‘The Operators’: Experts from Airbnb and Carta on building and managing your company’s customer support

/0 Comments/in /by
Tim Hsia & Neil Devani
Contributor

Tim Hsia is the CEO of Media Mobilize and a Venture Partner at Digital Garage. Neil Devani is an angel investor and venture capitalist focused on companies solving hard problems.
More posts by this contributor

Welcome to this transcribed edition of The Operators. TechCrunch is beginning to publish podcasts from industry experts, with transcriptions available for Extra Crunch members so you can read the conversation wherever you are.

The Operators features insiders from companies like Airbnb, Brex, Docsend, Facebook, Google, Lyft, Carta, Slack, Uber, and WeWork sharing their stories and tips on how to break into fields like marketing and product management. They also share best practices for entrepreneurs on how to hire and manage experts from domains outside their own.

This week’s edition features Airbnb’s Global Product Director of Customer and Community Support Platform Products, Andy Yasutake, and Carta’s Head of Enterprise Relationship Management, Jared Thomas.

Airbnb, one of the most valuable private tech companies in the world, has millions of hosts who trust strangers (guests) to come into their homes and hundreds of millions of guests who trust strangers (hosts) to provide a roof over their head. Carta, a $1 Billion+ company formerly known as eShares, is the leading provider of cap table management and valuation software, with thousands of customers and almost a million individual shareholders as users. Customers and users entrust Carta to manage their investments, a very serious responsibility requiring trust and security.

In this episode, Andy and Jared share with Neil how companies like Airbnb, Carta, and LinkedIn think about customer service, how to get into and succeed in the field and tech generally, and how founders should think about hiring and managing the customer support. With their experiences at two of tech’s trusted companies, Airbnb and Carta, this episode is packed with broad perspectives and deep insights.

image1 2

Neil Devani and Tim Hsia created The Operators after seeing and hearing too many heady, philosophical podcasts about the future of tech, and not enough attention on the practical day-to-day work that makes it all happen.

Tim is the CEO & Founder of Media Mobilize, a media company and ad network, and a Venture Partner at Digital Garage. Tim is an early-stage investor in Workflow (acquired by Apple), Lime, FabFitFun, Oh My Green, Morning Brew, Girls Night In, The Hustle, Bright Cellars, and others.

Neil is an early-stage investor based in San Francisco with a focus on companies building stuff people need, solutions to very hard problems. Companies he’s invested in include Andela, Clearbit, Kudi, Recursion Pharmaceuticals, Solugen, and Vicarious Surgical.

If you’re interested in starting or accelerating your marketing career, or how to hire and manage this function, you can’t miss this episode!

The show:

The Operators brings experts with experience at companies like Airbnb, Brex, Docsend, Facebook, Google, Lyft, Carta, Slack, Uber, WeWork, etc. to share insider tips on how to break into fields like marketing and product management. They also share best practices for entrepreneurs on how to hire and manage experts from domains outside their own.

In this episode:

In Episode 5, we’re talking about customer service. Neil interviews Andy Yasutake, Airbnb’s Global Product Director of Customer and Community Support Platform Products, and Jared Thomas, Carta’s Head of Enterprise Relationship Management.

Neil Devani: Hello and welcome to the Operators, where we talk to entrepreneurs and executives from leading technology companies like Google, Facebook, Airbnb, and Carta about how to break into a new field, how to build a successful career, and how to hire and manage talent beyond your own expertise. We skip over the lofty prognostications from venture capitalists and storytime with founders to dig into the nuts and bolts of how it all works here from the people doing the real day to day work, the people who make it all happen, the people who know what it really takes. The Operators.

Today we are talking to two experts in customer service, one with hundreds of millions of individual paying customers and the other being the industry standard for managing equity investments. I’m your host, Neil Devani, and we’re coming to you today from Digital Garage in downtown San Francisco.

Joining me is Jared Thomas, head of Enterprise Relationship Management at Carta, a $1 billion-plus company after a recent round of financing led by Andreessen Horowitz. Carta, formerly known as eShares, is the leading provider of cap table management and valuation software with thousands of customers and almost a million individual shareholders as users. Customers and users trust Carta to manage their investments, a very serious responsibility requiring trust and security.

Also joining us is Andy Yasutake, the Global Product Director of Customer and Community Support Platform Products at Airbnb, one of the most valuable private tech startups today. Airbnb has millions of hosts who are trusting strangers to come into their homes and hundreds of millions of guests who are trusting someone to provide a roof over their head. The number of cases and types of cases that Andy and his team have to think about and manage boggle the mind. Jared and Andy, thank you for joining us.

Andy Yasutake: Thank you for having us.

Jared Thomas: Thank you so much.

Devani: To start, Andy, can you share your background and how you got to where you are today?

Yasutake: Sure. I’m originally from southern California. I was born and raised in LA. I went to USC for undergrad, University of Southern California, and I actually studied psychology and information systems.

Late-90s, the dot com was going on, I’d always been kind of interested in tech, went into management consulting at interstate consulting that became Accenture, and was in consulting for over 10 years and always worked on large systems of implementation of technology projects around customers. So customer service, sales transformation, anything around CRM, as kind of a foundation, but it was always very technical, but really loved the psychology part of it, the people side.

And so I was always on multiple consulting projects and one of the consulting projects with actually here in the Bay Area. I eventually moved up here 10 years ago and joined eBay, and at eBay I was the director of product for the customer services organization as well. And was there for five years.

I left for Linkedin, so another rocket ship that was growing and was the senior director of technology solutions and operations where I had all the kind of business enabling functions as well as the technology, and now have been at Airbnb for about four months. So I’m back to kind of my, my biggest passion around products and in the customer support and community experience and customer service world.

Rookout lands $8M Series A to expand debugging platform

/0 Comments/in /by

Rookout, a startup that provides debugging across a variety of environments, including serverless and containers, announced an $8 million Series A investment today. It plans to use the money to expand beyond its debugging roots.

The round was led by Cisco Investments along with existing investors TLV Partners and Emerge. Nat Friedman, CEO of GitHub; John Kodumal, CTO and co-founder of LaunchDarkly; and Raymond Colletti, VP of revenue at Codecov also participated.

Rookout from day one has been working to provide production debugging and collection capabilities to all platforms,” Or Weis, co-founder and CEO of Rookout told TechCrunch. That has included serverless like AWS Lambda, containers and Kubernetes and Platform-as-a-Service like Google App Engine and Elastic Beanstalk.

The company is also giving visibility into platforms that are sometimes hard to observe because of the ephemeral nature of the technology, and that go beyond its pure debugging capabilities. “In the last year, we’ve discovered that our customers are finding completely new ways to use Rookout’s code-level data collection capabilities and that we need to accommodate, support and enhance the many varied uses of code-level observability and pipelining,” Weiss said in a statement.

It was particularly telling that a company like Cisco was deeply involved in the round. Rob Salvagno, vice president of Cisco Global Corporate Development and Cisco Investments, likes the developer focus of the company.

“Developers have become key influencers of enterprise IT spend. By collecting data on-demand without re-deploying, Rookout created a Developer-centric software, which short-circuits complexities in the production debugging, increases Developer efficiency and reduces the friction which exists between IT Ops and Developers,” Salvagno said in a statement.

Rookout, which launched in 2017, has offices in San Francisco and Tel Aviv, with a total of 20 employees. It has raised more than $12 million.

Rookout releases serverless debugging tool for AWS Lambda

Only 48 hours left for early-bird tickets to TC Sessions: Enterprise 2019

/0 Comments/in /by

If enterprise software makes your entrepreneurial heart beat faster, you do not want to miss TC Sessions: Enterprise 2019 on September 5 in San Francisco. And if you really want to make your heart sing, buy an early-bird ticket and save $100. But act quickly, because that deal disappears in just 48 hours on August 9 at 11:59 p.m. (PT).

Join more than 1,000 enterprise software experts and aficionados — leaders, rising founders and VCs — to discuss, explore and gain insight into the current and future state of enterprise companies, trends and technology.

This day-long conference features more than 20 sessions on the Main stage including interviews, panel discussions, plus separate speaker Q&As and breakout sessions. You’ll hear from industry giants like these (to name just a few):

  • George Brady, CTO at Capital One
  • Jim Clarke, Intel’s director of Quantum Hardware
  • Scott Farquhar, co-founder and co-CEO at Atlassian
  • Aaron Levie, Box co-founder and CEO
  • Aparna Sinha, Google’s director of product management for Kubernetes and Anthos

Our presentations cover a wide range of crucial topics — like this one featuring Martin Casado (Andreessen Horowitz) and Wendy Nather (Duo Security):

Keeping the Enterprise Secure: Enterprises face a litany of threats from both the inside and outside the firewall. Now more than ever, companies — especially startups — have to put security first. From preventing data from leaking to keeping bad actors out of your network, enterprises have it tough. How can you secure the enterprise without slowing growth? We’ll discuss the role of a modern CSO and how to move fast… without breaking things.

You’ll find the lineup of events in the agenda, and we might even add a few surprises between now and September.

No TechCrunch Session would be complete without world-class networking, and you’ll have plenty of opportunities to build new connections. Even better, you’ll have CrunchMatch at your disposal. Our free business match-making platform helps you cut through the noise, zero in on the right people and produce better results.

You can’t clone yourself (yet), but you can bring your team and cover more ground. Take advantage of our group discount and save 20% when you purchase four or more tickets at once.

One more ROI checkpoint. For every ticket you buy to this Session, we’ll register you for a free Expo-only pass to TechCrunch Disrupt SF 2019.

TC Sessions: Enterprise takes place in less than one month, but the early-bird price evaporates in just 48 hours. Buy your early-bird ticket before the deadline — August 9 at 11:59 p.m. (PT). Save $100 and make your heart sing.

Is your company interested in sponsoring or exhibiting at TC Sessions: Enterprise? Contact our sponsorship sales team by filling out this form.

Ment.io wants to help your team make decisions

/0 Comments/in /by

Getting even the most well-organized team to agree on anything can be hard. Tel Aviv’s Ment.io, formerly known as Epistema, wants to make this process easier by applying smart design and a dose of machine learning to streamline the decision-making process.

Like with so many Israeli startups, Ment.io’s co-founders Joab Rosenberg and Tzvika Katzenelson got their start in Israel’s intelligence service. Indeed, Rosenberg spent 25 years in the intelligence service, where his final role was that of the deputy head analyst. “Our story starts from there, because we had the responsibility of gathering the knowledge of a thousand analysts, surrounded by tens of thousands of collection unit soldiers,” Katzenelson, who is Ment.io’s CRO, told me. He noted that the army had turned decision making into a form of art. But when the founders started looking at the tech industry, they found a very different approach to decision making — and one that they thought needed to change.

If there’s one thing the software industry has, it’s data and analytics. These days, the obvious thing to do with all of that information is to build machine learning models, but Katzenelson (rightly) argues that these models are essentially black boxes. “Data does not speak for itself. Correlations that you may find in the data are certainly not causations,” he said. “Every time you send analysts into the data, they will come up with some patterns that may mislead you.”

home 1

So Ment.io is trying to take a very different approach. It uses data and machine learning, but it starts with questions and people. The service actually measures the level of expertise and credibility every team member has around a given topic. “One of the crazy things we’re doing is that for every person, we’re creating their cognitive matrix. We’re able to tell you within the context of your organization how believable you are, how balanced you are, how clearly you are being perceived by your counterparts, because we are gathering all of your clarification requests and every time a person challenges you with something.”Ment1

At its core, Ment.io is basically an internal Q&A service. Anybody can pose questions and anybody can answer them with any data source or supporting argument they may have.

“We’re doing structuring,” Katzenelson explained. “And that’s basically our philosophy: knowledge is just arguments and counterarguments. And the more structure you can put in place, the more logic you can apply.”

In a sense, the company is doing this because natural language processing (NLP) technology isn’t yet able to understand the nuances of a discussion.Ment6If you’re anything like me, though, the last thing you want is to have to use yet another SaaS product at work. The Ment.io team is quite aware of that and has built a deep integration with Slack already and is about to launch support for Microsoft Teams in the next few days, which doesn’t come as a surprise, given that the team has participated in the Microsoft ScaleUp accelerator program.

The overall idea here, Katzenelson explained, is to provide a kind of intelligence layer on top of tools like Slack and Teams that can capture a lot of the institutional knowledge that is now often shared in relatively ephemeral chats.

Ment.io is the first Israeli company to raise funding from Peter Thiel’s late-stage fund, as well as from the Slack Fund, which surely creates some interesting friction, given the company’s involvement with both Slack and Microsoft, but Katzenelson argues that this is not actually a problem.

Microsoft is also a current Ment.io customer, together with the likes of Intel, Citibank and Fiverr.

Ment2

With MapR fire sale, Hadoop’s promise has fallen on hard times

/0 Comments/in /by

If you go back about a decade, Hadoop was hot and getting hotter. It was a platform for processing big data, just as big data was emerging from the domain of a few web-scale companies to one where every company was suddenly concerned about processing huge amounts of data. The future was bright, an open source project with a bunch of startups emerging to fulfill that big data promise in the enterprise.

Three companies in particular emerged out of that early scrum — Cloudera, Hortonworks and MapR — and between them raised more than $1.5 billion. The lion’s share of that went to Cloudera in one massive chunk when Intel Capital invested a whopping $740 million in the company. But times have changed.

2018 china ipos

Via TechCrunch, Crunchbase, Infogram

Falling hard

Just yesterday, HPE bought the assets of MapR, a company that had raised $280 million. The deal was pegged at under $50 million, according to multiple reports. That’s not what you call a healthy return on investment.

Salesforce is acquiring ClickSoftware for $1.35B

/0 Comments/in /by

Another day, another Salesforce acquisition. Just days after closing the hefty $15.7 billion Tableau deal, the company opened its wallet again, this time announcing it has bought field service software company ClickSoftware for a tidy $1.35 billion.

This one could help beef up the company’s field service offering, which falls under the Service Cloud umbrella. In its June earnings report, the company reported that Service Cloud crossed the $1 billion revenue threshold for the first time. This acquisition is designed to keep those numbers growing.

Salesforce wants to deliver more automated field service using IoT data

“Our acquisition of ClickSoftware will not only accelerate the growth of Service Cloud, but drive further innovation with Field Service Lightning to better meet the needs of our customers,” Bill Patterson, EVP and GM of Salesforce Service Cloud said in a statement announcing the deal.

ClickSoftware is actually older than Salesforce having been founded in 1997. The company went public in 2000, and remained listed until it went private again in 2015 in a deal with private equity company Francisco Partners, which bought it for $438 million. Francisco did alright for itself, holding on to the company for four years before more than doubling its money.

The deal is expected to close in the fall and is subject to the normal regulatory approval process.

Salesforce closes $15.7B Tableau deal

Learn how enterprise startups win big deals at TechCrunch’s Enterprise show on Sept. 5

/0 Comments/in /by

Big companies today may want to look and feel like startups, but when it comes to the way they approach buying new enterprise solutions, especially from new entrants, they still often act like traditional enterprise behemoths. But from the standpoint of a true startup, closing deals with just a few big customers is critical to success. At our much-anticipated inaugural TechCrunch Sessions: Enterprise event in San Francisco on September 5, Okta’s Monty Gray, SAP’s DJ Paoni, VMware’s Sanjay Poonen and Sapphire Venture’s Shruti Tournatory will discuss ways for startups to adapt their strategies to gain more enterprise customers (p.s. early-bird tickets end in 48 hours — book yours here).

This session is sponsored by SAP, the lead sponsor for the event.

Monty Gray is Okta’s senior vice president and head of Corporate Development. In this role, he is responsible for driving the company’s growth initiatives, including mergers and acquisitions. That role gives him a unique vantage point of the enterprise startup ecosystem, all from the perspective of an organization that went through the process of learning how to sell to enterprises itself. Prior to joining Okta, Gray served as the senior vice president of Corporate Development at SAP.

Sanjay Poonen joined VMware in August 2013, and is responsible for worldwide sales, services, alliances, marketing and communications. Prior to SAP, Poonen held executive roles at Symantec, VERITAS and Informatica, and he began his career as a software engineer at Microsoft, followed by Apple.

SAP’s DJ Paoni has been working in the enterprise technology industry for over two decades. As president of SAP North America, Paoni is responsible for the strategy, day-to-day operations and overall customer success in the United States and Canada.

These three industry executives will be joined onstage by Sapphire Venture’s Shruti Tournatory, who will provide the venture capitalist’s perspective. She joined Sapphire Ventures in 2014 and leads the firm’s CXO platform, a network of Fortune CIOs, CTOs and digital executives. She got her start in the industry as an analyst for IDC, before joining SAP and leading product for its business travel solution.

Grab your early-bird tickets today before we sell out. Early-bird sales end after this Friday, so book yours now and save $100 on tickets before prices increase. If you’re an early-stage enterprise startup you can grab a startup demo table for just $2K here. Each table comes with four tickets and a great location for you to showcase your company to investors and new customers.

