• +598 29008192
  • info@servinfo.com.uy

Archivo del Autor: Belen De Leon

Facebook expands bug bounty program to include third-party apps and websites

Facebook announced this morning it’s expanding its bug bounty program – which pays researchers who find security vulnerabilities within its platform – to now include issues found in third-party apps and websites. Specifically, Facebook says it will reward valid reports of vulnerabilities that relate to the improper exposure of Facebook user access tokens.

Typically, when a user logs into another app using their Facebook account information, they’re able to decide what information the token and, therefore, the app can access and what actions it can take.

But if the token becomes compromised, users’ personal information could be misused.

Facebook says it will pay a minimum reward of $500 per vulnerable app or website, if the report is valid. The company also noted it wasn’t aware of any other programs offering rewards of this scope for all eligible third-party apps.

If a vulnerability is determined to be legit, Facebook will then work with the affected app developer or website operator to fix their code. Any apps that don’t comply with Facebook’s request to address the issue will be suspended from the platform until the problem has been solved and undergoes a security review.

In addition, Facebook says it will revoke all the access tokens that could have been compromised in order to prevent potential misuse. If it believes anyone has actually been impacted by the problem, it will notify them, if need be.

The company spells out what sort of information researchers (the white hat hackers) should include in their reports in order to receive the reward. It also says it’s only accepting reports where the bug is discovered by passively viewing data sent to and from a device and the affected app or website – not through any more of manipulation on the researchers’ part.

The news comes at a time when Facebook is still dealing with the fallout from the Cambridge Analytica scandal, which compromised the personal data from as many as 87 million Facebook users. This was followed by news this summer that a quiz app had been leaking data on 120 million users for years.

Since then, the company has been tightening its API platform, reviewing all apps, suspending hundreds of apps deemed suspicious, rolling out tools to help people better manage their apps, and more.

As a part of those changes, Facebook said earlier this year that its bug bounty program would be expanded.

Separately from this new program, the company now also runs a Data Abuse Bounty program which rewards first-hand knowledge of third-parties that collect user data in order to pass it off to malicious parties.

“We would like to emphasize that our bug bounty program does not replace the obligations on app developers to maintain appropriate technical and organizational measures to protect personal data — either regulatory obligations (for example, if the app developer is a data controller for the purposes of GDPR) or the rigorous controls we require through our terms of service and policies that apply to all developers on the Facebook platform,” wrote Dan Gurfinkel, Facebook Security Engineering Manager, in an announcement.

More details on the program are here.

Source: TechCrunch

Microsoft may go back to black with 2018 Surface Pro and Surface Laptop

Microsoft may be adding black as a color option to its refreshed Surface Laptop and Surface Pro models on October 2nd. Rumors of the new color along with an image of the black Surface Laptop popped up over the weekend.

The post Microsoft may go back to black with 2018 Surface Pro and Surface Laptop appeared first on Digital Trends.

Source: Digital trends

OnePlus, Google are hosting a trippy-looking puzzle competition – CNET

And the winner will get a $30K gaming setup.
Source: CNET

Cadillac delays diesel development to expand electrification – Roadshow

GM can read the writing on the wall, despite offering a couple diesel variants across its lineup.
Source: CNET

Blippar picks up $37 million hoping to become profitable in the next year

Blippar, the AR startup that launched in 2011, has today announced the close of a $37 million financing led by Candy Ventures and Qualcomm Ventures.

The company started out by offering AR experiences for brand marketers through publishers and other real-world products, letting users unlock AR content by scanning a tag called a “Blipp”.

Blippar then transitioned to a number of different AR products, but took a particular focus on computer vision, launching a consumer-facing visual search engine that would let users identify cars, plants, and other real-world objects.

Most recently, Blippar has introduced an indoor positioning system that lets commercial real estate owners implement AR mapping and other content from within their buildings.

The AR industry has been in a state of evolution for the past few years, and Blippar has constantly reshifted and re-positioned to try and take advantage of the blossoming market. Unfortunately, several pivots have put the company in a tough spot financially.

BI reports that Blippar posted revenue of £8.5 million ($11.2 million) in the 16-month period up to March 31 2016, with losses of £24 million ($31.5 million). These latest rounds have essentially let Blippar keep the lights on while trying to pick up the pace on revenues.

The company says that this latest round is meant to fuel the company’s race to reach profitability in the next 12 months. Blippar has raised more than $137 million to date.

