New Global Conference for Tech Startups Lands in Unexpected US City

first_img 2 min read When most people think of the world’s hottest startup scenes, Silicon Valley, New York and Boston are likely to come to mind. So it might seem strange that a new global startup conference, Startup Phenomenon, has chosen Boulder, Colo. as its host city.Only it shouldn’t. According to a recent report by the Kauffman Foundation, Boulder has the greatest density of high-tech startups of any metropolitan area in the United States. That’s right even more than Silicon Valley, which comes in at No. 3 on the list.In a three day conference starting November 13, Startup Phenomenon attendees will discuss alternative funding models, potential collaboration between governments and private businesses and the role of incubators and accelerators in driving entrepreneurship. One set of presentations will be a series of case studies of 10 cities with thriving tech scenes, such as Jerusalem and Nairobi. The audience will be a mix of entrepreneurs and investors.Related: The 25 Best U.S. Cities for Tech StartupsRather than focusing on how individuals can achieve success with their own companies, Startup Phenomenon will address how communities might foster entrepreneurship more broadly, says John Bradley, senior vice president of content and strategy for Van Heyst Group, the company producing the conference.”This is not a conference about Boulder,” Bradley says. “It’s a conference about all the startup communities all over the world, and how new ones can form. We just happen to be hosting it in Boulder.”Speakers will be coming from as far away as Iceland and New Zealand for the conference, which runs from November 13 to 15.Separately, on September 3, the people behind Startup Phenomenon are putting on an event about female entrepreneurs at the University of Colorado, Boulder. The women’s conference started as a session on the November conference agenda, Bradley says, “but there was so much energy around it that we decided to make it a breakout event.”Related: 5 Rules for Silicon Valley Success That Can Work Anywhere Growing a business sometimes requires thinking outside the box. August 16, 2013 Opinions expressed by Entrepreneur contributors are their own. Free Webinar | Sept. 9: The Entrepreneur’s Playbook for Going Global Register Now »last_img read more

Google reveals an undisclosed bug that left 500K Google accounts vulnerable in

first_imgYesterday, Google reported a bug discovery in one of the Google+ People APIs, which exposed user’s Google+ profile information such as name, email address, occupation, gender, and age. As per Google’s analysis, the profiles of up to 500,000 Google+ accounts were potentially affected. According to the Wall Street Journal report, “Google opted not to disclose the issue this past spring, in part because of fears that doing so would draw regulatory scrutiny and cause reputational damage.” Google discovered this bug as a part of its Project Strobe, which began in early 2018. Strobe was started with an aim to analyze third-party developer access in Google’s various services and Android. The company says it immediately patched this bug in March 2018 post learning of its existence. The bug provided outside developers potential access to private Google+ profile data between 2015 and March 2018, say internal investigators who discovered and fixed it. Using the API, users can grant access to their profile data, and the public profile information of their friends, to Google+ apps. However, with the bug, the apps also had an access to profile fields even when that data was listed as private and not public. Why were users kept in the dark? Any security breach pertaining to user data exposure should quickly be informed. However, as per the Wall Street Journal report, “A memo reviewed by the Journal prepared by Google’s legal and policy staff and shared with senior executives warned that disclosing the incident would likely trigger ‘immediate regulatory interest’ and invite comparisons to Facebook’s leak of user information to data firm Cambridge Analytica.” In response to the allegations raised on Google, Ben Smith, Vice President of Google’s Engineering team, in his recent blog post mentioned, “Every year, we send millions of notifications to users about privacy and security bugs and issues. Whenever user data may have been affected, we go beyond our legal requirements and apply several criteria focused on our users in determining whether to provide notice.” He also assured that Google’s Privacy & Data Protection Office reviewed the issue. He further added, “looking at the type of data involved, whether we could accurately identify the users to inform, whether there was any evidence of misuse, and whether there were any actions a developer or user could take in response. None of these thresholds were met in this instance.” Ben said that Google found no evidence that any developer was aware of this bug or abusing the API. He also assured that no profile data was misused. Will this delayed bug discovery announcement subject Google to GDPR? The European GDPR (General Data Protection Regulation), which was enforced on 25 May 2018 requires companies to notify regulators of breaches within 72 hours, else the companies would be charged a maximum fine of 2% of world-wide revenue. Al Saikali, a lawyer with Shook, Hardy & Bacon LLP, said, “The information potentially leaked via Google’s API would constitute personal information under GDPR, but because the problem was discovered in March, it wouldn’t have been covered under the European regulation.” He further added, “Google could also face class-action lawsuits over its decision not to disclose the incident. The story here that the plaintiffs will tell is that Google knew something here and hid it. That by itself is enough to make the lawyers salivate.” The Aftermath: Google plans to discontinue Google+ for consumers Ben’s post mentions that over the years, Google+ has not achieved broad consumer or developer adoption, and has seen limited user interaction with apps. Talking about its consumer version, Google+ currently has low usage and engagement–90 percent of Google+ user sessions are less than five seconds. One of the priorities of Project Strobe was to closely review all the APIs associated with Google+ during which it also discovered the bug. Ben mentions, “The review did highlight the significant challenges in creating and maintaining a successful Google+ that meets consumers’ expectations.” Following these challenges and the very low usage of the consumer version of Google+, Google has decided to discontinue Google+ consumer version. This shutdown will take place over the course of the next 10 months, and will conclude in August, next year. However, Google plans to make Google+ available as an enterprise product for companies. Ben states, “We’ve decided to focus on our enterprise efforts and will be launching new features purpose-built for businesses. We will share more information in the coming days.” Other findings of Project Strobe and the actions taken Project Strobe provides a ‘root and branch’ review of third-party developer access to Google account and Android device data and of Google’s philosophy around apps’ data access. The main key finding of this project is the discovery of an exploitable bug built into a core API of Google+ for three years. The other key findings and the actions taken include: The need for having fine-grained control over the data shared with apps For this finding, Google plans to launch more granular Google Account permissions that will show up in individual dialog boxes. Here, instead of seeing all requested permissions in a single screen, apps will have to show the user each requested permission, one at a time, within its own dialog box. Know more about this on Google Developer Blog. Here’s a sample of how this process will look like: Source: Google blog Granting access to user’s Gmail via apps is done with certain use cases in mind For this, Google plans to limit the types of use cases that are permitted. The company is updating their User Data Policy for the consumer Gmail API to limit the apps that may seek permission to access consumer’s Gmail data. Only apps directly enhancing email functionality such as email clients, email backup services and productivity services (e.g., CRM and mail merge services), will be authorized to access this data. Also, these apps will need to agree to new rules for handling Gmail data and will be subject to security assessments. To know more about this action, read the Gmail Developer Blog. Granting SMS, Contacts and Phone permissions to Android apps are done with certain use cases in mind As an action to this finding, Google will limit the apps’ ability to receive call log and SMS permissions on Android devices. Hence, the contact interaction data will no longer be available via the Android Contacts API. Additionally, Google has also provided basic interaction data, for example, a messaging app could show you your most recent contacts. They also plan to remove access to contact interaction data from the Android Contacts API within the next few months. To read more about Project Strobe and the closing down of Google+ in detail, visit Ben Smith Google post. Read Next Facebook’s largest security breach in its history leaves 50M user accounts compromised Bloomberg’s Big Hack Exposé says China had microchips on servers for covert surveillance of Big Tech and Big Brother; Big Tech deny supply chain compromise Timehop suffers data breach; 21 million users’ data compromisedlast_img read more

