Mission
Cybercrime is the third-largest economy on earth, compounding every year, augmented by automated tooling. Most of the security industry activates after the compromise. LeakTrace operates on the pre-attack layer: mapping the observable exposure attackers use as reconnaissance input, before it becomes an incident.
Canadian cybersecurity firm · PIPEDA compliant · Human-verified intelligence
Enterprise-grade exposure intelligence. External Attack Surface Management, credential intelligence, and Business Email Compromise monitoring, productized for the small businesses enterprise vendors won’t sell to.
Incident response, breach notification, forensic recovery. The industry is built around post-compromise cleanup. By the time these tools activate, an attacker has been inside for an average of 194 days. The data is already outside the perimeter.
Before targeting a business, attackers run reconnaissance across breach databases, data broker sites, paste archives, and criminal forums. It takes minutes. LeakTrace runs those same checks so the target organization sees what the attacker sees, before an action is taken.
It's not a future risk. It's a current condition. Statistically, the data is already indexed. The operational question is whether the organization has mapped its own exposure, and whether remediation has begun.
Not marketing commitments. Hard rules that every product decision gets measured against.
We operate before the breach, not after. If an incident has already begun, we are not the right product.
Our intelligence comes from the same sources attackers use. No simulated threats. No synthetic data.
Every finding is paired with a specific remediation action. An exposure report without guidance is not useful.
Personal information is not retained after scan completion. We find your exposure, we do not become part of it.
Full compliance with PIPEDA and CCPA/CPRA. All data processing within North America.
We report what we find, sourced and documented. If there is no exposure, we state that clearly.
Every assessment compounds. Each entity scanned becomes a permanent intelligence record with temporal snapshots, change detection, and cross-entity correlation. Each scan refines the model and expands the exposure intelligence dataset for the North American small business landscape.
What we run on every domain. Every step is logged, audited, and reviewable. No black boxes.
Domain, DNS, MX records, email authentication (SPF, DMARC, DKIM), SSL certificate validity, infrastructure fingerprints, certificate transparency logs.
Cross-reference against 17 billion+ leaked credential records, publicly-disclosed breach databases, documented incidents (LinkedIn 2021, Adobe 2019, Yahoo), and active dark-web markets.
Public corporate registry data, provincial filings, and government-published business directories. Findings are mapped to the entity, not inferred.
Real-time 0–100 composite score integrating credential exposure depth, infrastructure weakness, compliance gaps, and organizational profile.
A frontier language model translates raw findings into plain-English explanations and powers the intel chat. Every output reviewed by a human analyst before delivery.
Analyst-grade PDF suite: executive briefing, technical findings, compliance mapping, remediation plan, monitoring baseline. Delivered within 24 hours.
We use a frontier-grade language model selected for safety properties and interpretability. The data we send is your already-public findings plus business context. We never transmit raw credentials, payment data, or anything outside the scope of the audit.
Clarity about scope. Cybersecurity is a crowded category; we work in a specific layer of it.
Blocking live attacks and monitoring endpoints is what CrowdStrike, SentinelOne, and Norton exist for. LeakTrace finds what is already exposed, before those tools have anything to defend against.
We do not manage networks, fix servers, or run tickets. We audit the exposure surface and refer to Implementation if remediation is in scope.
LeakTrace reduces risk; cyber insurers underwrite the residual. Many of our findings make insurance applications stronger.
Purely defensive. LeakTrace never attempts entry. Every check we run is read-only against public infrastructure.
The data speaks. LeakTrace presents verified findings with action plans. No countdown timers. No threat scoring inflated to drive urgency. No fabricated incident statistics. The reality is severe enough on its own.