About
I am an experienced Information Security Analyst with a strong background in…
Articles by Souvik
-
Unleashing Memcached: The Double-Edged Sword of Speed and Vulnerability
Unleashing Memcached: The Double-Edged Sword of Speed and Vulnerability
Memcached, a caching protocol, is the secret to supercharging data-intensive applications. With its lightning-fast data…
-
Practical way ,How Hackers can take Control your Webcam and Microphone and How to Protect Yourself from This Mess
Practical way ,How Hackers can take Control your Webcam and Microphone and How to Protect Yourself from This Mess
Hello everyone, with the increasing number of internet users, online phishing attempts have become a significant…
Contributions
Activity
-
🚨 MicroSec Discovers critical 0 Day CVE in Instantel Micromate (CVE-2025-1907) A critical zero-day vulnerability was discovered by MicroSec in the…
🚨 MicroSec Discovers critical 0 Day CVE in Instantel Micromate (CVE-2025-1907) A critical zero-day vulnerability was discovered by MicroSec in the…
Liked by Souvik Kandar
-
https://lnkd.in/gkV5FrbV
https://lnkd.in/gkV5FrbV
Shared by Souvik Kandar
-
💸 I earned €3,000 (~₹2.9 Lakh) after spotting a small mistake in a JavaScript file. 💰 🐞 Bug: Sensitive data exposure in a .js file 🧰 Tools…
💸 I earned €3,000 (~₹2.9 Lakh) after spotting a small mistake in a JavaScript file. 💰 🐞 Bug: Sensitive data exposure in a .js file 🧰 Tools…
Liked by Souvik Kandar
Experience
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
Education
Honors & Awards
-
ICS Cyber Security
U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA)
Completed the ICS Cybersecurity training provided by the U.S. Department of Homeland Security and CISA. This program enhanced my skills in identifying, mitigating, and managing risks in Industrial Control Systems (ICS) and Operational Technology (OT) environments. The training focused on ICS vulnerabilities, cybersecurity practices, and securing critical infrastructure. This recognition underscores my commitment to strengthening the security of ICS, SCADA, and other critical systems.
-
The Bug Hunting Methodology
Jason Haddix
-
Practical IoT Protocol Hacking
academy.expliot.io
-
CVE-2022-30564
DAHUA
https://www.dahuasecurity.com/support/cybersecurity/details/1147
-
Acknowledgment
NCIIPC RVDP
-
CVE-2022-28173
HIKVISION
https://www.hikvision.com/ar/support/cybersecurity/security-advisory/security-notification-access-control-vulnerability-in-some-hikvi/
-
CVE-2022-3001
Milesight
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2022-0352
-
CVE-2022-41677
Bosch
https://psirt.bosch.com/security-advisories/bosch-sa-839739-bt.html
-
CVE-2023-0773
Uniview
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0270
-
CVE-2023-24738
Araknis
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0150
-
CVE-2023-28808
Hikvision
https://www.hikvision.com/en/support/cybersecurity/security-advisory/security-vulnerability-in-some-hikvision-hybrid-san-cluster-stor/
-
CVE-2023-30466
Milesight
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0121
-
CVE-2023-30467
Milesight
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0121
-
CVE-2023-3704
CP-Plus
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0240
-
CVE-2023-3705
CP-Plus
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0239
-
CVE-2024-10381
Matrixcomsec
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0328
-
CVE-2025-0896
Orthanc Server
https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-037-02
-
CVE-2025-1863
Yokogawa
https://www.cisa.gov/news-events/ics-advisories/icsa-25-107-04
-
CVE-2025-1907
Instantel Micromate
https://www.cisa.gov/news-events/ics-advisories/icsa-25-148-04
-
CVE-2025-2567
-
https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-05
-
CVE-2025-36535
AutomationDirect
https://www.cisa.gov/news-events/ics-advisories/icsa-25-140-09
-
CVE-2025-3927
Digigram
https://kb.cert.org/vuls/id/360686
-
Certified AppSec Pentester (CAPen)
The SecOps Group
CERTIFICATE ID: 8978188
-
Hall of fame
Soundcloud,Unison Production site,CPOMS systems Ltd,Lime,Axonius,DarkMatter,Realself,Pay U single platform,Memsource Vulnaribility Discolosure Program,Twitch.tv
-
Hall of fame
Paysafe Netbanx,RSR group,Mettle,Virtru,Transferwise,Iterable,Cloudinary,You Need a budget,Syndic8
-
