At just 17 years old, Md Shariar Shahnawaz Shuvon — known online as “Shuvonsec” — has already secured a place among the world’s top ethical hackers. Hailing from Jhenaigati, a remote border area in Sherpur, Bangladesh, Shuvon has made international headlines by identifying and responsibly reporting critical cybersecurity vulnerabilities to global giants like NASA, Meta (Facebook), Amazon, Sony, and Google.
His contributions to the cybersecurity world have not gone unnoticed. NASA officially recognized Shuvon’s efforts through a formal appreciation letter signed by Mike Witt, NASA’s Senior Agency Information Security Officer. The letter praised Shuvon for his responsible disclosure of a vulnerability under NASA’s Vulnerability Disclosure Policy (VDP), highlighting his role in protecting NASA’s systems and advancing the organization’s mission in science, aeronautics, and space exploration.
In addition to his work with NASA, Shuvon has received acknowledgment from Meta for his discoveries in their advertising infrastructure. Through global bug bounty platforms like HackerOne, he continues to help major companies fix security issues before they can be exploited — a remarkable achievement for someone still in their teens.
Currently, Shuvon is pursuing a diploma in Information Technology at the University of Cyberjaya in Malaysia, balancing his studies with his passion for ethical hacking. But his mission extends beyond his personal achievements. Shuvon shares free tools, learning resources, and roadmaps for aspiring ethical hackers through his website and GitHub, championing a mindset captured in his personal motto: “I don’t learn to hack, I hack to learn.”
Shuvon’s journey proves that extraordinary talent can emerge from even the most unexpected corners of the world — and that one young individual’s curiosity and commitment can help safeguard the digital world on a global scale.