Dr Muhammad Faiz Bin Mohd Zaki, lead of CSNET's Network Security Research SIG.
Dr Muhammad Faiz Bin Mohd Zaki, lead of CSNET's Network Security Research Special Interest Group, is representing Universiti Malaya at the Malaysia Invention & Innovation Expo 2026 (MIIX26). Competing in the Expert Innovator category as project entry EX433, his submission introduces LeakGuard: Automated Credential Intelligence and Risk Monitoring System for Telegram-Based Threat Intelligence.
The Problem: Stolen Credentials on Telegram
Telegram has become a major venue for the trade and distribution of leaked credentials. Traditional defences rely on manual checks or static breach databases, which lag behind the speed at which fresh leaks are posted, replicated, and weaponised. By the time analysts learn of a leak through conventional channels, the window for prevention is often closed.
How LeakGuard Works
LeakGuard offers a fully automated pipeline designed to surface leaked credentials in near real time. The system continuously scrapes Telegram channels and uses an open-source intelligence layer combined with message-content analysis to discover new threat sources without analyst intervention. As leaks are detected, each one is enriched and prioritised through a purpose-built Credential Risk Score that weighs three factors: the privilege level of the compromised account, the size of the channel's audience, and the uniqueness of the password.
From Research to Protected Innovation
A copyright application has been filed for both the LeakGuard framework and its source code, reflecting the project's progression from research output to a defensible innovation. The MIIX26 submission positions the work alongside Malaysia's broader pool of expert-led inventions and invites the community to engage with the project through the expo platform.
Why It Matters
For security analysts and incident responders, the most valuable resource is prioritised, evidence-based intelligence. LeakGuard is built to deliver exactly that: a continuously updated, scored view of credential exposure that helps teams decide where to act first. The result is faster, more effective intervention against credential-driven cyberattacks, a category of threat that continues to grow in scale and impact.
Visitors to the expo can support the entry by registering their Like on the project's MIIX26 page, which contributes to its standing in the competition.