Google and Twitter are using AMD’s new EPYC Rome processors in their datacenters

/0 Comments/in /by

AMD announced that Google and Twitter are among the companies now using EPYC Rome processors during a launch event for the 7nm chips today. The release of EPYC Rome marks a major step in AMD’s processor war with Intel, which said last month that its own 7nm chips, Ice Lake, won’t be available until 2021 (though it is expected to release its 10nm node this year).

Intel is still the biggest datacenter processor maker by far, however, and also counts Google and Twitter among its customers. But AMD’s latest releases and its strategy of undercutting competitors with lower pricing have quickly transformed it into a formidable rival.

Google has used other AMD chips before, including in its “Millionth Server,” built in 2008, and says it is now the first company to use second-generation EPYC chips in its datacenters. Later this year, Google will also make virtual machines that run on the chips available to Google Cloud customers.

In a press statement, Bart Sano, Google vice president of engineering, said “AMD 2nd Gen Epyc processors will help us continue to do what we do best in our datacenters: innovate. Its scalable compute, memory and I/O performance will expand out ability to drive innovation forward in our infrastructure and will give Google Cloud customers the flexibility to choose the best VM for their workloads.”

Twitter plans to begin using EPYC Rome in its datacenter infrastructure later this year. Its senior director of engineering, Jennifer Fraser, said the chips will reduce the energy consumption of its datacenters. “Using the AMD EPYC 7702 processor, we can scale out our compute clusters with more cores in less space using less power, which translates to 25% lower [total cost of ownership] for Twitter.”

In a comparison test between 2-socket Intel Xeon 6242 and AMD EPYC 7702P processors, AMD claimed that its chips were able to reduce total cost of ownership by up to 50% across “numerous workloads.” AMD EPYC Rome’s flagship is the 64-core, 128-thread 7742 chip, with a 2.25 base frequency, 225 default TDP and 256MB of total cache, starts at $6,950.

Who Owns Your Wireless Service? Crooks Do.

/0 Comments/in /by

Incessantly annoying and fraudulent robocalls. Corrupt wireless company employees taking hundreds of thousands of dollars in bribes to unlock and hijack mobile phone service. Wireless providers selling real-time customer location data, despite repeated promises to the contrary. A noticeable uptick in SIM-swapping attacks that lead to multi-million dollar cyberheists.

If you are somehow under the impression that you — the customer — are in control over the security, privacy and integrity of your mobile phone service, think again. And you’d be forgiven if you assumed the major wireless carriers or federal regulators had their hands firmly on the wheel.

No, a series of recent court cases and unfortunate developments highlight the sad reality that the wireless industry today has all but ceded control over this vital national resource to cybercriminals, scammers, corrupt employees and plain old corporate greed.

On Tuesday, Google announced that an unceasing deluge of automated robocalls had doomed a feature of its Google Voice service that sends transcripts of voicemails via text message.

Google said “certain carriers” are blocking the delivery of these messages because all too often the transcripts resulted from unsolicited robocalls, and that as a result the feature would be discontinued by Aug. 9. This is especially rich given that one big reason people use Google Voice in the first place is to screen unwanted communications from robocalls, mainly because the major wireless carriers have shown themselves incapable or else unwilling to do much to stem the tide of robocalls targeting their customers.

AT&T in particular has had a rough month. In July, the Electronic Frontier Foundation (EFF) filed a class action lawsuit on behalf of AT&T customers in California to stop the telecom giant and two data location aggregators from allowing numerous entities — including bounty hunters, car dealerships, landlords and stalkers — to access wireless customers’ real-time locations without authorization.

And on Monday, the U.S. Justice Department revealed that a Pakistani man was arrested and extradited to the United States to face charges of bribing numerous AT&T call-center employees to install malicious software and unauthorized hardware as part of a scheme to fraudulently unlock cell phones.

Ars Technica reports the scam resulted in millions of phones being removed from AT&T service and/or payment plans, and that the accused allegedly paid insiders hundreds of thousands of dollars to assist in the process.

We should all probably be thankful that the defendant in this case wasn’t using his considerable access to aid criminals who specialize in conducting unauthorized SIM swaps, an extraordinarily invasive form of fraud in which scammers bribe or trick employees at mobile phone stores into seizing control of the target’s phone number and diverting all texts and phone calls to the attacker’s mobile device.

