InfoSecBulletin Cybersecurity for mankind
Bug Hunt 2024, one of the largest cyber security competitions and conferences in Bangladesh, was successfully held at the ICT Tower in Agargaon, Dhaka On November 16, 2024. This groundbreaking initiative aims to enhance cyber security expertise and awareness in the cyber security landscape in the country.
Highlights of the Event:
Micropatches released for Windows zero-day leaking NTLM hashes
VMware Patches Authentication Bypass Flaw in Windows Tool
IngressNightmare
Over 40% of cloud environments are vulnerable to RCE
(CVE-2025-29927)
Urgently Patch Your Next.js for Authorization Bypass
Oracle refutes breach after hacker claims 6 million data theft
Russian zero-day seller to offer up to $4 million for Telegram exploits
Cybercriminals Exploit Checkpoint’s Driver in a BYOVD Attack
IBM and Veeam Release Patches in AIX System and Backup
WhatsApp patched zero-click flaw exploited in spyware attacks
CVE-2025-24472
CISA Warns of Fortinet FortiOS Auth Bypass Vuln Exploited in Wild
The day-long program commenced at 9:00 AM, participating 60 finalists selected from an online selection process earlier involving 300 ethical hackers from across the country. Participants identified vulnerabilities in various web platforms and proposed innovative solutions, leading to the announcement of winners for the first, second, and third positions. The champion of this event is Sheikh Ali Akbar, 1st runner up is Md. Karimul Islam Shezan and 2nd runner up is Mohammad Rhidoy.
The competition featured a total prize pool of 1.5 lakh BDT, awarded based on performance in various challenges. This platform provided an opportunity for participants to showcase their skills and fostered greater interest in cyber security.
“We can find bugs in the system in real time simulation, this help us to improve our professional skill and here we can get to grow our professional network”
“Networking and introducing to another environment help to be more passion in our job, so such event is really groundbreaking initiative”
“Such event help to grow our confidence, motivated ourselves to be more focused in our aim”
The event concluded with a special conference session attended by more than 300 cyber security professionals and students where distinguished experts including A. S. M. Shamim Reza, Founder, The Team Phoenix, Kaiser Yousuf Reagan, Senior Technical Project Manager, Bee tles Cyber Security, Muztahidul Islam Tanim, Team Lead, Security Consultant, Secure Layer7, Mehedi Hasan Remon, Security Engineer, RedSentry, Imran Huda, Security Engineer, Factorial HR, Md Sadikul Islam, Application Security Engineer, Disclosify Limited and Md Golam Rabbi , Independent Security Researcher, Yogosha Strike Force addressed various challenges and solutions in the field of cybersecurity and shared insights on web application security, malware prevention, and strategies for advancing cybersecurity in Bangladesh.
During the conference, Bangladesh Cyber Security Intelligence (BCSI) announced its National Vulnerability Disclosure Program (NVDP), a collaborative initiative between the government and the cyber security research community to enhance the security posture of nation’s digital infrastructure. They also introduced their recently launched Crowdsourced Emergency Response Team (CS-CERT), a Community-Powered initiative to help mitigate cyber security incidents in the countries digital assets.
In the speech of chief guest Shish Hyder Chowdhury, ndc, Secretary, ICT Division said, to secure Bangladesh digitally is prime concern of interim Government. We are finding way to work collaboratively to protect our digital space. We follow up various act, rules or framework how it can be modernized to be time equipped. we also focused on the community who are working in the field of cyber space.
Special Guest, Mohammad Nazrul Islam, Joint Secretary and Director of the iDEA Project, commended the initiative and its contributions to building a secure digital ecosystem.
Mehedi Hasan Remon, Security Engineer, RedSentry said, “To a create ethical hacker such platform is internationally acclaimed. To spread the practice of cyber security of among all is the main object of event. so, we expect more ethical practitioner will come out through this in future”.
The Founder of Bug Bounty Community Bangladesh, Syed Mushfik Hasan Tahsin, “expressed hope that such initiatives would significantly contribute to raising cybersecurity awareness and developing skilled professionals in the cyber security landscape of Bangladesh. We are in the mood of arranging such event every year,” he noted.
The event marks a significant step forward in strengthening Bangladesh’s cybersecurity landscape, creating a robust platform for talent development and collaboration.
Recently, Bangladesh has experienced cyber attack on NBR, DESKO, Titas, Globe pharmaceuticals, Confidence group, Road Transport and Highways Division (RTHD), and so on including Lumma C2 malware attack Bangladeshi several websites.
Antivirus manufacturer Kaspersky inform that it has detected over 34,000 ransomware attacks targeting various organizations in Bangladesh from January to December 2023 in a press release.
Infosecbulletin is proud to be the media partner in such a great event.
