• Home
  • Viewing author profile for Ax Sharma

Ax Sharma

  • Location:Manchester, UK
  • Title:Security Researcher, Journalist
  • Forum Profile:AxSharma
  • Get in touch:
Author Photo
Author Bio

Ax Sharma is an Indian-origin British security researcher and journalist focused on malware analyses and cybercrime investigations. His areas of expertise include open source software security, threat intel analysis, and reverse engineering. Frequently featured by leading media outlets like the BBC, Channel 5, Fortune, WIRED, among others, Ax is an active community member of the OWASP Foundation and the British Association of Journalists (BAJ).

Send any tips via email or Twitter DM.

Ax Sharma
News
  • Dev rejects CVE severity, makes his GitHub repo read-only Image

    Dev rejects CVE severity, makes his GitHub repo read-only

    The popular open source project, 'ip' had its GitHub repository archived, or made "read-only" by its developer as a result of a dubious CVE report filed for his project. Unfortunately, open-source developers have recently been met with an uptick in debatable or outright bogus CVEs filed for their projects.

  • Polyfill.io, BootCDN, Bootcss, Staticfile attack traced to 1 operator Image

    Polyfill.io, BootCDN, Bootcss, Staticfile attack traced to 1 operator

    The recent large scale supply chain attack conducted via multiple CDNs, namely Polyfill.io, BootCDN, Bootcss, and Staticfile that affected up to tens of millions of websites has been traced to a common operator. Researchers discovered a public GitHub repository with leaked API keys helping them draw a conclusion.

  • Polyfill claims it has been 'defamed', returns after domain shut down Image

    Polyfill claims it has been 'defamed', returns after domain shut down

    The owners of Polyfill.io have relaunched the JavaScript CDN service on a new domain after polyfill.io was shut down as researchers exposed it was delivering malicious code on upwards of 100,000 websites.. The Polyfill service claims that it has been "maliciously defamed" and been subject to "media messages slandering Polyfill."

  • Cloudflare: We never authorized polyfill.io to use our name Image

    Cloudflare: We never authorized polyfill.io to use our name

    Cloudflare, a lead provider of content delivery network (CDN) services, cloud security, and DDoS protection has warned that it has not authorized the use of its name or logo on the Polyfill.io website, which has recently been caught injecting malware on more than 100,000 websites in a significant supply chain attack.

  • LockBit lied: Stolen data is from a bank, not US Federal Reserve Image

    LockBit lied: Stolen data is from a bank, not US Federal Reserve

    Recently-disrupted LockBit ransomware group, in a desperate attempt to make a comeback, claimed this week that it had hit the Federal Reserve, the central bank of the United States. Except, the rumor has been quashed.

  • CDK warns: threat actors are calling customers, posing as support Image

    CDK warns: threat actors are calling customers, posing as support

    CDK Global has cautioned customers about unscrupulous actors calling them and posing as CDK agents or affiliates to gain unauthorized systems access. The warning follows ongoing cyberattacks that have hit CDK, a software-as-a-service (SaaS) platform that thousands of US car dealerships rely upon.

  • GitLab affected by GitHub-style CDN flaw allowing malware hosting Image

    GitLab affected by GitHub-style CDN flaw allowing malware hosting

    BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making the files appear trustworthy. It turns out, GitLab is also affected by this issue and could be abused in a similar fashion.

  • UK e-visa rollout starts today for millions: no more physical immigration cards Image

    UK e-visa rollout starts today for millions: no more physical immigration cards

    Starting today, millions living in the UK will receive email invitations to sign up for an e-visa account that will replace their physical immigration documents like Biometric Residence Permits (BRPs). The move is, according to the Home Office, "a key step in creating a modernised and digital border."

  • Hacker claims Giant Tiger data breach, leaks 2.8M records online Image

    Hacker claims Giant Tiger data breach, leaks 2.8M records online

    Canadian retail chain Giant Tiger disclosed a data breach in March 2024. A threat actor has now publicly claimed responsibility for the data breach and leaked 2.8 million records on a hacker forum that they claim are of Giant Tiger customers.

  • UK flooded with forged stamps despite using barcodes — to prevent just that Image

    UK flooded with forged stamps despite using barcodes — to prevent just that

    Royal Mail, the British postal and courier service began switching all snail mail stamps to barcoded stamps last year. The purpose of the barcode was to enhance security, deter stamp reuse, and possibly prevent forgeries—which it has failed to do.

  • Notepad++ wants your help in

    Notepad++ wants your help in "parasite website" shutdown

    The Notepad++ project is seeking the public's help in taking down a copycat website that closely impersonates Notepad++ but is not affiliated with the project. There is some concern that it could pose security threats—for example, if it starts pushing malicious releases or spam someday either deliberately or as a result of a hijack.

  • It's surprisingly difficult for AI to create just a plain white image Image

    It's surprisingly difficult for AI to create just a plain white image

    Generative AI services like Midjourney and OpenAI's DALL-E can deliver the unimaginable when it comes to stunning artifacts produced from simple text prompts. Sketching complex art imagery may be AI's specialty, yet some of the simplest tasks are evidently what AI struggles with the most.

  • Here's why Twitter sends you to a different site than what you clicked Image

    Here's why Twitter sends you to a different site than what you clicked

    Users of the social media platform X (Twitter) have often been left puzzled when they click on a post with an external link but arrive at an entirely unexpected website from the one displayed. A Twitter ad spotted below by a security researcher shows forbes.com as its destination but instead takes you to a Telegram account.

  • Content farm impersonates 60+ major news outlets, like BBC, CNN, CNBC Image

    Content farm impersonates 60+ major news outlets, like BBC, CNN, CNBC

    BleepingComputer has discovered a content farm operating some 60+ domains named after popular media outlets, including the BBC, CNBC, CNN, Forbes, Huffington Post, The Guardian, and Washington Post, among others. These sites build SEO for their online gambling ventures and sell "press release" slots at hefty prices.

  • Registrars can now block all domains that resemble brand names Image

    Registrars can now block all domains that resemble brand names

    Registrars can now block people from registering tens of thousands of domain names that look like, are spelling variations of, or otherwise infringe on brand names.

Ax Sharma

Login

Sign in with Twitter button Sign in with Twitter

Not a member yet? Register Now