Nipuna WEERASEKARA

[email protected]



Madrid, Spain

I am a web developer turned security and privacy researcher. I have published and presented on the research areas of software vulnerability remediation, web application security, and vulnerability remediation in open-source. Currently, I am a PhD student at IMDEA Networks Institute in Madrid, Spain, under the supervision of Professor Narseo VALLINA-RODRÍGUEZ. In a previous life, I contributed to the development of Sri Lanka’s largest Bug Bounty Platform Bug Zero.

Currently, I study the privacy and security in Android mobile applications and try to understand how we can improve the usability of Android permissions ecosystem to increase and ensure user privacy.

Apart from my work, I love tv, cinema, and indie music. In my leisure time, I contribute to open-source projects, write technical articles, and read and discuss philosophy. Also, occasionally I upload funny video clips to my YouTube channel too.


Publications

  1. CMOT
    Vaccination trials on hold: malicious and low credibility content on Twitter during the AstraZeneca COVID-19 vaccine development
    Horawalavithana, Sameera, De Silva, Ravindu, Weerasekara, Nipuna, Kin Wai, NG, Nabeel, Mohamed, Abayaratna, Buddhini, Elvitigala, Charitha, Wijesekera, Primal, and Iamnitchi, Adriana
    In Computational and Mathematical Organization Theory, 2022
  2. ACM CCS
    Demo: Large Scale Analysis on Vulnerability Remediation in Open-Source JavaScript Projects
    Bandara, Vinuri, Rathnayake, Thisura, Weerasekara, Nipuna, Elvitigala, Charitha, Thilakarathna, Kenneth, Wijesekera, Primal, De Zoysa, Kasun, and Keppitiyagama, Chamath
    In Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security, 2021
  3. SCAM
    Fix that Fix Commit: A real-world remediation analysis of JavaScript projects
    Bandara, Vinuri, Rathnayake, Thisura, Weerasekara, Nipuna, Elvitigala, Charitha, Thilakarathna, Kenneth, Wijesekera, Primal, and Keppitiyagama, Chamath
    In 2020 IEEE 20th International Working Conference on Source Code Analysis and Manipulation (SCAM), 2020