A malware alert left hundreds of Bank of America customers panicking
Hundreds of Bank of America customers had trouble accessing their bank accounts yesterday due to Avast and AVG antivirus engines flagging the site as "malware."... Read More
Ax Sharma
Ax Sharma is a Security Researcher, Engineer, and Tech Columnist. His works and expert analyses have frequently been featured by leading media outlets like Fortune, BleepingComputer, The Register, TechRepublic, CIO, etc.
Ax's expertise lies in vulnerability research, reverse engineering, software development, and web app security. He's an active community member of the OWASP Foundation and the British Association of Journalists (BAJ).
News tips welcome via Twitter DM (@Ax_Sharma) or email (ax@hey.ax).
Apple SSH privacy bug “exploited at large” remains unpatched after 2 years
A privacy bug lurking around in Apple Mac OS X since at least 2018 continues to remain unpatched and exploited at large.... Read More
Why do airplanes use floppy disks in 2020 for critical updates?
Airplanes are a luxury for most people to own, let alone toy with—given all the national security regulations. This year’s DEF CON, however, revealed a... Read More
Hacker Noon fixes leaky drafts: what about your blog?
Update Aug-13-2020: Hacker Noon has fixed the issue and a reply via a tweet provided more information: “URL removal request went through https://google.com/search?q=site%3Aapp.hackernoon.com%2Fdrafts%2F… . all... Read More
Smart lock bug could let hackers locate you and unlock your door, remotely
A new report published this week sheds light on a vulnerability in smart lock models that hackers could exploit to crack them open remotely. Not... Read More
What the 2020 hacks have taught the crypto industry?
Rushing an SDK integration cost a crypto business $2 million! In February 2020, we learned of IOTA’s Trinity wallet hack which cost the company a fortune.IOTA, which... Read More
That ‘BCC’ email field can save you from data leaks
This month multiple stories have emerged of companies exposing their member email addresses to each other. This typically happens due to human-induced error, when a... Read More
Google patches multiple Chrome vulnerabilities, including RCE.
The stable release 84.0.4147.105 of Chrome web browser which is out for Windows and Mac fixes a number of vulnerabilities ranging from low to high... Read More
Microsoft adds Remote Desktop (RDP) to Azure AD App proxy
Microsoft has announced integration of Remote Desktop (RDP) Services web client with its Azure AD Application Proxy. The “public preview” of the RDP web client... Read More
20,000 GitHub projects at risk from Node.js ‘standard-version’ library vulnerability
More than 20,000 GitHub projects rely on the Node.js standard-version utility to implement semantic versioning (semver) and for generating CHANGELOG files for their builds. A... Read More
Theme park giant Parques Reunidos hit by a ransomware cyber attack 
Phishing kit screenshots your email domain on the fly to appear real 
Royal Mail online tracking returns — with a frustrating captcha that works half the time 
New convincing phishing campaign targets Booking.com and Blockchain.com customers