The man appears to be one Andrey Andreevich Komarov, aka Andrew Komarov, and he was identified by a researcher who uses the Twitter handle Deacon Blues.
iTWire verified that Komarov is part of Resecurity by calling the company early this morning AEDT — when it was about 11.30 am in Los Angeles, the city mentioned as its location on its website — only to be told that Komarov was not available.
The woman who answered the phone said a message could be passed on to Komarov. iTWire then asked if Resecurity researcher Jean-Jacques Gonçalves, who has corresponded at length with this writer for two stories, was available, but was told that he wasn't there as well.
iTWire has requested a call back and, if anyone does call, any additional information provided will be added to this story.
On Tuesday night, Gonçalves was sent an email, asking for his reaction to the claims made by Deacon Blues. He has not responded so far.
The email sent to Gonçalves was forwarded to Resecurity's general media email address this morning, but there has been no reply to that either.
After iTWire pointed out that Resecurity's claims on its website, of supplying services to several high-profile clients like Microsoft, JPMorgan Chase and Amazon, had no links, the company has now added links. The same has been done for a list of awards, the logos of which are now linked.
Resecurity has also added a number of links to press releases under a new section called News on its website. But the company still has no About page which is found on practically all company websites.
According to Deacon Blues' tweets, Komarov previously worked for a company known as InfoArmor. That company acquired another firm known as IntelCrawler which he set up.
When Resecurity released a claim about the Citrix intrusion, some outlets like The Register and NBC News used it as source material. Deacon Blues captured a screenshot from a search for the NBC article which showed that it had changed attribution from Komarov to Yoo as seen below.
Deacon Blues outlined details of previous incidents involving claims made by Resecurity.
"Seems like the issue of who is behind @resecurity_com issue is a lot more boring than expected," he/she commented in one tweet. "It's a news jacking attempt. Founder has a history of riding the wave of news stories. A few Twitter trolls are along for the ride."
The researcher attached a screenshot of a document that he said was the initial filing made in California by Resecurity, giving the address of a rental mailbox.
Resecurity's California initial filing, address if for a rental mailbox pic.twitter.com/hkrc8G3yur— Deacon Blues (@imdeaconblues) March 11, 2019
He/she pointed out that Komarov had been quoted in "several media outlets, including the New York Times, Washington Post, Reuters, etc. These articles were mainly about the Target and Yahoo! hacks. In both of those cases, Komarov would land in controversy".
Deacon Blues claimed in the case of the Target hack, Komarov had pointed the finger at a 17-year-old as the source behind the malware that was used. But this turned out to be incorrect and Komarov's former boss had to correct the record, Deacon Blues said.
In the case of the Yahoo! breach, Komarov was said to have spotted the infiltration before it was made public. "The only problem: he never bothered to tell anyone until after it had been announced," Deacon Blues said.
After the tweet thread by Deacon Blues, some researchers have poked a bit of fun at Resecurity as shown in the tweet below: