In a phone conversation on Thursday, Hyundai Motor India spokesperson Siddhartha P. Saikia said the company would provide a statement.
The bug exposed the customer’s personal information through the web links Hyundai Motor India shared with customers over WhatsApp after receiving their vehicles for servicing at an authorized service station.
TechCrunch shared the details of the bug with Hyundai Motor India on the same day, and requested Hyundai Motor India fix the bug within seven days due to its simplicity and severity.
Established in 1996, Hyundai Motor India is among the top three carmakers in the country, alongside Maruti Suzuki and Tata Motors.
Hyundai Motor India has a network of over 1,500 service stations in the country.
Low-code dev platforms have gained momentum in recent years, in large part because they promise to shorten what’s otherwise typically a lengthy app development cycle.
According to data from analytics firm GlobalData, there was a fivefold increase in VC funding into low-code dev platforms from 2021 to 2022.
But low-code isn’t going anywhere, as evidenced most recently by low-code dev startup FlutterFlow’s financing round.
Leveraging Flutter, Google’s open source UI creation toolkit, FlutterFlow generates what Abel describes as “clean” and “maintainable” app source code.
There’s no shortage of competition in the market for low-code app dev platforms.
U.S. software giant Ivanti has confirmed that hackers are exploiting two critical-rated vulnerabilities affecting its widely-used corporate VPN appliance, but said that patches won’t be available until the end of the month.
Ivanti said the two vulnerabilities — tracked as CVE-2023-46805 and CVE-2024-21887 — were found in its Ivanti Connect Secure software.
Formerly known as Pulse Connect Secure, this is a remote access VPN solution that enables remote and mobile users to access corporate resources over the internet.
When TechCrunch asked why patches weren’t being made available immediately, Ivanti declined to comment.
Ivanti is urging that potentially impacted organizations prioritize following its mitigation guidance, and U.S. cybersecurity agency CISA has also published an advisory urging Ivanti Connect Secure to mitigate the two vulnerabilities immediately.
The latest deployment to the “EU Data Boundary for the Microsoft Cloud”, as it brands the infrastructure, kicked off in at the start of last year.
Efforts to understand where digital information is being processed and stored, and even to co-locate data in the same country/region as customers — aka data localization — can be important considerations under EU data protection laws.
“This means the EU Data Boundary now includes pseudonymized personal data.
It says the new resources can be accessed via the EU Data Boundary Trust Center webpage.
Another enhancement of the data localization offer her blog post flags is the deployment of virtual desktop infrastructure within the EU Data Boundary.
Software delivery platform Harness today announced that it has acquired the assets of Armory, a continuous deployment startup built on top of the open source Spinnaker project.
As Harness CEO and founder Jyoti Bansal told me, the acquisition price was about $7 million in cash.
Other investors include Lead Edge Capital, Insight Partners, Crosslink Capital, Bain Capital Ventures, Mango Capital, Y Combinator and Javelin Venture Partners.
Harness will hire many of Armory’s employees and Harness will continue to support existing Armory implementations.
He does, of course, hope that many of Armory’s customers will migrate to the Harness platform over time, but he also stressed that he wants to help Armory’s existing customer base.
Getty Images, the stock media company, announced a new service this week at CES 2024 that leverages AI models trained on Getty’s iStock stock photography and video libraries to generate new licensable images and artwork.
The launch of Generative AI by iStock — Getty’s second gen AI tool — comes as the copyright debate over AI heats up.
Some companies developing gen AI apps argue that they’re protected by fair use doctrine, at least in the U.S.
Generative AI by iStock has a policy along those lines, too — presumably as a last resort of sort.
Any licensed visual that a Generative AI by iStock customer generates comes with $10,000 in legal coverage, Getty says.
Real estate services giant Fidelity National Financial has confirmed hackers stole data on 1.3 million of its customers during a November cyberattack that knocked the company offline for a week.
FNF spokesperson Lisa Foxworthy-Parker did not respond to TechCrunch’s email requesting further details.
FNF said it “contained” the cyberattack on November 26 following a week-long outage that virtually froze all of the company and much of its subsidiaries’ operations.
One of FNF’s subsidiaries described the incident as a “catastrophe” in an automated message for customers.
FNF was one of several corporate victims of cyberattacks in recent weeks targeting the mortgage and loan industry, including LoanDepot and Mr. Cooper.
Most notably, Walmart is launching a new generative AI search feature on iOS that will allow customers to search for products by use cases, instead of by product or brand names.
These enhanced search results will span categories, rivaling Google’s SGE (Search Generative Experience), which can recommend products and show various factors to consider, along with reviews, prices, images, and more.
At the time, Walmart teased that a generative AI-powered search feature was also in the works.
In another area, Walmart’s generative AI tool for store associates, My Assistant, will be expanded to 11 countries outside the U.S. in 2024, where it will work in employees’ native languages.
Outside of AI, Walmart is looking to other new technology for faster deliveries.
Carta’s decision to exit the secondary share trading business was a quick response to the controversy that emerged after it was chastised by customers for using private data to foster its equity transactions.
The Exchange explores startups, markets and money.
Read it every morning on TechCrunch+ or get The Exchange newsletter every Saturday.
After a customer criticized Carta for working to connect buyers and sellers of startup shares on its secondary trading platform without permissions, there have been several questions regarding data security and just what — or who — its product is.
Cloudflare’s CEO and co-founder, Matthew Prince, argued in the aftermath, for example, that the only way for Carta to “justify [its] multiple [and] valuation” was to pitch investors that it was going to build “the world’s biggest secondary market” predicated on the data it holds on behalf of its customers.
Employee performance reviews take time and effort — and aren’t always conducted very efficiently.
Seeking to make the performance review process easier — or at least less of a headache than it has been historically — Ben Hastings and Jon Malpass founded PerformYard, a platform that provides a collection of software-based retention, staff management and upskilling tools.
“PerformYard has been cash-flow positive with attractive unit economics for the majority of our existence as a business.”Prior to launching PerformYard, Hastings spent the majority of his career in tech as a go-to-market sales leader.
“In early 2013, I decided to go all-in on building a software-as-a-service platform for employee performance management and personally funded the initial team.
“Our mission is to simply enable and facilitate any performance process that our customers are looking to automate and improve,” Hastings said.
