Bug Bounties and Penetration Testing: The Security Roots of Akam Hamak’s Career

Before he was an investor or an operator of internet businesses, Akam Hamak spent time on the other side of the screen, probing software for weaknesses other people had missed. He conducted security research and penetration testing, earning bug bounties for finding vulnerabilities and disclosing them responsibly. It is an unusual line on a young entrepreneur’s history, and a revealing one.

Bug bounty work is a distinct discipline with its own demands. Companies invite researchers to find flaws in their systems and reward them for valid, responsibly reported discoveries. Success requires patience, persistence, and a habit of looking closely where everyone else assumes things are secure. You are not handed a problem to solve; you have to find the problem first, often where no one believes one exists.

The reward structure is unforgiving in a way that builds character. You are paid only when you find something genuinely real, and only when you handle the disclosure ethically. There is no credit for effort alone, no participation prize for hours spent. That regime trains a specific kind of results-oriented patience: the willingness to invest significant time in work that may yield nothing, in pursuit of the occasional finding that matters.

Those habits transfer directly to how Hamak now evaluates businesses and investments. The same instinct that locates a hidden flaw in a software system can locate the weak point, or the overlooked opportunity, in a company. Diligence, skepticism, and a refusal to accept surface appearances are the shared skills, equally valuable to a penetration tester and to an investor sizing up an acquisition.

The work also deepened his technical credibility. Hamak had been coding since his teens, and penetration testing pushed that knowledge in a particular direction, toward how systems break and how they are defended. Understanding software from an attacker’s perspective produces a more complete mental model than building alone ever could. He learned not just how to make things but how they fail.

That dual understanding informs his read on technology today. When Hamak evaluates an internet business to acquire or a digital asset to hold, he brings a security researcher’s eye for fragility and resilience. He can assess where the real risks sit, where the genuine strengths are, and which assurances are worth trusting, a depth of technical diligence that few young investors can match.

Hamak connects the discipline explicitly to one of his core traits. “Curiosity,” he says, is among the qualities that accelerate growth, and security research is curiosity in its most rigorous form. It is the impulse to ask how something really works, and what happens if you push on it here, pursued methodically until it yields an answer. That impulse never left him; it just found new targets.

There is an ethical dimension worth naming. Hamak earned his bounties by disclosing vulnerabilities responsibly, working within the rules that protect the systems and the people who rely on them. The choice to operate ethically, when the same skills could be misused, reflects a discipline of judgment that carries into his business conduct. He is careful about what he discloses and how, in security and in business alike.

He frames the whole arc, from coding to security to crypto to entrepreneurship, as a foundation rather than a list of jobs. Each phase built a layer of judgment that the next phase used. Security research, in particular, taught him to look beneath surfaces and to value rigor over assumption, instincts that now shape how he allocates time and capital.

It is also a reminder that technical depth and business judgment are not opposites. The popular image separates the hacker from the investor, but Hamak’s path shows how naturally one feeds the other. The skills that find a vulnerability, patience, scrutiny, systems thinking, are the same skills that find value others overlooked.

The ethical dimension of the work deserves emphasis, because it carries into everything else he does. Hamak earned his bounties by disclosing vulnerabilities responsibly, operating within the rules that protect both the systems and the people who depend on them, when the same skills could have been turned to harm. That choice reflects a discipline of judgment, not just of technique, and it maps onto how he conducts business: careful about what he discloses, deliberate about how, and unwilling to cut corners that compromise trust.

The discipline of the work shows up in how Hamak handles information generally. A researcher who spends time finding what others have exposed learns, almost by reflex, to be deliberate about what he reveals himself. That instinct for discretion is visible in how he manages his own public footprint today, sharing his philosophy and his path freely while guarding the specifics of his finances and operations. The security mindset did not just teach him to find weaknesses; it taught him to avoid creating his own.

For a founder who prizes calculated risk, the security background is almost too fitting. Penetration testing is the professional practice of finding exactly where risk hides, and Hamak built a career on understanding risk well enough to take the right kinds of it. The roots run deep, and they still shape how he sees every system he encounters. More on his background is available at his official site.

Learn more: akamhamak.com  |  Connect on X

Leave a Reply