Ax Sharma
Author Bio
Ax Sharma is an Indian-origin British security researcher and journalist focused on malware analyses and cybercrime investigations. His areas of expertise include open source software security, threat intel analysis, and reverse engineering. Frequently featured by leading media outlets like the BBC, Channel 5, Fortune, WIRED, among others, Ax is an active community member of the OWASP Foundation and the British Association of Journalists (BAJ).
Send any tips via email or Twitter DM.
-
Namecheap hosting and email DOWN in prolonged outage
One of the world's largest domain registrars, Namecheap has been hit with a series of mysterious outages today and it is not clear why..
- August 30, 2020
- 11:12 AM
-
0
-
Why streaming a video could freeze Microsoft IIS servers
Microsoft August 2020 security patch fixed over 120 flaws. One of these flaws lets anyone freeze IIS servers by streaming videos, and seeking through them fast.
- August 29, 2020
- 12:12 PM
-
0
-
With Empire gone, patrons eye other illegal darkweb markets
Recently dark web marketplace made an abrupt exit after being subject to a heavy DDoS attack campaign, and extortion attempts. Who's going to take its place next?
- August 26, 2020
- 10:43 AM
-
1
-
Dark web market Empire down for days from DDoS attack
The popular dark web site Empire Market has been down for at least 48 hours, with some users suspecting an exit scam and others blaming a prolonged distributed denial-of-service (DDoS) attack.
- August 24, 2020
- 08:24 AM
-
1
-
FritzFrog malware attacks Linux servers over SSH to mine Monero
A sophisticated botnet campaign named FritzFrog has been discovered breaching SSH servers around the world, since at least January 2020.
- August 19, 2020
- 06:00 AM
-
0
-
Duri campaign smuggles malware via HTML and JavaScript
A new attack campaign uses a combination of HTML smuggling techniques and data blobs to evade detection and download malware.
- August 18, 2020
- 09:00 AM
-
0
-
Canada suffers cyberattack used to steal COVID-19 relief payments
Canadian government sites used to provide access to crucial services for immigration, taxes, pension, and benefits have been breached in a coordinated attack to steal COVID-19 relief payments.
- August 16, 2020
- 10:37 AM
-
0
-
Mekotio banking trojan imitates update alerts to steal Bitcoin
A versatile banking trojan targeting users in Latin America has been circulating in multiple countries including Mexico, Brazil, Chile, Spain, Peru, and Portugal.
- August 13, 2020
- 05:30 AM
-
0
-
Samsung rolls out Android updates fixing critical vulnerabilities
Samsung has started rolling out Android's August security updates to mobile devices to fix critical security vulnerabilities in the operating system.
- August 08, 2020
- 11:05 AM
-
0
-
TeamViewer fixes bug that lets attackers access your PC
Popular remote access and troubleshooting app, TeamViewer has patched a vulnerability that could let attackers quietly establish a connection to your computer and further exploit the system.
- August 07, 2020
- 12:37 PM
-
0
-
Hackers abuse lookalike domains and favicons for credit card theft
Hackers are abusing a new technique: combining homoglyph domains with favicons to conduct credit card skimming attacks.
- August 06, 2020
- 01:09 PM
-
0
-
Google Home erroneous update reveals the $450 million ADT deal
What happens when your old budget smoke alarm suddenly becomes Google "smart"?
- August 06, 2020
- 06:43 AM
-
3
-
Google to pay $7.5M in class action settlement. That's $5 a victim.
As confirmed by BleepingComputer, users today are receiving emails titled, "Notice of Class Action Settlement re Google Plus..." that offer details on the two-year class-action lawsuit Google had been litigating because of the Google+ data leak.
- August 05, 2020
- 11:59 AM
-
0
-
NodeJS module downloaded 7M times lets hackers inject code
A Node.js module downloaded millions of times has a security flaw that can enable attackers to perform a denial-of-service (DoS) attack on a server or get full-fledged remote shell access.
- August 04, 2020
- 10:40 AM
-
1
-
Bypassing Windows 10 UAC with mock folders and DLL hijacking
A new technique uses a simplified process of DLL hijacking and mock directories to bypass Windows 10's UAC security feature and run elevated commands without alerting a user.
- July 31, 2020
- 12:48 PM
-
4
0