Source: TechCrunch

Sinemia adds new unlimited $30 plan to push MoviePass out of your life – CNET

All of the savings, none of the shenanigans. There’s a $9.99 option for three movies a month too.
Source: CNET

PayPal’s one-touch, localised payment options go global

E-commerce in the US is synonymous with using credit or other payment cards to pay for goods, but the story outside the US is very different. A fragmented mix of different options — such as cash on delivery, bank transfers, mobile phone accounts and more — are used in different combinations, depending on the country where an online sale is being made. Today, PayPal — the payments business with 250 million global active customer accounts — is making a move to try to address that problem, with the global launch of Checkout with Smart Payment Buttons, which let merchants in different countries customise payment options and create instant buying buttons and OneTouch checkout, without having to integrate with a number of different payment services.

As has fast become the norm with payment solutions in today’s market, the feature can be added into a checkout process with a few lines of code, rather than a lengthy integration.

PayPal has already been offering the product for the last three months — ironically, in the US (where cards rule the day) — a period that helped the company lay the groundwork for the wider and more complex rollout that it’s undertaking now.

The options that it’s offering now include the range of PayPal’s own services — PayPal, Venmo (US only), PayPal Credit (UK and US only subject to approval) — plus iDEAL for customers in the Netherlands, Bancontact for people in Belgium, MyBank for customers in Italy, Giropay for customers in Germany and EPS for customers in Austria (PayPal previously already taken SEPA Direct Debit in Germany).

The company will be adding more country-specific payment methods in the future. Earlier this year, PayPal led a $50 million investment in a startup called PPRO that specialises in cross-border payments, and that strategic investment is now coming into its own. While the Smart Payment technology is built by PayPal, “we do work with multiple providers to enable the many various local payment methods,” said Bill Ready, PayPal’s EVP and COO.

Merchants already using the quicker checkout include Beyond Proper by Boston Proper, Guess?, Inc., and Zumiez. Magento and WooCommerce have also enabled the new checkout experience for customers.

“We are seeing significant adoption of our Smart Payment Buttons since we first announced them, from small business to some of the largest retailers in the world,” said Ready. “We’ve gotten positive feedback about the ability to dynamically enable all the various payment methods, and many businesses — including many large retailers — have been using Smart Payment Buttons to enable Venmo as a checkout option.”

One of the key problems with e-commerce is that it turns out there is a lot of window shoppers out there — or at least people who are more likely to look but often jump elsewhere or lose interest when it comes to going through the process of buying. One of the reasons for that is oftentimes there are too many hoops that people need to jump through to make a purchase. PayPal is one of many “wallets” on the market that makes the pitch to merchants (and customers) to use it as a way around that issue: PayPal keeps your main payment details on file, and requires a basic login to work. PayPal claims that merchants that use PayPal Checkout see 88.7 percent conversions (purchases), some 82 percent higher than those not using PayPal.

Alongside the new localised payment options, PayPal is also expanding its marketing solutions globally, too: PayPal has been gradually expanding the services that it offers to merchants on its platform, to give them a more end-to-end suite of services. This has included making acquisitions like Swift Financial in 2017 for financial services; and today, adding in more marketing solutions such as sales analytics and sales incentives to help persuade prospective customers to buy during and after browsing.

Source: TechCrunch

Startups are giving writers and filmmakers more ways to make it in Hollywood

On May 11 Netflix released the teen dramedy “The Kissing Booth” just as the school year was wrapping up for teens across the country.

By June, the company had a smash hit among the tweenage set, and Wattpad, the company which owned the rights to the The Kissing Booth, had its first true breakout vehicle. The story, written on Wattpad’s publishing platform by Beth Reekles, was a proof point for the company’s thesis pitching a new twist on the old model of discovering stories and creative talent for the entertainment industry.

Behind the success of the film is a nascent movement among startup companies that are trying to open the doors of Hollywood’s dream factory to a broader group of creative professionals by riding the wave of fan fiction and user generated content all the way to the Paramount lot (or the Disney lot, or Sony Studios).  

“In this obvious period of disruption in the entertainment industry how we’re finding stories is evolving,” said Wattpad Studios chief Aron Levitz.

YouTube, the short-lived Vine app, and Instagram have all created new platforms for discovering potential on-camera talent, and Amazon, Apple, Facebook, Instagram (again), Netflix, and YouTube (again) have smashed the distribution system for television and movies. But these platforms and the traditional studios they’d like to supplant have a voracious appetite for stories to tell and (many) are reluctant to risk millions of dollars behind something unproven.

