A few folks have reported a new ransomware technique that preys upon corporate inability to keep passwords safe. The notes – which are usually aimed at instilling fear – are simple: the hacker says “I know that your password is X. Give me a bitcoin and I won’t blackmail you.” Programmer Can Duruk reported getting the email today. Woah. This is cool. A Bitcoin ransom with using what I think is passwords from a big leak. Pretty neat since people would be legit scared when they see their password. The concealed part is actually an old password I used to use. pic.twitter.com/clEYiFqvHY — can (@can) July 11, 2018 The email reads: I’m aware that X is your password. You don’t know me and you’re thinking why you received this e mail, right? Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what I mean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account. What exactly did I do?
Startup founders don’t usually pitch their ideas by admitting that they’re fixing something “boring,” but it seems to work for RevenueCat ‘s Jacob Eiting. In fact, Eiting alternately described his startup (which is part of the current class at accelerator Y Combinator) as handling “boring work” and solving a “boring problem.” RevenueCat helps developers manage their in-app subscriptions, which Eiting said “is just boring — developers don’t want to do it.” And yet it can be crucial for their business. After all, Eiting and his co-founder Miguel Carranza both worked at brain training app Elevate (where Eiting was CTO and Carranza was director of engineering), and he said shifting Elevate’s business model from one-off purchases to recurring subscriptions “saved the company.” Eiting left Elevate more than a year ago, ultimately deciding to build a startup around “this weird skill I have.” RevenueCat offers an API that developers can use to support in-app subscriptions on iOS and Android, which means they don’t have to worry about all the nuances, bugs and updates in the way each platform handles subscriptions. Eiting said this is the kind of thing that “holds a lot of companies back — maybe not forever, but it’s usually at a time when a company shouldn’t be worrying about this.” The API also allows developers to bring all the data about their subscription business together in one place, across platforms. Ultimately, he wants to turn RevenueCat into a broader “revenue management platform,” allowing developers to try out strategies like offering different prices to different customer segments. More broadly, Eiting suggested that subscriptions offer a way out of the current “race to the bottom in how software is sold” — particularly in mobile app stores, where many of us expect everything to be free or dirt cheap. Obviously, that’s not a great situation for someone hoping to make money by selling software, but Eiting pointed out that it can be bad for the consumer too, because it means the developer has less reason to support and update the app. “Someone who pays for your 99-cent app once, they think they own your time,” he said. “You want to be helpful, you don’t want to let down a paid user, but your incentives aren’t really aligned.” Subscriptions, even if they’re just for 99 cents a month, can re-align those incentives — Eiting has described this as a system of app patronage : “You want this thing to stay working, you need to pony up some money to developers.” He also acknowledged that as more apps shift to this model, there’s a risk of subscription fatigue , which could lead to “maybe not a harsh backlash, but there might be a secondary correction.” But in Eiting’s view, that’s less a problem for individual developers and more for the mobile platforms. Those platforms, he said, should be building better tools for consumers to manage all their subscriptions in one place.