Situational Awareness for Eid-Ul-Fitr 2025 Holidays
by CIRT Team
The Bangladesh Government’s Computer Incident Response Team (BGD e-GOV CIRT), BCC is working to protect the nation’s cyberspace by proactively managing computer security incidents and related threats. As the long Eid holidays approach, cybercriminals may attempt to exploit security gaps due to reduced monitoring and response capabilities. The CTI unit of BGD e-GOV CIRT has recently detected multiple web-based attack attempts, particularly targeting non-office hours and weekly holidays. Prominent web attack patterns include SSH brute force, SQL injection, PHP CGI-bin exploits, and directory traversal attacks, all aiming for unauthorized access or exploitation.
Additionally, several cyberattacks have been observed targeting Bangladesh in the past week. Notably, 26,887 IP addresses were identified with one or more exposed vulnerabilities, increasing the risk of exploitation.
We urge all entities in Bangladesh to implement the following measures to strengthen the security of their infrastructure:
-
- Maintain 24/7 system and network monitoring.
- Keep security tools (SIEM, IDS/IPS, WAF) active to detect threats.
- Use only approved VPN and MFA for external access.
- Restrict connections from public or unsecured networks.
- Prohibit outdated or unpatched software.
- Maintain secure backups of critical data and be prepared to activate disaster recovery protocols.
- Restrict unnecessary access, especially during holidays and disable unused or temporary accounts.
- Report incidents to relevant cybersecurity authorities. You may inform the detection of IOCs and/
or any suspicious activities you observe within your environment, to BGD e-GOV CIRT through
email: cti@cirt.gov.bd or cirt@cirt.gov.bd
Download the Situational Awareness for Eid-Ul-Fitr 2025 Holidays
Recommended Posts
Subscribe here
MEMBER OF:
