Ax Sharma

Ax Sharma is a Security Researcher, Engineer, and Tech Columnist. His works and expert analyses have frequently been featured by leading media outlets like Fortune, BleepingComputer, The Register, TechRepublic, CIO, etc. Ax's expertise lies in vulnerability research, reverse engineering, software development, and web app security. He's an active community member of the OWASP Foundation and the British Association of Journalists (BAJ). News tips welcome via Twitter DM (@Ax_Sharma) or email (ax@hey.ax).

Phishing kit screenshots your email domain on the fly to appear real 3 min read

News

Phishing kit screenshots your email domain on the fly to appear real

Ax Sharma November 18, 2022

Phishing kit used by multiple hacked sites generates a log in page on the fly that closely resembles the victim's email domain.... Read More

Royal Mail online tracking returns — with a frustrating captcha that works half the time 3 min read

News

Royal Mail online tracking returns — with a frustrating captcha that works half the time

Ax Sharma November 17, 2022

Mysterious week-long outage impacting the Royal Mail tracking website is subsiding, but with caveats. Meanwhile, mitigations employed by the mail service hint at a DDoS attack.... Read More

three brown wooden boat on blue lake water taken at daytime

New convincing phishing campaign targets Booking.com and Blockchain.com customers 2 min read

News

New convincing phishing campaign targets Booking.com and Blockchain.com customers

Ax Sharma November 10, 2022

New series of convincing phishing emails use Fleek.co's infrastructure to collect credentials.... Read More

A spreadsheet hosted on Intel.com is flagged as malware—but is it? 2 min read

Security

A spreadsheet hosted on Intel.com is flagged as malware—but is it?

Ax Sharma April 5, 2022

A 'Product Compliance' Excel spreadsheet hosted on Intel.com is being mistaken for malware... Read More

NS trains halted for hours after IT system ‘failure’ 2 min read

NS trains halted for hours after IT system ‘failure’

Ax Sharma April 4, 2022

Major Dutch passenger railway operator Nederlandse Spoorwegen (NS) suspended trains for hours over IT issues.... Read More

Movie studios sue TorGuard after $10 million legal battle with LiquidVPN 3 min read

Movie studios sue TorGuard after $10 million legal battle with LiquidVPN

Ax Sharma October 31, 2021

Dozens of film studios are suing TorGuard VPN for allegedly encouraging online piracy.... Read More

Mozilla drops Firefox add-on installed by 455,000 for blocking updates 2 min read

Mozilla drops Firefox add-on installed by 455,000 for blocking updates

Ax Sharma October 26, 2021

Mozilla Firefox add-ons 'Bypass' and 'Bypass XM' were abusing the proxy API to circumvent paywalls.... Read More

NHS Moorfields Hospital in Dubai confirms cyber attack, after ransomware data leak threats 2 min read

News

NHS Moorfields Hospital in Dubai confirms cyber attack, after ransomware data leak threats

Ax Sharma August 16, 2021

The ransomware group claims to have 60 GB of proprietary and patient data from the Dubai-based Moorfields Eye Hospitals.... Read More

three men sitting on chair beside tables

How can Salesforce community sites be exploited for data theft, by unauthenticated actors? 2 min read

How can Salesforce community sites be exploited for data theft, by unauthenticated actors?

Ax Sharma August 12, 2021

Salesforce Community sites can be exploited for data theft and reconnaissance activities by threat actors, due to a misconfiguration flaw.... Read More

21,000 U.S. driver licenses up for sale on hacker forum after data breach 4 min read

21,000 U.S. driver licenses up for sale on hacker forum after data breach

Ax Sharma July 14, 2021

Over 21,000 U.S. driver licenses are being sold on a hacker forum, along with thousands of credit reports.... Read More

You may have missed