17 Sep 2020
Bangladesh Government’s e-Government Computer Incident Response Team (BGD e-GOV CIRT), currently serving as the National CIRT of Bangladesh (N-CERT) with responsibilities including but not limited to receiving, reviewing, and responding to computer security incidents and activities in territory of Bangladesh as well as keeping close collaboration with international partners to secure the cyberspace of Bangladesh. BGD e-GOV CIRT reviews and takes necessary measures to resolve the issues with broad cybersecurity ramifications, conducts research & development and provides guidance on security threats & vulnerabilities. BGD e-GOV CIRT also work with various Government Agencies, Critical Information Infrastructures (CII), Financial Organizations, Law Enforcement Agencies (LEA), Academia & Civil Societies to help improving the cybersecurity landscape of Bangladesh. BGD e-GOV CIRT has a very strong tie with international organizations and cybersecurity communities and working as a focal point for Bangladesh for trans-border cyber issues.
BGD e-GOV CIRT has a service catalog of its own which lists all the services provided by the team on payment basis. Click to view Service Catalogue.
Honourable Prime Minister
Sajeeb Wazed Joy
Adviser to Hon’ble PM for ICT Affairs
Zunaid Ahmed Palak
Hon’ble State Minister
N M Zeaul Alam
Tarique M Barkatullah
Description:An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC), aka ‘Netlogon Elevation of Privilege Vulnerability’. The prime elements of this vulnerability are the weak encryption standards and the authentication process used in the...
A threat actor is launching brute-force attacks on MSSQL servers in the attempt to access them to install a new crypto-mining malware dubbed MrbMiner.According to security firm Tencent, the team of hackers has been active over the past few months by hacking into Microsoft SQL Servers (MSSQL) to install a...
DESCRIPTION Adobe has released an out-of-band security update for Adobe Media Encoder that fixes three ‘Important’ security vulnerabilities. The three vulnerabilities are classified as ‘Information Disclosure,’ which could allow sensitive information to be leaked in the security of the active user. Adobe advises customers to update the vulnerable apps to...
The proliferation of technology has paved way for us to consume various services from ordering food online, to communicating with our loved once via social media. As all of the services we access via the internet are usually separate entities, we need to provide password for every website. Although many...
Google has patched a major security bug impacting the Gmail and G Suite email servers. The bug could have allowed a threat actor to send spoofed emails mimicking any Gmail or G Suite customer. The issue was identified and reported to Google in April, though the search giant took over...
A phishing campaign is a kind of scam ran through email and intended to snip personal information from victims. Phishing basically depend on a vulnerability we can never fully abolish- human mistakes. The theme of the attack or the lure to attract human errors to commit the mistake depends on...
14 Sep 2020
10 Sep 2020