Sign In
ZenBusiness: 5,118,184 records exposed — Email addresses, Names, Phone numbers — Mar 2026· 30,000 Facebook Accounts Hacked via: A newly discovered Vietnamese-linked operation has been observed using a Google AppSheet as a "phishing relay" to distribute phishing emails with an aim to compromise Facebook accounts. The activity has been codenamed Ac — May 2026· Unprecedented: Tyler Bridegan, Scott Hyman, Patrick Strubbe, and Sarah Wilk of Womble Bond Dickinson write: In a first of its kind, a California federal judge allowed claims against Bain Capital to proceed based on a data breach at its — May 2026· Story retracted: BleepingComputer initially published a story about a new data breach at Instructure. Shortly after publication, we determined that the information was incorrect and primarily based on outdated details from a prior incide — May 2026· Aman: 215,563 records exposed — Dates of birth, Email addresses, Genders, Language preferences and 6 more — Apr 2026· 15-year-old detained over French govt: French authorities have detained a 15-year-old suspected of selling data stolen in a cyberattack on France Titres (ANTS), the country's agency for issuing and managing administrative documents. [...] — May 2026· In Other News: Other noteworthy stories that might have slipped under the radar: OFAC hits Iranian central bank crypto reserves, ADT data leak, CISA guidance for zero trust in OT. The post In Other News: Scattered Spider Hacker Arreste — May 2026· Carding service Jerry’s Store leak: Jerry’s Store, a card-checking service used by cybercriminals, exposed 345,000 stolen payment cards after leaving its server open, revealing sensitive data. A cybercriminal operation known as Jerry’s Store has reportedly — May 2026· Cybercrime Groups Using Vishing and: Cybersecurity researchers are warning of two cybercrime groups that are carrying out "rapid, high-impact attacks" operating almost within the confines of SaaS environments, while leaving minimal traces of their actions. — May 2026· NYSDFS Secures $2.25 Million Cybersecurity: There is an update regarding the 2023 Delta Dental breach involving MOVEit software. Delta Dental was one of many customers whose patient data was exposed after Clop exploited a zero-day vulnerability to attack MOVEit an — May 2026· ZenBusiness: 5,118,184 records exposed — Email addresses, Names, Phone numbers — Mar 2026· 30,000 Facebook Accounts Hacked via: A newly discovered Vietnamese-linked operation has been observed using a Google AppSheet as a "phishing relay" to distribute phishing emails with an aim to compromise Facebook accounts. The activity has been codenamed Ac — May 2026· Unprecedented: Tyler Bridegan, Scott Hyman, Patrick Strubbe, and Sarah Wilk of Womble Bond Dickinson write: In a first of its kind, a California federal judge allowed claims against Bain Capital to proceed based on a data breach at its — May 2026· Story retracted: BleepingComputer initially published a story about a new data breach at Instructure. Shortly after publication, we determined that the information was incorrect and primarily based on outdated details from a prior incide — May 2026· Aman: 215,563 records exposed — Dates of birth, Email addresses, Genders, Language preferences and 6 more — Apr 2026· 15-year-old detained over French govt: French authorities have detained a 15-year-old suspected of selling data stolen in a cyberattack on France Titres (ANTS), the country's agency for issuing and managing administrative documents. [...] — May 2026· In Other News: Other noteworthy stories that might have slipped under the radar: OFAC hits Iranian central bank crypto reserves, ADT data leak, CISA guidance for zero trust in OT. The post In Other News: Scattered Spider Hacker Arreste — May 2026· Carding service Jerry’s Store leak: Jerry’s Store, a card-checking service used by cybercriminals, exposed 345,000 stolen payment cards after leaving its server open, revealing sensitive data. A cybercriminal operation known as Jerry’s Store has reportedly — May 2026· Cybercrime Groups Using Vishing and: Cybersecurity researchers are warning of two cybercrime groups that are carrying out "rapid, high-impact attacks" operating almost within the confines of SaaS environments, while leaving minimal traces of their actions. — May 2026· NYSDFS Secures $2.25 Million Cybersecurity: There is an update regarding the 2023 Delta Dental breach involving MOVEit software. Delta Dental was one of many customers whose patient data was exposed after Clop exploited a zero-day vulnerability to attack MOVEit an — May 2026·
Exposure Intelligence Platform

Continuous Visibility
Across Your Attack Surface.

Exposure Mapping · Risk Quantification · Continuous Surveillance

Every domain carries an exposure profile — credential breaches, infrastructure gaps, regulatory filings, dark web indexing. LeakTrace synthesizes 52 intelligence sources into a single, quantified risk posture before an adversary operationalizes the data.

