WhatA continuous monitoring platform that scans SaaS applications for misconfigured cloud storage (S3, Cloudinary, GCS, Azure Blob) exposing sensitive files publicly, with automated remediation and compliance reporting.
SignalA major public company with billions in GMV used unsigned public URLs for sensitive financial documents, and their security team ignored a responsible disclosure for 40 days — indicating that even large companies lack basic tooling to detect when their cloud-stored assets are publicly accessible and indexed by search engines.
Why NowThe explosion of third-party media processing services (Cloudinary, Imgix, Uploadcare) means companies increasingly store sensitive files across multiple cloud providers they don't directly control, and new regulations like FTC Safeguards Rule and state privacy laws are creating real enforcement risk.
MarketEvery SaaS company using cloud storage pays; TAM is the broader cloud security posture management (CSPM) market at $5B+. Competitors like Wiz and Orca focus on infrastructure-level misconfig but miss application-layer storage misconfigurations involving third-party media services.
MoatCrawling and fingerprinting the growing universe of third-party media/CDN services and their specific signing/access-control configurations creates a proprietary detection engine that deepens with each new integration.
Tell HN: Fiverr left customer files public and searchableView discussion ↗ · 757 pts · April 14, 2026
More ideas from April 14, 2026
Professional Photo Editor Native on LinuxP6/10A professional-grade RAW photo editing and library management application built Linux-first with GPU acceleration and a one-time purchase model.
Cross-Platform Photo Library and DAM SystemC6/10A standalone, cross-platform digital asset management tool for photographers that handles library organization, metadata, and workflow management across 40K+ RAW files without being tied to any specific editor.
One-Time-Purchase Lightroom Alternative with Modern UXC5/10A perpetual-license RAW photo processor with intuitive defaults, modern GPU-accelerated rendering, and automatic new camera support — positioned as the anti-Adobe subscription play.
Browser-Native Anti-Hijack Navigation Protection LayerP5/10A browser extension or embedded browser engine component that enforces true back-button behavior by detecting and blocking history manipulation abuse in real time.
Clean-Web Gateway That Strips Page JunkC6/10A reading-mode proxy or browser extension that automatically removes cookie banners, survey popups, newsletter modals, interstitial ads, and blur overlays before the page renders.
Persistent Domain and Channel Blocking for SearchC7/10A search engine layer or browser extension that lets users permanently block specific domains and content sources from their search results, with shared community blocklists.