Thursday , June 26 2025
NVDP

BCSI officially announce National Vulnerability Disclosure Program (NVDP)

Bangladesh Cyber Security Intelligence (BCSI) officially launch the National Vulnerability Disclosure Program (NVDP) to enhance the country’s cybersecurity. This initiative aims to create a secure platform for ethical hackers, researchers, and organizations to work together in identifying and addressing vulnerabilities that threaten government systems, critical infrastructure, and private sector entities.

NVDP aims to leverage the skills of top cybersecurity professionals in the country. It promotes responsible vulnerability disclosure to address potential threats proactively and effectively.

Citrix Released Emergency Patches for Actively Exploited CVE-2025-6543

Citrix has issued security updates for a critical vulnerability in NetScaler ADC that has been actively exploited. The vulnerability CVE-2025-6543...
Read More
Citrix Released Emergency Patches for Actively Exploited CVE-2025-6543

SonicWall warns of a trojanized NetExtender stealing VPN logins

SonicWall warned on Monday that unknown attackers have trojanized its SSL-VPN NetExtender application, tricking users into downloading it from fake...
Read More
SonicWall warns of a trojanized NetExtender stealing VPN logins

CVE-2025-36537
TeamViewer patched vuln allowing hacker SYSTEM Rights

A significant security vulnerability has been revealed in TeamViewer Remote Management for Windows, posing a risk of privilege escalation attacks....
Read More
CVE-2025-36537  TeamViewer patched vuln allowing hacker SYSTEM Rights

Hacker Target 70+ Microsoft Exchange Servers to Steal Credentials with Keyloggers

Unidentified hackers are targeting exposed Microsoft Exchange servers to inject harmful code into login pages and steal credentials. Positive Technologies...
Read More
Hacker Target 70+ Microsoft Exchange Servers to Steal Credentials with Keyloggers

WhatsApp banned on all US House of Representatives devices

The U.S. House of Representatives has banned congressional staff from using WhatsApp on government devices due to security concerns, as...
Read More
WhatsApp banned on all US House of Representatives devices

Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store

Kaspersky found a new mobile malware dubbed SparkKitty in Google Play and Apple App Store apps, targeting Android and iOS....
Read More
Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store

OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems

OWASP has released its AI Testing Guide, a framework to help organizations find and fix vulnerabilities specific to AI systems....
Read More
OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems

Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform

In a major milestone for the country’s digital infrastructure, Axentec PLC has officially launched Axentec Cloud, Bangladesh’s first Tier-4 cloud...
Read More
Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform

Hackers Bypass Gmail MFA With App-Specific Password Reuse

A hacking group reportedly linked to Russian government has been discovered using a new phishing method that bypasses two-factor authentication...
Read More
Hackers Bypass Gmail MFA With App-Specific Password Reuse

Russia detects first SuperCard malware attacks via NFC

Russian cybersecurity experts discovered the first local data theft attacks using a modified version of legitimate near field communication (NFC)...
Read More
Russia detects first SuperCard malware attacks via NFC

Key objectives of the program include:

Strengthening National Cybersecurity: Creating a clear way to find and fix weaknesses in critical systems before they can be used.

Empowering Ethical Hackers: Providing a platform for Bangladesh’s best cybersecurity experts to help protect the nation while receiving acknowledgment and rewards for their work.

Protecting Critical Sectors: Working with financial institutions, critical infrastructure organizations, and government agencies to protect them from new threats.

Fostering Public-Private Collaboration: Working together with government and private sectors to improve cybersecurity in Bangladesh.

Key Features of NVDP:

The NVDP is built on the principles of transparency, integrity, and security, and is guided by the following core features:

Verified Researcher Participation: Only verified cybersecurity researchers will have access to the NVDP platform, ensuring all participants uphold high standards of professionalism and ethics.

Confidentiality and Safe Harbor: Researchers’ identities and vulnerability reports are kept private, and the program offers protection for researchers to report vulnerabilities without fear of punishment.

Structured Agreements: Organizations sign detailed agreements that explain the program’s purpose, safety rules, and behavior guidelines, promoting a collaborative and legally secure environment.

Controlled Access to Programs: NVDP invites only qualified researchers to participate in specific programs based on their expertise and the sensitivity of the target scope.

Empowering Cybersecurity Talent:

NVDP enhances vulnerability disclosure by emphasizing talent development and capacity building. It identifies and empowers leading cybersecurity professionals in Bangladesh, providing them with valuable opportunities.

Secure National Assets: Protect government and private systems, like banks and essential services.

Earn Recognition and Rewards: Earn financial rewards, recognition, and career growth for contributions.

Build Expertise: Access exclusive programs and challenges to improve cybersecurity skills and knowledge.

By fostering a community of skilled professionals, NVDP aims to establish Bangladesh as a global leader in cybersecurity talent and innovation.

How to Get Involved:

For Researchers:

Ethical hackers and cybersecurity researchers are encouraged to join NVDP as verified participants. The onboarding process includes:

Submitting proof of competency, such as bug hunting experience, certifications, or CTF participation.
Completing identity verification to become an officially recognized NVDP researcher.
Gaining access to private programs tailored to your expertise and interests.

For Organizations:

Government and private sector organizations can collaborate with NVDP to safeguard their systems and infrastructure. By participating in the program, organizations will:

Gain access to a pool of top cybersecurity talent.
Receive detailed vulnerability reports and mitigation strategies.
Enhance their overall cybersecurity posture through proactive measures.

The NVDP welcomes cybersecurity professionals, ethical hackers, and organizations to join the National Vulnerability Disclosure Program (NVDP) for a safer Bangladesh.

Check Also

Bangladesh Revenue Market For Data Center Is Projected US$615.59m in 2025

Highlights: # Revenue in the Data Center market is projected to reach US$615.59m in 2025. …

Leave a Reply

Your email address will not be published. Required fields are marked *