Skip to content
  • +1 601-907-4240
  • [email protected]
Logo
  • Services
  • Blog
  • Contact
  • About Us

Discoveries

What is our experience? Here are just a few of our data discoveries that have made headlines.

The security research center was founded by Bob Diachenko, Director of Cyber Risk Research and Jeremiah Fowler, data analyst and security consultant. In 2014 they created cyber security research projects that discovered the personal data of millions of people worldwide. Here are just a few of those stories.

In previous companies and independently we have made major discoveries that have helped make the internet a safer place. Here are just a few of the news headlines from some of our discoveries.

Security Discovery in the news:

Front Page of Huffington Post on 01/25/19

Our biggest discovery to date was found in Jan 2019 and contained millions of sensitive files including home loan applications, credit reports, bankruptcy records, and more. It was covered by hundreds of media outlets and was reported as one of the biggest discoveries since the Equifax 2017 data breach exposed the sensitive personal information of 143 million people.

 

 

 

 

TechCrunch Headline

TechCrunch is a leading technology media property, dedicated to obsessively profiling startups, reviewing new Internet products, and breaking tech news. It is safe to say that they are the leading authority on tech and startup culture. Our discovery was the top story of the day and would not have been possible with out the help of Zack Whittaker the security editor at TechCrunch.

 

 

 

 

NPR: 600,000 Alaska Voters Exposed Online

The database had more detail than what would have already be publicly available through the Alaska Division of Elections.

As California Bans The Traditional Password, What Else Can Fintechs …

Forbes–Oct 7, 2018
A study by security firm Norton found that hackers stole a colossal $172 … while security firm Kromtech publicly reported in February that it had …

John McAfee-Backed Cryptocurrency’s Thousands of Investors …

Gizmodo–Apr 25, 2018
… investors in Bezop cryptocurrency, including photocopies their driver’s licenses and passports, according to a report from Kromtech Security.

Jewelry site accidentally leaks personal details (and plaintext …

TNW–Mar 14, 2018
Researchers from German security firm Kromtech Security allege that until recently, MBM Company was improperly handling customer details.

Automated money-laundering scheme found in free-to-play games

Naked Security–Jul 19, 2018
On Monday, Kromtech’s Security Center explained that crooks are reaping profits from games that are free to play by reselling resources – for …
‘Clash of Clans,’ Other Mobile Games Being Used for Money …
Highly Cited–Variety–Jul 19, 2018

View all

Thousands of US voters’ data exposed by robocall firm

ZDNet–Jul 18, 2018
Kromtech Security’s Bob Diachenko, who discovered the exposed data and blogged his findings, shared prior to publication several …

Weight Watchers Swears No Customer Data Exposed After Dozens of …

Gizmodo–Jun 11, 2018
Kromtech did not attempt to access any of the data for legal reasons, and … disclose concerns to improve the state of security on the Internet.”.

Passwords to Over a Half Million Car Tracking Devices Leaked Online

Gizmodo–Sep 21, 2017
The Kromtech Security Center recently found over half a million records belonging to SVR Tracking, a company that specializes in “vehicle …
Account data for more than half a million car tracking devices was …

Veeam leaves MongoDB database wide open, exposes 445m records

Naked Security–Sep 13, 2018
Former Kromtech security researcher Bob Diachenko said in a blog post on Tuesday that he came across the Amazon Web Services- (AWS-) …

Walmart Jewelry Partner Exposes Personal Data Of 1.3M Customers

Threatpost–Mar 15, 2018
6 by Kromtech Security, contained personal information, including names, addresses, zip codes, phone numbers, e-mail addresses, …

Ashley Madison Is Fucking It Up Again

Gizmodo–Dec 6, 2017
The Kromtech Security team worked with independent security researcher Matt Svensson to investigate security flaws on the Ashley Madison …

FedEx exposes confidential customer data via misconfigured AWS …

SiliconANGLE News (blog)–Feb 15, 2018
The exposed data, discovered by Kromtech Security Center, included 119,000 scanned documents from U.S. and international citizens …

Stolen California Voter Database Held for Bitcoin Ransom [Updated]

Gizmodo–Dec 15, 2017
… researchers at the Kromtech Security Center. The database was later stolen by cybercriminals demanding a ransom only payable in bitcoin.

Data Breach Exposed Medical Records, Including Blood Test Results …

Gizmodo–Oct 10, 2017
The records, discovered by researchers at the Kromtech Security Center, had been stored on an unsecured Amazon S3 bucket. According to …

Millions of Time Warner Cable Customer Records Exposed in Third …

Gizmodo–Sep 1, 2017
The files, more than 600GB in size, were discovered on August 24 by the Kromtech Security Center while its researchers were investigating an ..

Over 560 Million Passwords Discovered in Anonymous Online Database

Gizmodo–May 16, 2017
The dataset, which remains insecure, was first discovered this month by the Kromtech Security Center. It was further verified by Troy Hunt, …

Over 47GB of medical records, blood test results of 150000 patients …

International Business Times UK–Oct 11, 2017
Kromtech Security Researchers said the exposed documents were associated with healthcare firm Patient Home Monitoring (PHM), which …

About Us

Security Discovery has identified thousands of incidents that involve exposed data and vulnerabilities. Many of these were overlooked or missed by some of the biggest security vendors in the industry. This gives us a unique perspective that we share with the security community, tech enthusiasts, and everyday people who care about data and privacy.

Our security research mission is data protection, education, and raising awareness. We publish our findings to highlight the importance of cyber security and cyber hygiene best practices.

News and Discoveries

  • Mortgage Lender Exposed 700k Records Online
  • Prometheus Metrics Collection With Fly.io and Laravel
  • Credit Card Processing Company Exposed 9 Million Records Online
  • Vevor Online Retailer Leaked 1.1 Billion Records Online Including Customer Data
  • Private Information of Thousands of Children Exposed in Medical Software Data Breach
  • Custom hostnames with Cloudflare, Fly.io, and Laravel
  • Anonymous Rewrites The Rules of Cyber warfare in their attacks on Russia.
  • FOX Broadcasting Data Exposed
  • Services
  • Blog
  • Contact
  • Found a vulnerabiltiy? Contact [email protected]

Copyright ©2023 Security Discovery. All rights reserved.