Bio

Senior Security Researcher at Sonatype.
Author at CSO Online, BleepingComputer, CIO, Security Report, Hacker Noon,
M.S. in Computer Science, Georgia Tech.
B.S. in Software Engineering, Drexel University

Endorsed an Exceptional Talent, a recognised leader in Tech by the British Government and frequently featured by leading media outlets like Fortune, The Register, and CIO, Ax Sharma is a Security Researcher and Engineer who holds a passion for perpetual learning. In his spare time, he loves exploiting vulnerabilities, ethically, and educating a wide range of audiences. He’s an active community member of the OWASP Foundation and the British Association of Journalists (BAJ).

Ax’s expertise lies in vulnerability research, software development, and web app security. Through responsible disclosure, he has previously exposed serious bugs and security vulnerabilities affecting national & global organisations like HM GovernmentYodel, U.S. DHS, P.F. Chang’s, Planet Fitness, Comcast/Arris, Ellucian and the popular restaurant chain, Buca di Beppo.

In early 2018, Ax helped prevent a massive data breach at Georgia Tech by going public with a serious flaw that was left unpatched for over a year. He hence earned himself a place on Tech’s Vulnerability Reporters “hall of fame” page.

To consult Ax for your next big security project or for media source requests, drop him a note here.

Ax’s hobbies include working out, reading, playing piano and developing innovative, upcoming web projects.

