Tu banner alternativo

Draft:UpGuard

In this article, we are going to explore the topic of Draft:UpGuard and analyze its impact on different aspects of society. Draft:UpGuard is a topic that has generated great interest in recent times, and its relevance transcends borders and cultures. Throughout history, Draft:UpGuard has played a fundamental role in the evolution of society, and its influence remains significant today. Through detailed analysis, we will examine the various facets of Draft:UpGuard and its importance in areas such as politics, economics, culture, and everyday life. Additionally, we will explore the possible future implications of Draft:UpGuard and how it may impact the way we live and interact in the modern world.

Tu banner alternativo
  • Comment: Why are there zero links to other wikipedia pages in the body text? Did an LLM write this? pythoncoder (talk | contribs) 14:16, 5 September 2025 (UTC)


UpGuard, Inc
Company typePrivate
Industry
Founder
  • Mike Buakes
  • Alan Sharpe-Paul
Headquarters
Mountain View, California
,
United States
Websiteupguard.com

UpGuard, Inc. is a cybersecurity firm founded in Sydney in 2012 and headquartered in Mountain View, California. The company was nominated for the 2016 Cybersecurity Excellence Awards for its Threat Assessment Report.[1] UpGuard was included in the 2021 list of 100 Technology Pioneers by the World Economic Forum.[2] The company is known for uncovering notable data breaches.

History

UpGuard grew out of Scriptrock, a startup funded by the 2012 Startmate Accelerator programme in the Australian Technology Park in Redfern, Sydney. Later that year, UpGuard was founded in Silicon Valley when US$1.25 million in seed capital was obtained from Valar Ventures.[3]

In 2014, US$ 8.7 million was obtained in a Series A venture funding round led by August Capital. In 2016, UpGuard obtained US$ 17 milion in a Series B venture funding round led by Square Peg Capital with the participation of Insurance Australia Group and Pelion Venture Partners. [4]

In 2025, UpGuard was recognized as the most valuable investment in the history of the Startmate Accelerator Programme.[5]

Data breaches discovered by UpGuard

In June 2017, UpGuard discovered a publicly accessible Amazon Web Services S3 bucket, owned by a contractor for the Republican National Committee, that exposed the personal data of nearly 200 million American voters.[6]

In October 2017, UpGuard discovered a misconfigured AWS S3 bucket belonging to Alteryx, a data analytics firm. The bucket exposed data belonging to credit reporting agency Experian and the United States Census Bureau, revealing personal details of 123 million American households.[7]

In 2018, UpGuard discovered a fata leak from an Israeli company, NICE Systems. A misconfigured AWS server exposed the names, phone numbers, and account PINs of as many as 14 million Verizon customers.[8]

In October 2020, UpGuard discovered that a server managed by a third-party election vendor had publicly exposed the usernames and password for an electronic poll book system used by election officials in Lake County, Florida.[9]

In May 2021, UpGuard researchers began investigating Microsoft's Power Apps portals. They found that a default setting in the platform's API made data publicly accessible unless privacy settings were manually enabled. This misconfiguration resulted in the exposure of 38 million records across more than a thousand web applications.[10]

In September 2021, UpGuard discovered a publicly exposed cloud storage server belonging to SmarterSelect, a company that processes scholarship and grant applications. The server contained over 1.2 million files with the personal data of applicants, including names, contact information, academic records, and Social Security numbers.[11]

In February 2022, UpGuard discovered an unsecured Elasticsearch server used by ENCollect, a debt collection platform for Financial services in India and Africa. The server exposed 5.8 GB of data, containing nearly 1.7 million records. The leaked information included borrowers' personal details such as names, birth dates, account numbers, and contact information for family members and co-applicants. The dataset also contained over 100,000 phone numbers and internal notes from collection agency staff regarding loan repayments.[12]

In January 2025, TechCrunch reported that UpGuard had found a server belonging to AngelSense, a company providing Global Positioning System trackers for children and the elderly, which was left exposed without a password. The server contained the real-time location data for thousands of users and personal information such as names and phone numbers.[13]

