by CIRT Team
Situational Awareness for Eid-Ul-Fitr 2025 Holidays
The Bangladesh Government’s Computer Incident Response Team (BGD e-GOV CIRT), BCC is working to protect the nation’s cyberspace by proactively managing computer security incidents and related threats. As the long Eid holidays approach, cybercriminals may attempt to exploit security gaps due to reduced monitoring and response capabilities. The CTI unit of BGD e-GOV CIRT has recently detected multiple web-based attack attempts, particularly targeting non-office hours...
Read More
by CIRT Team
Annual Procurement Plan for the Fiscal Year 2024-25 (Revised)
Annual Procurement Plan for the Fiscal Year 2024-25 (Revised) has been published. Click Here to Download the Document
by CIRT Team
Critical Vulnerability (CVE-2018-19410) Exposes 600 PRTG Instances in Bangladesh
As part of BGD e-GOV CIRT continuous efforts to monitor emerging threats and vulnerabilities that could compromise national security, our Cyber Threat Intelligence Unit has identified 600 vulnerable PRTG instances in Bangladesh affected by CVE-2018-19410—a critical-severity vulnerability. This Local File Inclusion (LFI) and Authentication Bypass flaw is actively exploited by cybercriminals and is listed in CISA’s Known Exploited Vulnerabilities (KEV) Catalog. This vulnerability, affecting PRTG...
Read More
by CIRT Team
Emerging Phishing Attack on Cyber Space of Bangladesh
TLP: CLEAR Distribution: Public Type of Threat: Phishing E-Mail Date: 12 January 2025 Executive Summary Recently, we have observed a surge in phishing attacks targeting various government organizations, law enforcement agencies, educational institutions, and others, with the attacks spreading further through compromised accounts. This campaign is targeted to steal sensitive information by impersonating official entities and leveraging malicious attachments and links. This advisory provides details...
Read More
Request for Expression of Interest : Applications are wanted for 2 Vacancies of Individual Consultant
Strengthening of BGD e-GOV CIRT Project under Bangladesh Computer Council and announces the vacancies for the following consultant position for the project. Details of the vacancies are given below. Click here to View or Download the REoI Download the Document from here Guidance notes on the use of the Standard Request for Application (SRFA) for selection of Individual Consultants are provided in Microsoft word format....
Read More
by CIRT Team
Active Exploitation of Critical F5 BIG – IP Vulnerability (CVE–2023-46747) Uncovered in Bangladesh
TLP: CLEAR Distribution: Public Type of Threat: RCE Vulnerability (CVE-2023-46747) Date: 06 November 2024 Executive Summary The Cyber Threat Intelligence Unit of the Bangladesh e-GOV Computer Incident Response Team (BGD e-GOV CIRT) has uncovered active evidence of compromise associated with a critical vulnerability in F5 BIG-IP systems, widely used across Bangladesh’s IT infrastructure. The investigation revealed that attackers managed to gain shell access on...
Read More
by CIRT Team
Emerging Threat_Stealer Malware (Lumma C2) Campaign with fake CAPTCHA pages
The Cyber Threat Intelligence (CTI) Unit at BGD e-GOV CIRT has recently identified a stealer malware campaign linked to the notorious Lumma Stealer malware family. Further investigation has revealed that multiple variants of stealer malware are being distributed using similar tactics. This report details how our threat intelligence researchers detected and analyzed this evolving malware campaign. Our CTI Unit has been actively monitoring stealer malware...
Read More
by CIRT Team
Detection of Fog Ransomware Footprint in Cyber Space of Bangladesh
The Bangladesh e-Government Computer Incident Response Team (BGD e-GOV CIRT) has identified multiple IP addresses linked to the Fog Ransomware group (aka Lost in Fog) within Bangladesh. These addresses appear to originate from Russia, suggesting that the attackers might be operating from or routing their activities through that region. However, the exact location of the attackers remains uncertain due to their use of advanced masking...
Read More
by CIRT Team
Ransomware Attack to Service Providers of Financial Institutions
The BGD e-GOV CIRT team has observed a significant increase in global cyber-attacks target service providers that exclusively serve financial institutions. A recent ransomware attack on a technology service provider has led to the temporary shutdown of payment systems across nearly 300 financial institutions in a neighboring country. This alarming trend highlights the critical need for enhanced cybersecurity measures. Advisory Document Link