Late last month, a federal judge in New York rejected a request by AT&T to dismiss a $224 million lawsuit over a SIM-swapping incident that led to $24 million in stolen cryptocurrency.

The defendant in that case, 21-year-old Manhattan resident Nicholas Truglia, is alleged to have stolen more than $80 million from victims of SIM swapping, but he is only one of many individuals involved in this incredibly easy, increasingly common and lucrative scheme. The plaintiff in that case alleges that he was SIM-swapped on two different occasions, both allegedly involving crooked or else clueless employees at AT&T wireless stores.

And let’s not forget about all the times various hackers figured out ways to remotely use a carrier’s own internal systems for looking up personal and account information on wireless subscribers.

So what the fresh hell is going on here? And is there any hope that lawmakers or regulators will do anything about these persistent problems? Gigi Sohn, a distinguished fellow at the Georgetown Institute for Technology Law and Policy, said the answer — at least in this administration — is probably a big “no.”

“The takeaway here is the complete and total abdication of any oversight of the mobile wireless industry,” Sohn told KrebsOnSecurity. “Our enforcement agencies aren’t doing anything on these topics right now, and we have a complete and total breakdown of oversight of these incredibly powerful and important companies.”

Aaron Mackey, a staff attorney at the EFF, said that on the location data-sharing issue, federal law already bars the wireless carriers from sharing this with third parties without the expressed consent of consumers.

“What we’ve seen is the Federal Communications Commission (FCC) is well aware of this ongoing behavior about location data sales,” Mackey said. “The FCC has said it’s under investigation, but there has been no public action taken yet and this has been going on for more than a year. The major wireless carriers are not only violating federal law, but they’re also putting people in harm’s way. There are countless stories of folks being able to pretend to be law enforcement and gaining access to information they can use to assault and harass people based on the carriers making location data available to a host of third parties.”

On the issue of illegal SIM swaps, Wired recently ran a column pointing to a solution that many carriers in Africa have implemented which makes it much more difficult for SIM swap thieves to ply their craft.

“The carrier would set up a system to let the bank query phone records for any recent SIM swaps associated with a bank account before they carried out a money transfer,” wrote Wired’s Andy Greenberg in April. “If a SIM swap had occurred in, say, the last two or three days, the transfer would be blocked. Because SIM swap victims can typically see within minutes that their phone has been disabled, that window of time let them report the crime before fraudsters could take advantage.”

So far, there is zero indication that the U.S.-based mobile carriers are paying any attention.

In terms of combating the deluge of robocalls, Sohn says we already have a workable approach to arresting these nuisance calls: It’s an authentication procedure known as “SHAKEN/STIR,” and it is premised on the idea that every phone has a certificate of authenticity attached to it that can be used to validate if the call is indeed originating from the number it appears to be calling from.

Under a SHAKEN/STIR regime, anyone who is spoofing their number (and most of these robocalls are spoofed to appear as though they come from a number that is in the same prefix as yours) gets automatically blocked.

Unfortunately, Sohn said, the FCC has allowed the wireless carriers to adopt this approach voluntarily. And — shocker — most of them haven’t, or else they are charging a premium for it.

“The FCC could make the carriers provide robocall apps for free to customers, but they’re not,” Sohn said. “The carriers instead are turning around and charging customers extra for this service. There was a fairly strong anti-robocalls bill that passed the House, but it’s now stuck in the legislative graveyard that is the Senate.”

What about the prospects of any kind of major overhaul to the privacy laws in this country that might give consumers more say over who can access their private data and what recourse they may have when companies entrusted with that information screw up?

Sohn said there are few signs that anyone in Congress is seriously championing consumer privacy as a major legislative issue. Most of the nascent efforts to bring privacy laws in the United States into the 21st Century she said are interminably bogged down on two sticky issues: Federal preemption of stronger state laws, and the ability of consumers to bring a private right of civil action in the courts against companies that violate those provisions.

“It’s way past time we had a federal privacy bill,” Sohn said. “Companies like Facebook and others are practically begging for some type of regulatory framework on consumer privacy, yet this congress can’t manage to put something together. To me it’s incredible we don’t even have a discussion draft yet. There’s not even a bill that’s being discussed and debated. That is really pitiful, and the closer we get to elections, the less likely it becomes because nobody wants to do anything that upsets their corporate contributions. And, frankly, that’s shameful.”

