About

Who maintains this site, and the basis on which it is published.

The maintainer

This site is maintained by Michael Groberman (handle: Gr0m), based in the New York metropolitan area. He is credited as the reporting researcher in CISA advisory ICSA-26-055-03 for the coordinated disclosure of ten CVEs affecting the Gardyn IoT platform.

Capacity in which the disclosure was made

Per the maintainer’s coordinated-disclosure repository, throughout the disclosure period (October 14, 2025 through February 23, 2026), Mr. Groberman self-identified to Gardyn and to CERT/CC as a Gardyn customer with technical knowledge, and did not adopt the “security researcher” label during that period. Standing for the disclosure was first-person: the records returned by the affected /api/users endpoint included his own Gardyn customer account record, and the device on which unauthenticated remote code execution was demonstrated was a Gardyn device he owned. The “researcher” designation was applied by CISA on February 24, 2026 with the publication of advisory ICSA-26-055-03; Mr. Groberman has worked publicly as a security researcher since that publication.

• LinkedIn
• GitHub
• Disclosure repository for ICSA-26-055-03

What this site is

This site documents CISA advisory ICSA-26-055-03 with primary-source citations. Every page links to the original record (CISA, NVD, MITRE, the maintainer’s coordinated-disclosure repository, or Gardyn’s own posts) for each claim made.

What this site is not

• Not a legal claim.
• Not affiliated with Gardyn Inc. or any party currently litigating against Gardyn.
• Not funded by advertising or affiliate revenue.
• Not collecting visitor data; see the Privacy Policy.

Funding

The site is funded out of pocket by the maintainer. If this changes, it will be disclosed here.

Contact

See the contact page for press, corrections, legal, and general inquiries. PGP and Signal available on request.