Cyber criminals are rampant during holidays like Eid. Bangladesh Government’s Computer Incident Response Team (BGD e-GOV CIRT) has issued a warning to protect them from unwanted attacks.
To ensure the security of Critical Information Infrastructure (CII), banks and financial institutions, healthcare and all forms of government, the organization on Monday issued an alert list to organizations to prevent any intrusion or disruption in their IT operations and services.
The BGD e-GOV CIRT also lists top infrastructure risk organization types, top attack pattern identification and potential attackers.
Organizations at risk of cyberattacks include, in order, government, military and law enforcement agencies, banking and financial institutions, pharmaceuticals, retail and industrial establishments, and the energy and education sectors, it said.
And DDoS are at the top of the most targeted attack types in Bangladesh’s cyberspace. According to the agency’s observations, ransomware attacks increased in the second quarter of this year. Web shell injection techniques using web defacements, sophisticated phishing using AI tools, ‘Redline Stealers’ capable of stealing confidential information and APT campaigns are underway during the Eid holidays.
Ransomware and APT threats like ‘Money Message’ and ‘Akira’, ScriptKids, an underground hacker group are based in South Asia.
BGD e-GOV CIRT then provides several guidelines to stay secure besides ensuring that important services like DNS, NTP and Network Middlebox are securely configured and not exposed to the Internet.