  • The Windows Bad Neighbor vulnerability explained — and how to protect your networkThe Windows Bad Neighbor vulnerability explained — and how to protect your network
    In October 2020, Microsoft patched a set of vulnerabilities that included critical networking bugs CVE-2020-16898 and CVE-2020-16899. Known as “Bad Neighbor” or “Ping of Death Redux,” these flaws lurk in the TCP/IP networking implementation in Windows in how incoming ICMPv6 packets are handled under certain conditions.To read this article in… Read more »
  • Windows code-signing attacks explained (and how to defend against them)Windows code-signing attacks explained (and how to defend against them)
    Code signing is a mechanism by which software manufacturers assure their consumers that they are running legitimate software, signed by its manufacturer via cryptography. This ensures that the software release wasn’t tampered with while making its way from the manufacturer to the end-user and is especially relevant when downloading software… Read more »
  • Homomorphic encryption: Deriving analytics and insights from encrypted dataHomomorphic encryption: Deriving analytics and insights from encrypted data
    Homomorphic encryption definition What do you do when you need to perform computations on large data sets while preserving their confidentiality? In other words, you would like to gather analytics, for example, on user data, without revealing the contents to the computation engine that is going to calculate the analytics.… Read more »
  • 4 best practices to avoid vulnerabilities in open-source code4 best practices to avoid vulnerabilities in open-source code
    This year presented even more challenges for ensuring the integrity and security of open-source ecosystems. Open source has been the greatest boon to developers in that virtually anyone can use and customize it, typically at no cost, and contribute to the community. What has been a means of ensuring greater… Read more »
  • RDP hijacking attacks explained, and how to mitigate themRDP hijacking attacks explained, and how to mitigate them
    RDP hijacking definitionTo read this article in full, please click here(Insider Story) Read more »
  • 5 best practices to secure single sign-on systems5 best practices to secure single sign-on systems
    The recent “Sign in with Apple” vulnerability earned a researcher $100,000 as a part of Apple’s bug bounty program. The flaw itself arose from an OAuth-style implementation that did not properly validate JSON Web Token (JWT) authentication between requests. This would have allowed a malicious actor to “Sign in with… Read more »
  • John the Ripper explained: An essential password cracker for your hacker toolkitJohn the Ripper explained: An essential password cracker for your hacker toolkit
    John the Ripper definition  First released in 1996, John the Ripper (JtR) is a password cracking tool originally produced for UNIX-based systems. It was designed to test password strength, brute-force encrypted (hashed) passwords, and crack passwords via dictionary attacks.[ Find out how to do penetration testing on the cheap ...… Read more »
  • Lessons learned from the ANPR data leak that shook BritainLessons learned from the ANPR data leak that shook Britain
    On April 28, 2020, The Register reported the massive Automatic Number-Plate Recognition (ANPR) system used by the Sheffield government authorities was leaking some 8.6 million driver records. An online ANPR dashboard responsible for managing the cameras, tracking license plate numbers and viewing vehicle images was left exposed on the internet,… Read more »
  • PrintDemon vulnerability explained: Its risks and how to mitigatePrintDemon vulnerability explained: Its risks and how to mitigate
    Microsoft’s May 2020 update patched some 111 vulnerabilities including one for Windows Print Spooler. That vulnerability, discovered by Peleg Hadar and Tomer Bar of SafeBreach Labs,  caught the eye of security experts, as hackers can exploit it to elevate privileges and execute arbitrary code. Dubbed PrintDemon and known by CVE-2020-1048,… Read more »
  • NodeJS malware caught exfiltrating IPs, username, and device information on GitHubNodeJS malware caught exfiltrating IPs, username, and device information on GitHub
    Multiple NodeJS packages laden with malicious code have been spotted on npm registry. These “typosquatting” packages served no purpose other than collecting data from the user’s device and broadcasting it on public GitHub pages. The findings were spotted by Sonatype’s automated malware detection systems and further investigated by the company’s Security Research… Read more »
  • Can a Windows wallpaper really hijack your Microsoft account password?Can a Windows wallpaper really hijack your Microsoft account password?
    This month security researcher bohops demonstrated a credential harvesting trick that uses Windows theme files. Setting a Windows wallpaper location to a file present at a remote location, for example, a password-protected HTTP(s) page, instead of a locally present image, can be abused for phishing. This happens because the password-protected… Read more »
  • A malware alert left hundreds of Bank of America customers panickingA malware alert left hundreds of Bank of America customers panicking
    According to reports, hundreds of Bank of America customers had trouble accessing their bank accounts yesterday due to Avast and AVG antivirus engines flagging the site as “malware.” Naturally, seeing a virus alert when visiting their banking website would worry any customer. “I’m using Home Banking site for Bank of… Read more »
  • A peek inside the “fallguys” malware that steals your browsing data and gaming IMsA peek inside the “fallguys” malware that steals your browsing data and gaming IMs
    This weekend a report emerged of mysterious npm malware stealing sensitive information from Discord apps and web browsers installed on a user’s machine. The malicious component called “fallguys” lived on npm downloads impersonating an API for the widely popular video game, Fall Guys: Ultimate Knockout. Its actual purpose, however, was rather… Read more »
  • Do airplanes still use floppy disks for updates? Why?Do airplanes still use floppy disks for updates? Why?
    Airplanes are a luxury for most people to own, let alone toy with—given all the national security regulations. This year’s DEF CON, however, revealed a fascinating finding leaving many, including myself, surprised. July this year, British Airways announced it would retire its BOEING-747 fleet “due to the downturn in travel… Read more »
  • Why don't Hulu or Netflix use 2-factor authentication?Why don't Hulu or Netflix use 2-factor authentication?
    Streaming service accounts get compromised all the time either due to data breaches, credential stuffing attacks from leaked databases, or simply because of users employing weak passwords.   How accessible a streaming service makes it for a rightful account owner to attempt recovery is what counts. However, in the case of… Read more »
  • PlayStation discloses “severe” kernel vulnerabilityPlayStation discloses “severe” kernel vulnerability
    PlayStation has disclosed a severe use-after-free vulnerability, after over three months since it was reported. The vulnerability discovered by researcher Andy Nguyen exists in PS4 Firmware versions 7.02 and below. After constructing a demonstrable Proof of Concept (PoC) exploit, the researcher had responsibly reported the flaw to the company in March 2020.… Read more »
  • Hacking the antivirus: BitDefender remote code execution vulnerabilityHacking the antivirus: BitDefender remote code execution vulnerability
    What happens when the very antivirus designed to keep you and your organization safe becomes a threat vector for the attackers to exploit? Yesterday, I broke the news story on Bleeping Computer about a remote code execution vulnerability which was recently discovered and disclosed by security researcher and blogger Wladimir Palant. Palant explained how the… Read more »
  • NHS contact-tracing app code hints at security and privacy bugs early on
    NHS recently announced plans to unveil their own coronavirus contact-tracing app, as opposed to joining leagues of Apple and Google, to have better visibility into citizen movements. Suffice to say, the plan has certainly raised eyebrows of privacy activists, lockdown sceptics, and opponents of “big government.” On the bright side, the NHS coronavirus app is… Read more »
  • ☢️ Dissecting DEFENSOR: a stealthy Android banking malware☢️ Dissecting DEFENSOR: a stealthy Android banking malware
    Android malware apps are nothing new, but this one is of particular interest in how it implements no such functionality that can be readily detected by security products. The apps named DEFENSOR ID and Defensor Digital rely mainly on Android's Accessibility Service to conduct malicious activities, and go undetected. In… Read more »
  • 5 ways cybersecurity awareness trainings can strengthen your organization5 ways cybersecurity awareness trainings can strengthen your organization
    According to an InfoScales report, 95% of successful cyberattacks have human error as the leading cause – most notably company employees falling for phishing scams. This is an important observation as cybersecurity efforts often intuitively focus largely on strengthening the technical controls in an organization to prevent data leakage, willful… Read more »
  • 5 practical ways your organization can benefit from DevSecOps5 practical ways your organization can benefit from DevSecOps
    It’s right there in the moniker: DevSecOps , a portmanteau of Development, Security and Operations,  implies introducing security early on – as a part of a comprehensive, agile Software Development Life Cycle (SDLC) used by your organization, rather than doing so iteratively or waiting until after a release.Given how security… Read more »
  • Is our obsession with regulation killing the web?Is our obsession with regulation killing the web?
    Anybody who’s been paying attention has noticed just how much the internet has changed within the last 10 years.From the humble looks of Google’s homepage to the vast existence old-school message boards and a virtually irrelevant “social” media, the internet largely felt like an accessory, a toy you could play… Read more »
  • 7 steps to landing your first IT job, fast7 steps to landing your first IT job, fast
    IT is a constantly expanding sector with its ever-increasing demand for skilled talent and the projected scope for growth within the next few years. This is especially true for the Information Security subfield for which the vacancies are drastically going up while the workers are struggling to catch up in… Read more »
  • 7 ‘don’ts’ of diversity for fostering a healthy office culture7 ‘don’ts’ of diversity for fostering a healthy office culture
    Change at a workplace is hard and often comes with improvements and challenges which cannot be ignored. Change can be a struggle for employees who often need time to gradually adapt themselves to it, rather than feeling forced into it. Even minor changes, for example, changing your company’s choice of… Read more »
  • 5 ways a global presence can benefit your tech company5 ways a global presence can benefit your tech company
    If you run a successful tech startup or an established business, primarily offering digital products and services, chances are you have a significant customer presence worldwide. There also lies a high probability that you leverage a remote workforce ‘round-the-globe enabling increased collaboration over time zones. While staying local never hurt… Read more »

Medium: Go to Medium blog >