Saturday , March 29 2025
btcl

Expert opinion about the BTCL .bd domain issue

Executive member of Asia Pacific Network Information Centre (APNIC) and One of key person of Internet initiative of japan (IIJ)  Yoshinobu Matsuzaki said, “.bd has 4 nameservers. 3 of them, dns.bd, surma.btcl.net.bd and jamuna.btcl.net.bd are answering SERVFAIL to any .bd queries.

But they are answering some functional queries like id.server or hostname.bind. So I guess nameserver process is running, but falied to load bd zone information somehow. Remaining 1 nameserver, bd-ns.anycast.pch.net, is answering, but the SOA serial is 2023060867 which looks a bit old to me”.

FBI investigating cyberattack at Oracle, Bloomberg News reports

The Federal Bureau of Investigation (FBI) is probing the cyberattack at Oracle (ORCL.N), opens new tab that has led to...
Read More
FBI investigating cyberattack at Oracle, Bloomberg News reports

OpenAI Offering $100K Bounties for Critical Vulns

OpenAI has increased its maximum bug bounty payout to $100,000, up from $20,000, to encourage the discovery of critical vulnerabilities...
Read More
OpenAI Offering $100K Bounties for Critical Vulns

Splunk Alert User RCE and Data Leak Vulns

Splunk has released a security advisory about critical vulnerabilities in Splunk Enterprise and Splunk Cloud Platform. These issues could lead...
Read More
Splunk Alert User RCE and Data Leak Vulns

CIRT alert Situational Awareness for Eid Holidays

As the Eid holidays near, cybercriminals may try to take advantage of weakened security during this time. The CTI unit...
Read More
CIRT alert Situational Awareness for Eid Holidays

Cyberattack on Malaysian airports: PM rejected $10 million ransom

Operations at Kuala Lumpur International Airport (KLIA) were unaffected by a cyber attack in which hackers demanded US$10 million (S$13.4...
Read More
Cyberattack on Malaysian airports: PM rejected $10 million ransom

Micropatches released for Windows zero-day leaking NTLM hashes

Unofficial patches are available for a new Windows zero-day vulnerability that allows remote attackers to steal NTLM credentials by deceiving...
Read More
Micropatches released for Windows zero-day leaking NTLM hashes

VMware Patches Authentication Bypass Flaw in Windows Tool

On Tuesday, VMware issued an urgent fix for a security flaw in its VMware Tools for Windows. CVE-2025-22230 allows a...
Read More
VMware Patches Authentication Bypass Flaw in Windows Tool

IngressNightmare
Over 40% of cloud environments are vulnerable to RCE

Kubernetes users of the Ingress NGINX Controller are advised to fix four newly found remote code execution ( RCE) vulnerabilities,...
Read More
IngressNightmare  Over 40% of cloud environments are vulnerable to RCE

(CVE-2025-29927)
Urgently Patch Your Next.js for Authorization Bypass

Next.js, a widely used React framework for building full-stack web applications, has fixed a serious security vulnerability. Used by many...
Read More
(CVE-2025-29927)  Urgently Patch Your Next.js for Authorization Bypass

Oracle refutes breach after hacker claims 6 million data theft

A hacker known as “rose87168” claims to have stolen six million records from Oracle Cloud servers. The stolen data includes...
Read More
Oracle refutes breach after hacker claims 6 million data theft

In summary it is possible that there is something going wrong with the zone generation and transfer to the nameservers, which, coupled with an outdated DNSSEC signature issue, may be causing the bd domain name issue.

He also added, various issues can occur anywhere. The biggest challenge is whether we can use this case as a lesson and improve our operations better in the future.

Sumon Ahmed Sabir, CTO, Fiber@home said, apparently DNSSEC key expired last night. That is causing the outage. DNSSEC keys need to be updated before it expires. Either it can be done manually or can be done automatically through appliance. The key role over didn’t happened timely and causing this severe outage.

Post taken form Suman Saha’s social handle

Suman Saha, Admin, Bangladesh Network Operators Group (BDNOG) said his social handle that the ” DNSSEC key has expired that is the reason the issue raised since last night” and he advised to Use ‘dnssec-validation no; ‘ in bind configuration to resolve .bd domains for the time being.

Wednesday (03 April) from morning, the users of .bd facing problems while browsing their sites accross the country. later BTCL issued a press release stating that for technical glitch the problems occur and it will be ok shortly as BTCL engineers are working on it.

There are nearly 40,000 government and private sites registered under the .bd domain managed by Bangladesh Telecommunications Company Ltd (BTCL)

In 2020, there was another server glitch due to an error in dot gov dot bd (.gov.bd) domain servers after 4:30om on Thursday and it continued for several hours resulting The websites of all government ministries and organization’s were down.

 

 

Check Also

March 2025

Qualcomm’s March 2025 Security Bulletin Highlights Major Vulns

Qualcomm’s March 2025 Security Bulletin addresses vulnerabilities in its products, including automotive systems, mobile chipsets, …

Leave a Reply

Your email address will not be published. Required fields are marked *