google eroding the user privacy it claims to champion — by letting the ad tech giant pay it to suck up iOS users’ search queries by default — is hardly consistent messaging.
Not when privacy is increasingly central to the premium the Apple brand commands.
Cook has also made a point of strongly and publicly attacking the ‘data industrial complex‘. Yet without mentioning the inconvenient side-note that Apple also engages in trading user data for profit in some instances, albeit indirectly.
In 2017 Apple switched from using Bing to Google for Siri web search results. So even as it has stepped up its rhetoric around user privacy it has deepened its business relationship with one of the Western Internet’s primary data suckers.
All of which makes for a very easy charge of hypocrisy.
Of course Apple offers iOS users a non-tracking search engine choice, DuckDuckGo, as an alternative choice — and has done so since 2014’s iOS 8.
Its support for a growing but still very niche product in what are mainstream consumer devices is an example of Apple being true to its word and actively championing privacy.
The presence of the DDG startup alongside three data-mining tech giants has allowed those ‘in the know’ iOS users to flip the bird at Google for years, meaning Apple has kept privacy conscious consumers buying its products (if not fully on side with all its business choices).
But that sort of compromise position looks increasingly difficult for Apple to defend.
Not if it wants privacy to be the clear blue water that differentiates its brand in an era of increasingly cut-throat and cut-price Android -powered smartphone competition that’s serving up much the same features at a lower up-front price thanks to all the embedded data-suckers.
There is also the not-so-small matter of the inflating $1,000+ price-tags on Apple’s top-of-the-range iPhones. $1,000+ for a smartphone that isn’t selling your data by default might still sound very pricy but at least you’d be getting something more than just shiny glass for all those extra dollars. But the iPhone isn’t actually that phone. Not by default.
Apple may be taking a view that the most privacy sensitive iPhone users are effectively a captive market with little option but to buy iOS hardware, given the Google-flavored Android competition. Which is true but also wouldn’t bode well for the chances of Apple upselling more services to these people to drive replacement revenue in a saturated smartphone market.
Offending those consumers who otherwise could be your very best, most committed and bought in users seems short-sighted and short-termist to say the least.
Although removing Google as the default search provider in markets where it dominates would obviously go massively against the mainstream grain that Apple’s business exists to serve.
This logic says Google is in the default position because, for most Internet users, Google search remains their default.
Indeed, Cook rolled out this exact line late last year when asked to defend the arrangement in an interview with Axios on HBO — saying: “I think their search engine is the best.”
He also flagged various pro-privacy features Apple has baked into its software in recent years, such as private browsing mode and smart tracker prevention, which he said work against the data suckers.
Albeit, that’s a bit like saying you’ve scattered a few garlic cloves around the house after inviting the thirsty vampire inside. And Cook readily admitted the arrangement isn’t “perfect”.
Clearly it’s a trade off. But Apple benefitting financially is what makes this particular trade-off whiff.
It implies Apple does indeed have an eye on quarterly balance sheets, and the increasingly important services line item specifically, in continuing this imperfect but lucrative arrangement — rather than taking a longer term view as the company purports to, per Cook’s letter to shareholders this week; in which he wrote: “We manage Apple for the long term, and Apple has always used periods of adversity to re-examine our approach, to take advantage of our culture of flexibility, adaptability and creativity, and to emerge better as a result.”
If Google’s search product is the best and Apple wants to take the moral high ground over privacy by decrying the surveillance industrial complex it could maintain the default arrangement in service to its mainstream base but donate Google’s billions to consumer and digital rights groups that fight to uphold and strengthen the privacy laws that people-profiling ad tech giants are butting hard against.
Apple’s shareholders might not like that medicine, though.
More palatable for investors would be for Apple to offer a broader choice of alternative search engines, thereby widening the playing field and opening up to more pro-privacy Google alternatives.
It could also design this choice in a way that flags up the trade-off to its millions of users. Such as, during device set-up, proactively asking users whether they want to keep their Internet searches private by default or use Google?
When put like that rather more people than you imagine might choose not to opt for Google to be their search default.
Non-tracking search engine DDG has been growing steadily for years, for example, hitting 30M daily searches last fall — with year-on-year growth of ~50%.
Given the terms of the Apple-Google arrangement sit under an NDA (as indeed all these arrangements do; DDG told us it couldn’t share any details about its own arrangement with Apple, for e.g.) it’s not clear whether one of Google’s conditions requires there be a limit on how many other search engines iOS users can pick from.