Hall of fame
CERT EU
https://www.cert.europa.eu/hall-of-fame
-
Hall of fame
Apple(Five times), UK government(https://vdp.cabinetoffice.gov.uk/thanks.txt)
-
Hall of fame
Drift,Zappos,CreativeMarket,Norton LifeLock,WBI Energy Transmission,Synergy Cp,Aws,Wallmart,Irobot,NorthWestern Mutual
-
Hall of fame
Framer,Pluralsight,Stitch,Contentful,Pinsent Masons,Reverb,NEOGOV Public Assests,TD Tradewise,Simple,Mailgun
-
Hall of fame
Credit Kudos bug bounty Program,Bethesda.NET,Fiat Chrysler Automobiles,Tealium,Cloudways,tripadviser,jora,Blend,B&H Photo Video,Campaign Monitor,Adidas
-
Honorable Mentions
Google
-
Letter of appreciation from Drexel University
Drexel University
-
Practical Firmware Hacking
Expliot
-
Vulnerability Coordination with Idaho National Laboratory (INL)
-
More activity by Souvik
-
Building and scaling ai augmented recon / bugbounty automation. And hacking / hardening ai solutions. Is def my new area of interest! Wow what a…
Building and scaling ai augmented recon / bugbounty automation. And hacking / hardening ai solutions. Is def my new area of interest! Wow what a…
Liked by Souvik Kandar
-
Grateful to be featured once again on SecurityWeek for my recent vulnerability discovery in AutomationDirect’s MB-Gateway. The vulnerability…
Grateful to be featured once again on SecurityWeek for my recent vulnerability discovery in AutomationDirect’s MB-Gateway. The vulnerability…
Shared by Souvik Kandar
-
📣 Cybersec Europe 2025 is underway! 🤝 Swing by and meet the Intigriti team at Stand B105 📍 Whether you're curious, collaborative, or just…
📣 Cybersec Europe 2025 is underway! 🤝 Swing by and meet the Intigriti team at Stand B105 📍 Whether you're curious, collaborative, or just…
Liked by Souvik Kandar
-
Many of the industrial control system (ICS) instances seen in internet scanning are likely or possibly honeypots, not real devices…
Many of the industrial control system (ICS) instances seen in internet scanning are likely or possibly honeypots, not real devices…
Liked by Souvik Kandar
-
Excited to share that one of my older vulnerability reports has now been published as an official CVE by CISA — CVE-2025-36535 This critical issue…
Excited to share that one of my older vulnerability reports has now been published as an official CVE by CISA — CVE-2025-36535 This critical issue…
Shared by Souvik Kandar
-
🔒 Event Recap: Atlas’ Medical Digital Health Summit | Dubai Theme: Future of Connected, Intelligent & Secure Healthcare Co-hosted by Atlas Medical…
🔒 Event Recap: Atlas’ Medical Digital Health Summit | Dubai Theme: Future of Connected, Intelligent & Secure Healthcare Co-hosted by Atlas Medical…
Liked by Souvik Kandar
-
🌟Grateful & Thrilled 🌟 A year ago, I stepped into EY with ambition and the drive to make an impact. Today, I am honoured to receive the Client…
🌟Grateful & Thrilled 🌟 A year ago, I stepped into EY with ambition and the drive to make an impact. Today, I am honoured to receive the Client…
Liked by Souvik Kandar
-
Industrial giants Siemens, Schneider Electric and Phoenix Contact have released ICS security advisories on the May 2025 Patch Tuesday…
Industrial giants Siemens, Schneider Electric and Phoenix Contact have released ICS security advisories on the May 2025 Patch Tuesday…
Liked by Souvik Kandar
-
Reading posts like this hits me in a beautiful ”duality” kind of way, as it feels just as amazing as it feels surreal. whenever I hear / see /…
Reading posts like this hits me in a beautiful ”duality” kind of way, as it feels just as amazing as it feels surreal. whenever I hear / see /…
Liked by Souvik Kandar
-
I became Greedy and it cost me: Back when I was a client facing CISO at Unisys managing $100M+ accounts like Globe Life, VicRoads, Cal State…
I became Greedy and it cost me: Back when I was a client facing CISO at Unisys managing $100M+ accounts like Globe Life, VicRoads, Cal State…
Liked by Souvik Kandar
Other similar profiles
Explore collaborative articles
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Explore MoreOthers named Souvik Kandar in India
-
Souvik Kandar
Design Engineer
-
Souvik Kandar
-
souvik kandar
Senior Project Engineer at Greenshift Technologies
-
SOUVIK KANDAR
Engineer at GREENSHIFT TECHNOLOGIES
5 others named Souvik Kandar in India are on LinkedIn
See others named Souvik Kandar