Tuesday , December 24 2024
"Bangladesh cyber security intelligence"
"Bangladesh cyber security intelligence" logo taken from facebook page

“Bangladesh cyber security intelligence” (BCSI), As far as known!

While surfing the internet for the regular activities, suddenly found a domain named (bcsi.gov.bd), “Bangladesh cyber security intelligence” (BCSI) in elaborating form. Curious mind wants to know the fact, so deep dive the domain and found a Facebook page also.

According to the website, “Bangladesh cyber security intelligence” (BCSI) to work aiming “to proactively defend and secure Bangladesh’s cyber landscape through advanced threat intelligence, robust cyber security collaboration, and continuous research and development. We strive to empower national cyber security capabilities and ensure comprehensive national asset monitoring and cyber threat prevention.”

Splunk targets Bangladeshi market: Investing in local talent

Splunk, a unified security and observability platform turn its focuses on Bangladeshi market. On Monday (23 December) Splunk's local partner...
Read More
Splunk targets Bangladeshi market: Investing in local talent

Critical PHP Zero-Day Vulnerability found in Craft CMS To Gain RCE

A major security flaw in Craft CMS, a popular PHP content management system, has been found, enabling unauthenticated remote code...
Read More
Critical PHP Zero-Day Vulnerability found in Craft CMS To Gain RCE

For US$2.6bn, Mastercard acquires threat intelligence firm Recorded Future

Mastercard has completed its acquisition of Recorded Future, an AI-based threat intelligence provider. Mastercard has acquired the company for $2.65...
Read More
For US$2.6bn, Mastercard acquires threat intelligence firm Recorded Future

Eight New ICS Advisories released by CISA

CISA has released eight advisories on vulnerabilities in Industrial Control Systems (ICS). These vulnerabilities affect essential software and hardware in...
Read More
Eight New ICS Advisories released by CISA

Authority Denies
Hacker claim ransomware attack on Indonesia’s state bank BRI

Bank Rakyat Indonesia (BRI), the largest state bank by assets, has assured customers that their data and funds are secure...
Read More
Authority Denies  Hacker claim ransomware attack on Indonesia’s state bank BRI

London-based company “Builder.ai” reportedly exposed 1.2 TB data

Cybersecurity researcher Jeremiah Fowler reported to Website Planet that he found a non-password-protected 1.2 TB dataset containing over 3 million...
Read More
London-based company “Builder.ai” reportedly exposed 1.2 TB data

(CVE-2024-12727, CVE-2024-12728, CVE-2024-12729)
Sophos resolved 3 critical vulnerabilities in Firewall

Sophos has fixed three separate security vulnerabilities in Sophos Firewall.  The vulnerabilities CVE-2024-12727, CVE-2024-12728, and CVE-2024-12729 present major risks, such...
Read More
(CVE-2024-12727, CVE-2024-12728, CVE-2024-12729)  Sophos resolved 3 critical vulnerabilities in Firewall

“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA

A time-demanding workshop on "Cybersecurity Awareness and Needs Analysis" was held on Thursday (December 19) at Bangladesh Bank Training Academy...
Read More
“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA

CVE-2023-48788
Kaspersky reveals active exploitation of Fortinet Vulnerability

Kaspersky's Global Emergency Response Team (GERT) found that attackers are exploiting a patched SQL injection vulnerability (CVE-2023-48788) in Fortinet FortiClient...
Read More
CVE-2023-48788  Kaspersky reveals active exploitation of Fortinet Vulnerability

U.S. Weighs Ban on Chinese-Made Router TP-Link: WSJ reports

The US government is considering banning a well-known brand of Chinese-made home internet routers TP-Link due to concerns that they...
Read More
U.S. Weighs Ban on Chinese-Made Router TP-Link:  WSJ reports

Bangladesh cyber security intelligence (BCSI) sites shows the main five category they will be working including National cyber security research (NCSR), national vulnerability disclosure program (NVDP), national attack surface (NAS), cyber security projects (NSP), and alert and advisories (a2).

While visiting in the page, there are some news articles of both national and international affairs of recent happening.

Having the objective of facilitate responsible disclosure, enhance cyber security posture and fostering collaboration, BCSI to run national vulnerability disclosure program (NVDP) to serves as a centralized platform for security researchers to responsibly disclose vulnerabilities they discover in the systems and applications deployed across various government entities.

By establishing a clear and transparent process for reporting vulnerabilities, the NVDP facilitates timely mitigation efforts, reducing the risk of exploitation and enhancing overall cyber security resilience.

It’s a collaborative initiative between the government and the cyber security research community to enhance the security posture of the nation’s digital infrastructure. This program aims to establish a structure framework for responsible vulnerability disclosure, enabling security researchers to report identified vulnerabilities in a safe and efficient manner, the site reads.

Anyone can submit a report through “[email protected]”, upon approval through the process of submission of vulnerabilities, assessment and mitigation and finally researchers will get acknowledgement and reward.

Source: Bangladesh cyber security intelligence” (BCSI) website

“Hall of Fame: National Cyber Heroes” recognizes National Vulnerability Disclosure Program (NVDP), where the remarkable individuals who embody the spirit of patriotism and dedication to national cyber security. These awesome guys committed to safeguard countries nation’s digital infrastructure, demonstrating exceptional skill, integrity protecting country’s critical assets and sensitive information. So, anyone maintaining all procedure can be a national cyber hero through NVDP program.

Source: Bangladesh cyber security intelligence” (BCSI) website

According to the site, BCSI’s “Bangladesh threat landscape” (monthly) report coming soon where malware infection, vulnerable service, open port, DDoS potential, exposed and open services include.

“Bangladesh cyber security intelligence”(BCSI) social handle (Facebook) page shows it’s a public and government service and have a contact mail and website address.

No other clear information is here like who the authority/body is or which ministry belongs to it.

On Sunday (04.05.2024) Bangladesh cyber security intelligence (BSCI) call on researchers for National Vulnerability Disclosure Program (NVDP) on their Facebook page.

Source: Bangladesh cyber security intelligence” (BCSI) Facebook page

The post reads, “National Vulnerability Disclosure Program (NVDP) is a government initiative and a project of Bangladesh Cyber Security Intelligence (BCSI) aimed at protecting and enhancing Bangladesh’s cyber security infrastructure. Our goal is to build a Smart Bangladesh enabled by secure digital infrastructure.

We believe that cyber security is a team sport, and there are various ways to collaborate with BCSI. Whether partnering with allies, industry, or researchers to strengthen cyber security awareness, we aim to advance the state of cyber security.

If you are a security researcher interested in participating in the NVDP, please review our guidelines and apply to become an NVDP researcher”. They provide a link for the registration.

The story is ongoing. Keep in touch

(Media Disclaimer: This report is based on research conducted internally and externally using different ways. The information provided is for reference only, and users are responsible for relying on it. Infosecbulletin is not liable for the accuracy or consequences of using this information by any means)

Check Also

participants

Workshop on “DDoS use cases & solutions for government & BFSI” held at BCS

A workshop on “DDoS use cases & solutions for government & BFSI” held at Bangladesh …

Leave a Reply

Your email address will not be published. Required fields are marked *