But it’s at least a possibility that Google is paying Apple to limit how many rivals sit in the list of competitors iOS users can pick out an alternative default. (It has, after all, recently been spanked in Europe for anti-competitive contractual limits imposed on Android OEMs to limit their ability to use alternatives to Google products, including search. So you could say Google has history where search is concerned.)
Equally, should Google actually relaunch a search product in China — as it’s controversially been toying with doing — it’s likely the company would push Apple to give it the default slot there too.
Though Apple would have more reason to push back, given Google would likely remain a minnow in that market. (Apple currently defaults to local search giant Baidu for iOS users in China.)
So even the current picture around search on iOS is a little more fuzzy than Cook likes to make out.
China is an interesting case, because if you look at Apple’s growth challenges in that market you could come to a very different conclusion vis-a-vis the power of privacy as a brand premium.
In China it’s convenience, via the do-it-all ‘Swiss army knife’ WeChat platform, that’s apparently the driving consumer force — and now also a headwind for Apple’s business there.
At the same time, the idea of users in the market having any kind of privacy online — when Internet surveillance has been imposed and ‘normalized’ by the state — is essentially impossible to imagine.
Yet Apple continues doing business in China, netting it further charges of hypocrisy.
Its revised guidance this week merely spotlights how important China and emerging markets are to its business fortunes. A principled pull-out hardly looks to be on the cards.
All of which underscores growing emerging market pressures on Apple that might push harder against its stated principles. What price privacy indeed?
It’s clear that carving out growth in a saturated smartphone market is going to be an increasingly tricky business for all players, with the risk of fresh trade-offs and pitfalls looming especially for Apple.
Negotiating this terrain certainly demands a fresh approach, as Cook implies is on his mind, per the shareholder letter.
Arguably the new normal may also call for an increasingly localized approach as a way to differentiate in a saturated and samey smartphone market.
The old Apple ‘one-sized fits all’ philosophy is already very outdated for some users and risks being caught flat-footed on a growing number of fronts — be that if your measure is software ‘innovation’ or a principled position on privacy.
An arbitrary limit on the choice of search engine your users can pick seems a telling example. Why not offer iOS users a free choice?
Or are Google’s billions really standing in the way of that?
It’s certainly an odd situation that iPhone owners in France, say, can pick from a wide range of keyboard apps — from mainstream names to superficial bling-focused glitter and/or neon LED keyboard skins or indeed emoji and GIF-obsessed keyboards — but if they want to use locally developed pro-privacy search engine Qwant on their phone’s native browser they have to tediously surf to the company’s webpage every time they want to look something up.
Google search might be the best for a median average ‘global’ (excluding China) iOS user but in an age of increasingly self-focused and self-centred technology, with ever more demanding consumers, there’s really no argument against letting people who want to choose for themselves.
In Europe there’s also the updated data protection framework, GDPR, to consider. Which may yet rework some mainstream ad tech business models.
On this front Qwant questions how even non-tracking rival DDG can protect users’ searches from government surveillance given its use of AWS cloud hosting and the U.S. Cloud Act. (Though, responding to a discussion thread about the issue on Github two years ago, DDG’s founder noted it has servers around the world, writing: “If you are in Europe you will be connected to our European servers.” He also reiterated that DDG does not collect any personal data from users — thereby limiting what could be extracted from AWS via the Act.)
Asked what reception it’s had when asking about getting its search engine on the Safari iOS list, Qwant told us the line that’s been (indirectly) fed back to it is “we are too European according to Apple”. (Apple declined to comment on the search choices it offers iOS users.)
“I have to work a lot to be more American,” Qwant co-founder and CEO Eric Leandri told us, summing up the smoke signals coming out of Cupertino.
“I understand that Apple wants to give the same kind of experience to their customers… but I would say that if I was Apple now, based on the politics that I want to follow — about protecting the privacy of customers — I think it would be great to start thinking about Europe as a market where people have a different point of view on their data,” he continued.
“Apple has done a lot of work to, for example, not let applications give data to each by a very strict [anti-tracking policy]; Apple has done a lot of work to guarantee that cookies and tracking is super difficult on iOS; and now the last problem of Apple is Google search.”
“So I hope that Apple will look at our proposal in a different way — not just one-fits-all. Because we don’t think that one-fits-all today,” he added.
Qwant too, then, is hoping for a better Apple to emerge as a result of a little market adversity.
Powered by WPeMatico