Hollywood has always borrowed (or stolen) from other media to entertain the masses, but it seems like the fields it’s foraging in for new stories have narrowed to a few serialized playgrounds (comic books, old television shows and movies, and wildly successful young adult genre fiction).

While there are thousands of flowers to be found there, new tech-enabled companies are suggesting there might be other patches where new talent can be discovered, harvested and leveraged for corporate gain and viewer delight.

Startups like Wattpad and Tongal (for directors and cinematographers), and new financing platforms like Legion M (for producing features) are aiming to elevate new talent and provide what the companies hope will be built-in audiences for successful new programming on platforms like Netflix, Apple, and others — and the hundreds of networks that are vying for attention in an increasingly fragmented media landscape.

It wasn’t always this way. When Tongal was created, roughly a decade ago. the entertainment industry looked much, much differently than it does now.

Ten years ago that Netflix announced it would let its DVD subscribers watch streaming video as well — mostly old movies and syndicated shows that had already made their millions for the big networks and studios. That was the starting gun of what would become a race to roll up talent and gain audience in a creative landscape that was becoming increasingly competitive. With new entrants joining at every new lap.

At the time, Tongal was a discovery mechanism for new talent and a way for brands to pay for user generated content they liked. The company raised $15 million from Insight Venture Partners to harness the growing popularity of social media reach to create potentially viral videos for brands.

Tongal is still working under the thesis of user generated content, but the difference now is the millions of dollars these videos and their creators can bring in — and the ability o energize and inspire a fan base to connect more directly and engage more frequently with new titles. All the while Tongal gives studios a window into a wider world of talent.

One creator on the platform, Tucker Barrie, has gone from making short videos for social media for IAMS to a career as an animator on projects like Isle of Dogs. “Tongal is a good spot for people who don’t have a lot of experience to gain a lot of experience and make a name for themselves,” Barrie said.

In the past year the company has inked a deal with National Geographic to produce a series called WILD After Dark. The first late-night series from National Geographic WILD, the new episodes will feature shorts from members of the Tongal platform on animal-related subjects. It launched with an open call for submissions in February.

More recently Tongal has linked up with Wattpad to call on its network of creators to pitch a treatment for Wattpad’s wildly successful science fiction thriller Expiration Date. In July, Tongal issued its call to filmmakers for submissions from which the partners will pick three finalists. Those finalists will receive funding to produce a “proof-of-concept” series trailer.

Then, Wattpad, Tongal and their distribution partner SYFY will award a grand prize winner additional funding to create a digital pilot episode with the potential to go on to develop the entire series for SYFY.com as part of its fan creators program.

“The partnership between Tongal and Wattpad flips the script on Hollywood by changing the how and who of content creation through our open platforms for talent,” said James DeJulio, Tongal’s co-founder and President, in a statement at the time. “These new global communities are made up of diverse and passionate creators, and now they’re actually developing the shows they want to watch. I’m thrilled that SYFY.com has opened the door for this innovative, by the fans, for the fans shift.”

This marks the second collaboration between Tongal and Wattpad on project development for a network. The two companies, which have a natural affinity as creative platforms focused on the visual and storytelling elements of a production (respectively), had worked on a similar competition for the CW Seed, and its production of Cupid’s Match, another popular Wattpad story (spoiler: it’s not very good).

“It’s one of those great proof points for Wattpad and Wattpad studios,” said Levitz, the head of Wattpad Studios in a February interview. “I think it’s the first public one that we’re talking about in a strong way.”

On Wattpad, Cupid’s Match had 32 million reads, and it was that kind of viral popularity that piqued the interest of the CW Network. “We can use the strength of an audience and get someone like CW interested in the output,” Levitz said. “We have 400 million stories on the platform. We’re able to look at the data we have the audience we have and the story we have and use data to choose the right stories for the right partner.”

Partners are lining up. Sony Pictures Television bought the rights to the Wattpad story “Death is my BFF,” and Hulu signed off on an order for “Light as a Feather”. Studios and networks including TurnerUniversal Cable Productions (a division of NBCUniversal), eOne and Paramount Pictures, have also signed on to work with the startup.

