UpGuard Exclusives for News & Incidents

In addition to curating cybersecurity news from trusted sources, UpGuard now also publishes exclusive incidents—original discoveries made by our own research team.

These exclusives appear in the News & Incidents feed within the platform, alongside public data breaches, regulatory actions, dark web chatter, and newly disclosed vulnerabilities. However, what sets exclusives apart is that they’re identified independently by our research team, often before being reported by other sources or acknowledged by the impacted organization.

Our research team continually scans the internet for exposed data, misconfigured systems, and other signs of compromise. When a potential breach is discovered, we work to assess its scope, verify its authenticity, and attribute it to the responsible entity. Attribution can be challenging—leaked datasets often contain limited information such as internal system references, email addresses, or branding. In other cases, the exposure is tied to infrastructure like an open S3 bucket, unsecured database, or content delivery endpoint. Linking these back to a specific organization requires specialized investigation techniques, and even then, clear ownership isn’t always immediately evident. Despite these challenges, we make every effort to determine the most likely source and impacted entities and then individually notify all the impacted stakeholders.

Where possible, we also alert the relevant authorities or regulators to ensure the issue is addressed responsibly. Our goal is not only to inform our customers, but to help mitigate the risks associated with exposed data and reduce harm to affected individuals or businesses.

Exclusive incidents aim to give you early awareness of emerging risks in your supply chain, especially when public disclosures may be delayed or nonexistent. These insights are part of our broader mission to help secure the internet and protect your organization from supply chain risks.