by CIRT Team
New FinSpy iOS and Android implants revealed ITW
FinSpy is spyware made by the German company Gamma Group. Through its UK-based subsidiary Gamma International Gamma Group sells FinSpy to government and law enforcement organizations all over the world. FinSpy is used to collect a variety of private user information on various platforms. Its implants for desktop devices were first described in 2011 by Wikileaks and mobile implants were discovered in 2012. Since then...
Read More
by CIRT Team
Operation Soft Cell: A Worldwide Campaign Against Telecommunications Providers
An advanced, persistent attack targeting telecommunication providers, active since at least 2012, according to Cybereason researchers. The attack, dubbed Operation Soft Cell, was aiming to obtain all data stored in the active directory of a large telecommunications provider, compromising usernames and passwords within the organization, as well as billing information, call detail records, credentials, email servers, and personal identifiable information. The attack consisted of customized...
Read More
by CIRT Team
Sodinokibi Ransomware Now Pushed by Exploit Kits and Malvertising
Exploit kit researcher nao_sec has discovered “Sodinokibi” ransomware is now being distributed though malvertising that leads to the RIG exploit kit. Sodinokibi has been making news since the “GandCrab” family of ransomware has retired, but by distributing through hacking sites to replace legitimate software with ransomware, and by hacking into the backends of Managed Service Providers (MSPs). The new use of exploit kits shows Sodinokibi...
Read More
by CIRT Team
Riltok mobile Trojan: A banker with global reach
Kaspersky Lab researchers have identified a new variant of the Riltok mobile banking trojan that has been in operation since March 2018. The actors distributing Riltok have primarily focused on targeting individuals that reside in Russia, but versions for markets in France, Italy, Ukraine, and the United Kingdom have been detected in 2019. The trojan is distributed via SMS with a malicious link pointing to...
Read More
by CIRT Team
High Commissioner of India, Dhaka visits BGD e-GOV CIRT Operations Center
High Commissioner of India, Ms Riva Ganguly Das has visited BGD e-GOV CIRT Security operations center on 19 June, 2019. She visited different components of BGD e-GOV CIRT and got briefed about the daily activities of security operations center, cycler censor activities, cyber range lab and digital forensic lab. Hon’ble state Minister Zunaid Ahmed Palak MP, Secretary of ICT Division N M Zeaul Alam, Executive...
Read More
by CIRT Team
BGD e-GOV CIRT has topped on Cybersecurity Drill – arranged by Sandia National Laboratories, US
Sandia National Laboratories Center for Global Security and Cooperation (operated by National Technology and Engineering Solutions of Sandia, LLC.) – Operated for the United States Department of Energy arranged two days hands on training on the “Countering DPRK Cyber Operations Workshop” held on 11 – 1 2 June 2019 at Dhaka, Bangladesh. The purpose of the workshop was to understand and prevent DPRK illicit cyber...
Read More
by CIRT Team
BGD e-GOV CIRT has become the Accredited Team of TF-CSIRT
The Trusted Introducer (TI) provides European CSIRTs (Computer Security Incident Response Teams) with a public repository that lists all known European CSIRTs and explains about the TI’s accreditation service. This service is meant to do just that: facilitate trust by formally accrediting CSIRTs that are ready to take that step. Earlier in September 2018, BGD e-GOV CIRT has been “listed” as Trusted Introducer of TF-CSIRT....
Read More
by CIRT Team
How Facebook`s 50m user was hacked
When you log into your facebook using your id and password- you get an access token in return. These tokens are the equivalent of digital keys that keep people logged in to Facebook, so they don’t need to re-enter their password every time they use the app. This access token is used to prove your identity throughout all your activities in facebook- the likes/comments that...
Read More
by CIRT Team
BGD e-GOV CIRT has successfully participated on OIC-CERT Cybersecurity Drill – 2018 with 75% Score
Background OIC-CERT CYBER SECURITY DRILL is an annual event for OIC-CERT members to build a better and secure Cybersecurity ecosystem, including the capacity in incident handling with suitable and comprehensive response as well as engaging better collaboration and coordination among CSIRT organizations from different countries. The final goal of this event is to get a more realistic experience in anticipating and handling some incidents related...
Read More
by CIRT Team
BGD e-GOV CIRT is now Trusted Introducer of TF-CSIRT
BGD e-GOV CIRT has been listed as Trusted Introducer of TF-CSIRT from 14 September 2018. Constituency of BGD e-GOV CIRT are all governmental institutions of Bangladesh. Constituency sector is “government” and constituency type is “mixed” (internal and external). Part of the constituency is using National Data Center (NDC) located at BCC where host their IT resources and services. Security and Incident Response teams manage the...
Read More