Like Tongal, Wattpad also took a circuitous path to becoming a player in Hollywoodland. The company initially started as an e-book community operator sharing fan fiction and classic works. Over time, the fan fiction side of the content marketplace won out and the Toronto-based company went from raising capital from a consortium of angel investors to raising $51 million from a consortium of investors including the Chinese internet giant, Tencent, earlier this year. It’s likely that Tencent (and the studios it’s partnering with) were drawn to Wattpad’s 60 million monthly users.

The foundation for the belief that fan fiction could be leveraged into hundreds of millions for the movie industry was laid by the success of the Fifty Shades franchise. The best-selling books, derived from Twilight fan fiction, were optioned into a series of three films and made for a cool $150 million.

By the time the last movie in the series debuted, the films were on their way to making over $1 billion at the box office.

For the past decade Hollywood has been relying on big franchises and fan-driven stories to create big numbers at the box office or online, said DeJulio.

“Fans are the lifeblood of these franchises,” DeJulio said. “We’re in this weird time right now… where marketing is very expensive and it is in a lot of ways hamstringing entertainment.”

DeJulio sees Tongal as a platform where one can influence and support the other.

“The studios, once they do get a hit… They realize that through fan communities and engaging them they can not only market it but they can actually get the work done too [of creating new content],” DeJulio said.

Mount Lee, Hollywood Hills, Hollywood, Los Angeles, California, USA.

If Wattpad and Tongal are using their network of users to find and promote talent, Legion M is hoping to use the network of fans for genre content to finance new productions.

The startup production studio has raised $3 million in equity crowdfunding over two rounds and has managed to grab a stake in well reviewed indie-projects like Colossal (starring Anne Hathaway and Jason Sudeikis) and Mandy a new Nicolas Cage vehicle already being touted as cult-classic gold. What that means as far as returns go for the shareholders that back the company’s funding campaigns is unclear, especially since the company’s Bad Samaritan project (starring David Tenant, everyone’s favorite of the new Dr. Who) was critically panned.

Founded by two serial internet entrepreneurs Paul Scanlan and Jeff Annison, and backed by partnerships with folks like the Austin-based theater chain Alamo Drafthouse, LegionM’s goal is to bring in 1 million fans as investors to back projects.

The idea is to harness fan support for sales and marketing help and to surface projects that have enough of a built-in audience to generate profits for the company.

“We believe an entertainment company owned by fans is better than one owned by Wall Street,” said Paul Scanlan, Legion M’s cofounder and CEO, in a statement announcing the company’s new crowd funding campaign.

Some of the projects Legion M affiliated itself with are based more around fan engagement than an actual dollar investment. In fact, the company isn’t a producer of the marquee Colossal film, and instead came on to provide marketing support through its network of fans, according to an interview with the director.

Scanlan and Annison launched MobiTV, which was an early developer of technology to stream digital media on mobile devices. The two went on to launch New York Rock Exchange, a company that allows fans to buy illiquid shares in songs they love. It’s like a coin offering, without the upside, and without any legal ramifications because there’s actually nothing of value that acquirers are buying.

Unlike the Rock Exchange, average investors are buying real shares in the crowd funding offerings the two co-founders are selling via the Securities and Exchange Commission’s new crowdfunding regulations. And they’re tapping into the thesis that fans and consumers are driving the creation of commercially viable content now more than ever.

Wattpad, Tongal, and Legion M aren’t alone in their efforts. Companies like Seed&Spark, Coverfly, and The Black List, are also doing their best to uncover new artists and creators for the entertainment industry to develop. While on the financing side, new cryptocurrencies like MovieCoin (which just launched a pre-sale of its tokenized financing offering for producing new movies) and TaTaTu are angling to give the moviegoing public another (ideally more transparent) way to finance movies.

“Hollywood is a notoriously difficult place to traverse in the entertainment business. What we find in content creation, and the investment process as well, is that every project is seeking an audience,” Annison said in an interview with The Niner Times (the local university paper for the University of North Carolina, Charlotte). “Among Hollywood, which is such a massive world to step into, there are limitations along with those huge companies. In essence, it’s a ‘hit-driven’ enterprise, where the lines are drawn between the artistic side of filmmaking and the business side of entertainment. That can be a complicated street to walk down.”

Source: TechCrunch

Amazon highlights small biz sellers with Storefronts page – CNET

The new landing page offers over 1 million products from small and medium-sized Amazon sellers.
Source: CNET

Mary Poppins Returns trailer flies in with old-fashioned animation – CNET

Modern digital effects provide an echo of the original movie’s traditional animated style in this sequel starring Emily Blunt.
Source: CNET