by CIRT Team
Honorable Secretary of ICT Division takes a glimpse over BGD e-GOV CIRT
It was a pleasure to meet Mr. Md. Shamsul Arefin, the recently appointed Secretary to the ICT Division. Mr. Abu Sayed Md. Kamruzzaman NDC, Director General, Digital Security Agency; Mr. Ranajit Kumar, Executive Director (Grade-1), Bangladesh Computer Council, and other high authorities were in his company during the visit. The CIRT team had the opportunity to briefly go over their projects and successes.
BGD e-GOV CIRT ranked 2nd in OIC CERT’s Annual Cyber Drill
“The 10th Arab Regional & Oman National CERT Cyber Drill 2022” took place on 7th November 2022 with the theme of “The Rapid Evolving of Cyber Threats Landscape in Parallel with Innovation in Cybersecurity Industry”. 24 teams from different OIC countries participated in the drill. BGD e-GOV CIRT team scored 100% points and secured 2nd position.
The new open-source tool scans public AWS S3 buckets for secrets
A new open-source ‘S3crets Scanner’ scanner allows researchers and red-teamers to search for ‘secrets’ mistakenly stored in publicly exposed or company’s Amazon AWS S3 storage buckets. Amazon S3 (Simple Storage Service) is a cloud storage service commonly used by companies to store software, services, and data in containers known as buckets. Unfortunately, companies sometimes fail to properly secure their S3 buckets and thus publicly expose stored...
Read More
Workshop on safe use of social media for women held on the occasion of Cyber Security Month
25th October, 2022 Press Release A workshop on safe use of social media for women was held on 24 October 2022 at the auditorium of Bangladesh Computer Council organized by BGD e-Gov CIRT. Mr. Rubaiyat Bin Modasser, Forensic Analyst of BGD e-Gov CIRT, presented the keynote at the workshop, which was organized with the aim of increasing the awareness of cyber security in the use...
Read More
Workshop on Cross Border Privacy Rules (CBPR)
25th October ,2022 Press Release On the occasion of cyber security awareness month, Information and Communication Technology Division and BGD e-GOV CIRT organized a workshop on Cross Border Privacy Rules (CBPR) which is practiced by the ASEAN countries on October 24 2022 in the conference room of Bangladesh Computer Council. Two experts, Beitas Broader and Joe Pettuso presented keynotes in the day-long workshop which was...
Read More
Signal will remove support for SMS text messages on Android
Signal says it will start to phase out SMS and MMS message support from its Android app to streamline the user experience and prioritize security and privacy. While this announcement may surprise those who don’t know Signal can also be used to manage this type of text message, the Signal for Android app could be configured as the default SMS/MMS app since its beginning as TextSecure, an...
Read More
Worok: A New Cyber Espionage Group Targeting Private and Local Government Entities Mostly in Asia
A new cyber espionage threat group that has been previously unknown named Worok and has been observed using undocumented tools targeting private and local government entities mostly in Asia. Based on the report by ESET, the group has been active for at least 2020 and observed a significant break in operation from 2021-05 to 2022-01, but in 2022-02, their operation resumed, targeting an energy company, and a public...
Read More
The North Korean Lazarus Group Hacked Energy Providers Worldwide
INTRODUCTION Cisco Talos observed North Korean state-sponsored APT Lazarus Group conducting malicious activity between February and July 2022. Lazarus has been previously attributed to the North Korean government by the U.S. Cybersecurity and Infrastructure Security Agency (CISA). The entry vectors involve the successful exploitation of vulnerabilities in VMWare products to establish initial footholds into enterprise networks, followed by the deployment of the group’s custom malware implants, VSingle and YamaBot. In...
Read More
Vice Society: a discreet but steady double extortion ransomware group
What is Vice Society? Vice Society is a little-known double extortion group that joined the cybercrime ecosystem a year ago. Since then, it showed a steady activity, encrypting and exfiltrating its victim’s data and threatening their victims to leak their information to pressure them into paying a ransom. Unlike other RaaS (Ransomware-as-a-Service) double extortion groups, Vice Society focuses on getting into the victim system to deploy ransomware binaries...
Read More
by CIRT Team
আর্থিক প্রতিষ্ঠান সাইবার ড্রিল ২০২২
BGD e-GOV CIRT গত বছরের মত এবারও সকল আর্থিক প্রতিষ্ঠানে কর্মরত সাইবার পেশাজীবিদের অংশগ্রহণের মাধ্যমে তাদের সাইবার নিরাপত্তায় ইন্সিডেন্ট হ্যান্ডলিং বিষয়ে দক্ষতা বৃদ্ধি ও সাইবার নিরাপত্তার ধারণা দেওয়ার জন্য আগামী ২২ অক্টোবর ২০২২ তারিখে Financial Institution Cyber Drill 2022 এর আয়োজন করতে যাচ্ছে। Registration এর জন্য প্রতিটি দলের জন্য ১০,০০০ (দশ হাজার) টাকা নিবন্ধন ফি ধার্য্য করা হয়েছে যা CIRT এর e-shop এর মাধ্যমে পেমেন্ট...
Read More
