InfoSecBulletin Cybersecurity for mankind
Executive member of Asia Pacific Network Information Centre (APNIC) and One of key person of Internet initiative of japan (IIJ) Yoshinobu Matsuzaki said, “.bd has 4 nameservers. 3 of them, dns.bd, surma.btcl.net.bd and jamuna.btcl.net.bd are answering SERVFAIL to any .bd queries.
But they are answering some functional queries like id.server or hostname.bind. So I guess nameserver process is running, but falied to load bd zone information somehow. Remaining 1 nameserver, bd-ns.anycast.pch.net, is answering, but the SOA serial is 2023060867 which looks a bit old to me”.
CISA Releases Three Industrial Control Systems Advisories
CISA
GitLab account takeover bug is actively exploited in attacks
Azure Logs utilizing to identify threats: Insights From Microsoft
NCSC
NEW UK LAW BANS DEFAULT PASSWORDS ON SMART DEVICES
U.S. Releases New AI Security Guidelines for Critical Infrastructure
Chinese Botnet As-A-Service Bypasses Cloudflare & Other DDoS Protection Services
Phoenix Summit 2024: Elevating Cyber security, Impact and Vision
ALERT: SEKOIA REPORT
PlugX Malware Plagues Over 90k IP Addresses over 170 countries
Palo Alto network shared latest remediation of CVE-2024-3400
CISA Launches Ransomware Vulnerability Warning Pilot for Critical Infrastructure
In summary it is possible that there is something going wrong with the zone generation and transfer to the nameservers, which, coupled with an outdated DNSSEC signature issue, may be causing the bd domain name issue.
He also added, various issues can occur anywhere. The biggest challenge is whether we can use this case as a lesson and improve our operations better in the future.
Sumon Ahmed Sabir, CTO, Fiber@home said, apparently DNSSEC key expired last night. That is causing the outage. DNSSEC keys need to be updated before it expires. Either it can be done manually or can be done automatically through appliance. The key role over didn’t happened timely and causing this severe outage.
Suman Saha, Admin, Bangladesh Network Operators Group (BDNOG) said his social handle that the ” DNSSEC key has expired that is the reason the issue raised since last night” and he advised to Use ‘dnssec-validation no; ‘ in bind configuration to resolve .bd domains for the time being.
Wednesday (03 April) from morning, the users of .bd facing problems while browsing their sites accross the country. later BTCL issued a press release stating that for technical glitch the problems occur and it will be ok shortly as BTCL engineers are working on it.
There are nearly 40,000 government and private sites registered under the .bd domain managed by Bangladesh Telecommunications Company Ltd (BTCL)
In 2020, there was another server glitch due to an error in dot gov dot bd (.gov.bd) domain servers after 4:30om on Thursday and it continued for several hours resulting The websites of all government ministries and organization’s were down.
