InfoSecBulletin Cybersecurity for mankind
Executive member of Asia Pacific Network Information Centre (APNIC) and One of key person of Internet initiative of japan (IIJ) Yoshinobu Matsuzaki said, “.bd has 4 nameservers. 3 of them, dns.bd, surma.btcl.net.bd and jamuna.btcl.net.bd are answering SERVFAIL to any .bd queries.
But they are answering some functional queries like id.server or hostname.bind. So I guess nameserver process is running, but falied to load bd zone information somehow. Remaining 1 nameserver, bd-ns.anycast.pch.net, is answering, but the SOA serial is 2023060867 which looks a bit old to me”.
Russia detects first SuperCard malware attacks via NFC
Income Property Investments exposes 170,000+ Individuals record
ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs
CISA Flags Active Exploits in Apple iOS and TP-Link Routers
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
Canada 2nd largest airlines “WestJet” investigates cyberattack disrupting internal systems
Paraguay 7.4 Million Citizen Records Leaked on Dark Web
High-Severity Flaw in HashiCorp Nomad Allows Privilege Escalation
SoftBank: Over 137,000 personal info leaked
Alert
Trend Micro Apex One Flaw Allow Attackers to Inject Malicious Code
In summary it is possible that there is something going wrong with the zone generation and transfer to the nameservers, which, coupled with an outdated DNSSEC signature issue, may be causing the bd domain name issue.
He also added, various issues can occur anywhere. The biggest challenge is whether we can use this case as a lesson and improve our operations better in the future.
Sumon Ahmed Sabir, CTO, Fiber@home said, apparently DNSSEC key expired last night. That is causing the outage. DNSSEC keys need to be updated before it expires. Either it can be done manually or can be done automatically through appliance. The key role over didn’t happened timely and causing this severe outage.
Suman Saha, Admin, Bangladesh Network Operators Group (BDNOG) said his social handle that the ” DNSSEC key has expired that is the reason the issue raised since last night” and he advised to Use ‘dnssec-validation no; ‘ in bind configuration to resolve .bd domains for the time being.
Wednesday (03 April) from morning, the users of .bd facing problems while browsing their sites accross the country. later BTCL issued a press release stating that for technical glitch the problems occur and it will be ok shortly as BTCL engineers are working on it.
There are nearly 40,000 government and private sites registered under the .bd domain managed by Bangladesh Telecommunications Company Ltd (BTCL)
In 2020, there was another server glitch due to an error in dot gov dot bd (.gov.bd) domain servers after 4:30om on Thursday and it continued for several hours resulting The websites of all government ministries and organization’s were down.