Hurricane protection free with ACV until May 14

center_img MONTREAL — Air Canada Vacations is offering free StormGuard protection to select destinations in Mexico and the Caribbean, for bookings made by May 14.StormGuard allows clients to rebook their vacation package if the US National Hurricane Center declares a tropical storm warning within three days (72 hours) of scheduled departure. Protection typically costs $49 per person but for a limited time ACV is waiving the fee.“In the Caribbean, the summertime is typically known as hurricane season; however, StormGuard gives travellers peace of mind when booking their vacation with ACV,” said Nino Montagnese, Managing Director, Air Canada Vacations. “Plus, the now waived fee will make it even easier for travel agents to add-on this protection plan to client bookings.”More information about StormGuard and applicable destinations is at aircanadavacations.com. Tags: Air Canada Vacations Wednesday, May 3, 2017 last_img read more

Striking Pearson ground crew vote against new offer

first_img Thursday, August 24, 2017 Tags: Toronto Pearson Airport, Travel Alert TORONTO — Striking ground crew workers at Canada’s busiest airport have voted overwhelmingly to reject the latest offer from their employer and will continue a four-week-long work stoppage.A spokesman for Teamsters Union Local 419 says the workers employed by Swissport vote 98% to reject a new contract after turning down an offer by a wide margin in late July.“The first offer was rejected by 95 per cent so this is actually a stronger rejection,” said union spokesman Christopher Monette.“Swissport’s second offer to our members was almost identical to the first one. All they did was change a few details.”About 700 cabin cleaners, baggage handlers, and other ground crew workers employed by Swissport at Toronto’s Pearson International Airport have been on strike since late July.Swissport services 30 airlines at the airport, including Air Transat, Sunwing Airlines, British Airways, Cathay Pacific, Air France, KLM and Lufthansa. Air Canada and WestJet are not serviced by Swissport.More news:  Save the dates! Goway’s Africa Roadshow is backThe ground crew strike has not significantly affected passengers, although the airport has been warning travellers that the labour disruption could affect some flights.Terms of the latest offer were not released but the company had said it was optimistic the workers would accept the deal.Their concerns have included pay and benefits cuts, scheduling issues, and what their union calls a lack of respect from Swissport managers.“We’re dealing with a company that is proposing and doing the same thing over and over expecting different results and that’s a slap in the face really to our workers,” said Monette.“This lack of respect was evident in the company’s first and second offers. They wanted to impose a three-year wage freeze on workers at the top of the wage scale. The problem is that’s actually the majority of workers at Swissport.” The Canadian Press Sharecenter_img Striking Pearson ground crew vote against new offer Posted by << Previous PostNext Post >>last_img read more