In March 2025, UpGuard's research team uncovered a significant data privacy failure involving AI chatbots designed for fantasy and sexual role-playing. The investigation found that improper security configurations in an open source AI framework were causing the systems to broadcast user conversations onto the open web.[14]

Also in March 2025, it was reported that UpGuard had discovered a security lapse at APIsec, an API testing company. The incident involved the public exposure of a cloud storage server containing sensitive customer data, including API keys and internal credentials.[15]

In June 2025, it was reported that UpGuard had identified an unprotected database belonging to "My JedAI," an AI chatbot startup company. The misconfiguration exposed the email addreses and survey responses of more than 500 individuals who were part of the creator program for the design platform, Canva.[16]

In August 2025, UpGuard discovered that a cybercrime forum known as "Leak Zone" had exposed the IP addresses, private messages, and login credentials of its users. A misconfiguration in the forum's operations security left a server publicly exposed, revealing information that could be used to identify the forum's members.[17]

References

  1. ^ "UpGuard". Cybersecurity Excellence Awards. 2016-11-11. Retrieved 2025-11-27.
  2. ^ Gain, Vish (2021-08-06). "7 start-ups shaking up data and cybersecurity in the new normal". Silicon Republic. Archived from the original on 2025-01-15. Retrieved 2025-11-27.
  3. ^ "Security specialist UpGuard returns to Australia". Insentra. Computerworld. 28 March 2017. Retrieved 2025-11-27.
  4. ^ Sadler, Denham (2016-08-12). "Sydney-founded startup UpGuard closes $17 million Series B round with a record-breaking investment from Square Peg Capital". SmartCompany. Retrieved 2025-11-27.
  5. ^ Field, Shivaune (2025-10-02). "From centre court to Silicon Valley: The big names betting on Startmate startups". Forbes Australia. Retrieved 2025-11-27.
  6. ^ "Personal details of nearly 200 million US citizens exposed". 2017-06-19. Retrieved 2025-09-11.
  7. ^ "Alteryx data breach exposed 123 million American households' information". Los Angeles Times. 2017-12-22. Retrieved 2025-09-11.
  8. ^ "Over 14 Million Verizon Customers' Data Exposed On Unprotected AWS Server". The Hacker News. 2017-07-12. Retrieved 2025-09-11.
  9. ^ Cameron, Dell (2020-10-30). "Passwords of Florida County Election Officials Temporarily Exposed". Gizmodo. Retrieved 2025-09-11.
  10. ^ Newman, Lily Hay. "38M Records Were Exposed Online—Including Contact-Tracing Info". Wired. ISSN 1059-1028. Retrieved 2025-09-11.
  11. ^ Page, Carly (2021-11-22). "US education software company exposed personal data of 1.2M students". TechCrunch. Retrieved 2025-09-11.
  12. ^ Lakshmanan, Ravie. "Thousands of Borrowers' Data Exposed from ENCollect Debt Collection Service". The Hacker News. Retrieved 2025-09-11.
  13. ^ Whittaker, Zack (2025-01-30). "Exclusive: AngelSense exposed location data and personal information of tracked users". TechCrunch. Retrieved 2025-09-11.
  14. ^ Burgess, Matt. "Sex-Fantasy Chatbots Are Leaking a Constant Stream of Explicit Messages". Wired. ISSN 1059-1028. Retrieved 2025-09-11.
  15. ^ Whittaker, Zack (2025-03-31). "Exclusive: API testing firm APIsec exposed customer data during security lapse". TechCrunch. Retrieved 2025-09-11.
  16. ^ "Limited Canva Creator Data Exposed Via AI Chatbot Database". 2025-06-09. Retrieved 2025-09-11.
  17. ^ Whittaker, Zack (2025-07-25). "Cybercrime forum Leak Zone publicly exposed its users' IP addresses". Yahoo! Finance. Retrieved 2025-09-11.
Wikious
Boobota
Sagapedia