Cybereason raises $200 million for its enterprise security platform

/0 Comments/in /by

Cybereason, which uses machine learning to increase the number of endpoints a single analyst can manage across a network of distributed resources, has raised $200 million in new financing from SoftBank Group and its affiliates. 

It’s a sign of the belief that SoftBank has in the technology, since the Japanese investment firm is basically doubling down on commitments it made to the Boston-based company four years ago.

Israeli Cybersecurity Firm Cybereason Raises $59M Series C Led By SoftBank

The company first came to our attention five years ago when it raised a $25 million financing from investors, including CRV, Spark Capital and Lockheed Martin.

Cybereason’s technology processes and analyzes data in real time across an organization’s daily operations and relationships. It looks for anomalies in behavior across nodes on networks and uses those anomalies to flag suspicious activity.

The company also provides reporting tools to inform customers of the root cause, the timeline, the person involved in the breach or breaches, which tools they use and what information was being disseminated within and outside of the organization.

For co-founder Lior Div, Cybereason’s work is the continuation of the six years of training and service he spent working with the Israeli army’s 8200 Unit, the military incubator for half of the security startups pitching their wares today. After his time in the military, Div worked for the Israeli government as a private contractor reverse-engineering hacking operations.

Over the last two years, Cybereason has expanded the scope of its service to a network that spans 6 million endpoints tracked by 500 employees, with offices in Boston, Tel Aviv, Tokyo and London.

“Cybereason’s big data analytics approach to mitigating cyber risk has fueled explosive expansion at the leading edge of the EDR domain, disrupting the EPP market. We are leading the wave, becoming the world’s most reliable and effective endpoint prevention and detection solution because of our technology, our people and our partners,” said Div, in a statement. “We help all security teams prevent more attacks, sooner, in ways that enable understanding and taking decisive action faster.”

The company said it will use the new funding to accelerate its sales and marketing efforts across all geographies and push further ahead with research and development to make more of its security operations autonomous.

“Today, there is a shortage of more than three million level 1-3 analysts,” said Yonatan Striem-Amit, chief technology officer and co-founder, Cybereason, in a statement. “The new autonomous SOC enables SOC teams of the future to harness technology where manual work is being relied on today and it will elevate  L1 analysts to spend time on higher value tasks and accelerate the advanced analysis L3 analysts do.”

Most recently the company was behind the discovery of Operation SoftCell, the largest nation-state cyber espionage attack on telecommunications companies. 

Hackers are stealing years of call records from hacked cell networks

That attack, which was either conducted by Chinese-backed actors or made to look like it was conducted by Chinese-backed actors, according to Cybereason, targeted a select group of users in an effort to acquire cell phone records.

As we wrote at the time:

… hackers have systematically broken in to more than 10 cell networks around the world to date over the past seven years to obtain massive amounts of call records — including times and dates of calls, and their cell-based locations — on at least 20 individuals.

Researchers at Boston-based Cybereason, who discovered the operation and shared their findings with TechCrunch, said the hackers could track the physical location of any customer of the hacked telcos — including spies and politicians — using the call records.

Lior Div, Cybereason’s co-founder and chief executive, told TechCrunch it’s “massive-scale” espionage.

Call detail records — or CDRs — are the crown jewels of any intelligence agency’s collection efforts. These call records are highly detailed metadata logs generated by a phone provider to connect calls and messages from one person to another. Although they don’t include the recordings of calls or the contents of messages, they can offer detailed insight into a person’s life. The National Security Agency  has for years controversially collected the call records of Americans from cell providers like AT&T and Verizon (which owns TechCrunch), despite the questionable legality.

It’s not the first time that Cybereason has uncovered major security threats.

Back when it had just raised capital from CRV and Spark, Cybereason’s chief executive was touting its work with a defense contractor who’d been hacked. Again, the suspected culprit was the Chinese government.

As we reported, during one of the early product demos for a private defense contractor, Cybereason identified a full-blown attack by the Chinese — 10,000 thousand usernames and passwords were leaked, and the attackers had access to nearly half of the organization on a daily basis.

The security breach was too sensitive to be shared with the press, but Div says that the FBI was involved and that the company had no indication that they were being hacked until Cybereason detected it.