by CIRT Team
Enhancing Situational Awareness on Emerging Cyber Threats
The Bangladesh Government’s Computer Incident Response Team (BGD e-GOV CIRT) carries out its primary mission of safeguarding the nation’s cyberspace through proactive management of computer security incidents and related activities. This mission involves close collaboration with international organizations and entities to effectively mitigate risks. Our goal is to maintain a continuous state of vigilance and preparedness, both in anticipation of potential incidents and in response...
Read More
![UPDATE ON SITUATIONAL ALERT](https://www.cirt.gov.bd/wp-content/uploads/2023/08/Screenshot-2023-08-08-122249.png)
by CIRT Team
UPDATE ON SITUATIONAL ALERT
August 8, 2023 This report serves as an update to the ‘SITUATIONAL ALERT ON CYBER THREATS’ issued on 4th August. It provides an Indicator of Compromise (IOC) list which organizations may use for their preventive security measures. For the full document click here
![SITUATIONAL ALERT ON CYBER THREATS – August 2023](https://www.cirt.gov.bd/wp-content/uploads/2023/08/Screenshot-2023-08-04-at-18-01-08-Situational-Cyber-Threat-Alert-from-BGD-e-GOV-CIRT-4.8.2023.pdf.png)
by CIRT Team
SITUATIONAL ALERT ON CYBER THREATS – August 2023
Get the full PDF Here Get the full PDF Here
![Press Release July 08 2023: Alert from CIRT](https://www.cirt.gov.bd/wp-content/uploads/2023/07/Screenshot-2023-07-09-at-15-22-27-press-release-security-alert-from-CIRT-08July23.pdf.png)
![Press Release: Situational Alert on Cyber Threats, June 2023](https://www.cirt.gov.bd/wp-content/uploads/2023/06/Screenshot-2023-06-30-at-22-45-47-press-release-security-alert-from-CIRT-26June23.pdf.png)
by CIRT Team
Press Release: Situational Alert on Cyber Threats, June 2023
Here is the press release. Please click on the document below for full view.
by CIRT Team
Press release April 2023: Situational Security Alerts from CIRT
In the advent of EID holidays, Bangladesh Government’s Computer Incident Response Team (BGD e–Gov CIRT) would like to assure the security of the critical information infrastructures (CII), banks andfinancial institutions, health care and all sorts of government and private organizations by sharing alist of top threats to be vigilant for any suspicious activities in their infrastructure to prevent any sortof intrusion or disruption to their...
Read More
![Security Best Practices](https://www.cirt.gov.bd/wp-content/uploads/2023/03/vulnerability-medium.jpeg)
by CIRT Team
Password Policy best practices Create a strong, complex and long password. Use multi-factor authentication for login where possible. Avoid save password in browser. Generic best practices Do not install additional software or server roles on DCs Implement patch management. Use secure DNS services to block malicious domains Ensure business continuity plan (BCP). Use security baselines and benchmarks. Inform and educate users about cyber threats and...
Read More
![Dropbox discloses breach after hacker stole 130 GitHub repositories](https://www.cirt.gov.bd/wp-content/uploads/2022/11/dropbox-account-hack.png)
Dropbox discloses breach after hacker stole 130 GitHub repositories
Dropbox disclosed a security breach after threat actors stole 130 code repositories after gaining access to one of its GitHub accounts using employee credentials stolen in a phishing attack. The company discovered the attackers breached the account on October 14 when GitHub notified it of suspicious activity that started one day before the alert was sent. “To date, our investigation has found that the code...
Read More
![ABOUT “BLUEBLEED”SERVICE AND THE VULNERABILITY OF MICROSOFT AWS SERVERS](https://www.cirt.gov.bd/wp-content/uploads/2022/10/1666240160_10790277_40.jpg)
ABOUT “BLUEBLEED”SERVICE AND THE VULNERABILITY OF MICROSOFT AWS SERVERS
Attack infoFirst seen 2022-09-24 • Last seen 2022-10-19On October 19, 2022, Socradar announced a vulnerability they discovered in several misconfiguredMicrosoft AWS servers. They also announced the launch of the BlueBleed service, which contains datadownloaded from several misconfigured Microsoft AWS servers.Link to the Socradar announcement – hxxps://socradar[.]io/sensitive-data-of-65000-entities-in-111-countries-leaked-due-to-a-single-misconfigured-data-bucket/ The exposed files in the misconfigured bucket include; POE documents,SOW documents,Invoices,Product orders,Product offers,Project details,Signed customer documents,POC (Proof of Concept)...
Read More
![New PHP information-stealing malware targets Facebook accounts](https://www.cirt.gov.bd/wp-content/uploads/2022/10/download-3.jpg)
New PHP information-stealing malware targets Facebook accounts
A new Ducktail phishing campaign is spreading a never-before-seen Windows information-stealing malware written in PHP used to steal Facebook accounts, browser data, and cryptocurrency wallets. Ducktail phishing campaigns were first revealed by researchers from WithSecure in July 2022, who linked the attacks to Vietnamese hackers. Those campaigns relied on social engineering attacks through LinkedIn, pushing .NET Core malware masquerading as a PDF document supposedly containing details about a marketing...
Read More