No account required
Results in 60 seconds
1,200 indexed sources
Map My Exposure Business Intelligence
0Intelligence sources correlated
0Indexed breach databases
0Compromised records mapped
0Attack surfaces under surveillance
Live counter · FBI IC3 baseline
Cumulative reported BEC losses, 2013 to today
$55,490,000,000
Source: FBI IC3 PSA I-061124-PSA (June 2024) · IC3 2023 Internet Crime Report
Year to date $0 +$93.54/sec since Jan 1
Get your BEC Score How we cut this number →
Live Threat Intelligence
4672 Active Incidents Open Full Map
How It Works

The LeakTrace Methodology.

01
Domain Fingerprinting

Enumerate every publicly exposed asset — subdomains, open ports, SSL configuration, DNS topology, and infrastructure signatures.

02
Source Correlation

Cross-reference against 52 intelligence sources: credential repositories, breach indices, threat feeds, paste archives, and regulatory registries.

03
Risk Quantification

19 weighted signals produce a composite exposure score (0-100) with severity classification: Critical, High, Moderate, Low.

04
Intelligence Delivery

5 analyst-grade reports generated within 24 hours: Master Assessment, Infrastructure Evidence, Credential Exposure, Executive Brief, Statutory Mapping.

05
Continuous Surveillance

Automated daily rescans. Threshold-based alerting on new exposures. Longitudinal risk trend analysis.

The Intelligence Layer

Exposure Data
Is Already Indexed.

Compromised credentials, infrastructure metadata, and corporate identifiers persist across breach repositories, paste archives, and data broker networks. This information has been queryable since the moment of exfiltration.

LeakTrace correlates those same sources. The difference between visibility and exposure is whether you map the data before an adversary acts on it.

98 billion compromised records indexed. Your exposure profile is already assembled.
Credential Repositories

1,200 indexed breach databases containing billions of compromised records. Credentials are cross-referenced by domain, email pattern, and organizational association.

Data Broker Indices

Corporate identifiers, contact records, and organizational metadata aggregated across commercial data broker networks and public registry filings.

Threat Intelligence Feeds

Paste site archives, credential dump repositories, and active monitoring channels where exfiltrated data surfaces and is distributed.

Infrastructure Telemetry

DNS topology, certificate chains, open service enumeration, header analysis. Automated reconnaissance identifies the same gaps that adversary tooling maps.

Deployment Models

One Objective.

Self-Serve  ·  Automated
LeakTrace Individual

Automated exposure scan across credential repositories, data broker indices, and threat intelligence feeds. Quantified risk assessment with prioritized remediation protocol.

  • Confirmed breach database scan
  • Criminal-targeting source exposure check
  • Data broker exposure assessment
  • SIM swap vulnerability profile
  • Session hijack and cookie theft risk score
  • Prioritized remediation guidance for every finding
Run Exposure Scan
Assessment-Driven  ·  Managed
LeakTrace Business

Full external attack surface assessment. Credential exposure, infrastructure telemetry, subdomain enumeration — documented, scored, and mapped to a remediation roadmap.

  • Corporate domain and subdomain exposure assessment
  • Employee credential breach exposure
  • Infrastructure vulnerability mapping
  • Hardcoded API keys in client-side code
  • Exposed configuration files and source repositories
  • Subdomain takeover and dangling-DNS risk
  • Public cloud-storage exposure
  • Forgotten subdomains via Certificate Transparency logs
  • Outdated JavaScript libraries with known CVEs
  • Criminal-targeting source exposure indicators
  • Ransomware and BEC risk assessment
  • Full remediation roadmap and implementation
Business Intelligence
Exposure Landscape
1 in 3

Individuals With Documented Credential Exposure

The median individual appears in four or more confirmed breach events. The data is indexed, searchable, and actively referenced by adversary infrastructure.

$16.6B
Internet crime losses recorded in 2024
FBI IC3, 2024
$4.44M
Average cost of a single business breach
IBM, 2024
98B+
Credential records in circulation from documented breaches
LeakTrace indexed corpus
194
Days the average organization takes to discover they were breached
IBM, 2024

194 days. The average dwell time between initial compromise and detection. During that window, the organization operates without visibility into active adversary presence.

LeakTrace correlates the same intelligence sources used in adversary reconnaissance. Exposure is identified and quantified before it becomes operational.

Internet Crime Losses — USD FBI IC3 Data
$16.6B ▲ 33% YoY
Projected →
2019202020212022202320242025
$16.6B in 2024
Reported losses only. True cost estimated 3–5× higher. Source: FBI IC3 Annual Report.
For Organizations & Partners

Deploy Intelligence at Scale

Partner Program
White-Label Intelligence Under Your Brand

Deliver branded cybersecurity assessments to your clients. Your logo, your colors, your name. We provide the intelligence engine. You keep the margin.

Partner Program
Enterprise API
Programmatic Intelligence Access

Integrate risk scoring, entity intelligence, and exposure data directly into your underwriting, lending, or vendor risk systems via REST API.

API Documentation
Trusted Across Industries

Trusted by the Professionals Who Secure Canadian Organizations

Law Firms
Accounting Firms
Insurance Brokers
MSPs
Financial Advisors
Healthcare Clinics