InfoSecBulletin Cybersecurity for mankind
The Indian Cyber Force (ICF) hackers group again threat they are going to attack Bangladesh coming 19 September for the 2nd time. Prior to that, they attack Bangladeshi infrastructure on 15 August and according the calculation provided by the BGD e-Gov CIRT on that day more than 10 websites were facing DDos attack.
The hackers group claimed a series of precise cyber assaults on critical infrastructure in multiple nations, including Bangladesh, China, Pakistan, and Indonesia.
CISA: Splunk flaw under active exploit, patch by Sunday
Texas data breach exposes 3 million driver’s licenses
Critical Cisco ISE Vulnerability Enables Remote Code Execution
F5 Patches NGINX Flaw for Code Execution and DoS Attacks
FortiBleed: 70,000 Fortinet Firewalls Compromised Globally
New Rokarolla Android malware hits 217 banking and crypto apps
Phishing Campaign Exploits Legitimate Microsoft Login Flow
ALERT
Cisco SD-WAN Zero-Day, FortiSandbox and cPanel flaws exploited in attacks
“Panthalassa” builds floating AI data centers powered by ocean waves
Critical Wazuh Vuln Enables Alert Tampering and Evidence Deletion
ALSO READ:
Chrome extensions can steal plaintext passwords from websites
The group has shared its attack schedule until February 14, 2024, through its dark web channel, “INDIAN CYBER FORCE.”
According to the threat actor, they have shared an in-depth plan for targeting these countries and also pointed out dates and times when they will launch their attack campaign against each country.
The group scheduled the cyber attack following events: On September 19, 2023, Bangladesh is the designated target. Then, on November 26, 2023, the focus will shift to China and Pakistan.
December 11, 2023, marks the date for attacks on Indonesia and Pakistan. Subsequently, on January 26, 2024, the threat actor plans to target Pakistan, China, Bangladesh, and Indonesia. Finally, on February 14, 2024, the cyberattacks are slated for Pakistan, China, and Indonesia.
Eng. Saiful alam khan, Project director of BGD e-Gov CIRT said, We are aware of the incident and we automatically sent alert the CII affiliated institutions to take steps protect their institutions.
