Sunday , July 12 2026
160

Malware Surge Hits Bangladesh: 55+ Strains Detected; 160+ Actively Spreading

More than 55 different types of malware were found last week, and over 160 malware types are spreading in Bangladesh. Some notable malware groups are Android.BadBox2, Android.Vo1d, Avalanche-Andromeda, and Mirai. This shows that both mobile devices and IoT systems are still being targeted.

The malware strains targeted Bangladesh’s cyber landscape are:

CoLoCity Launches New 1.0 MW Data Center Facility at Gulshan

CoLoCity is proud to launch a new Data Center in Gulshan-2. It is designed to meet the growing demand for...
Read More
CoLoCity Launches New 1.0 MW Data Center Facility at Gulshan

Daily Cyber security update for 10. 07. 2026

Cyberattacks are rising around the world, including ransomware, malware, data leaks, and hacked websites. These events show how complex and...
Read More
Daily Cyber security update for 10. 07. 2026

How Hacker Compromise AWS Cloud Environment Using AI in 72 Hours

A major AWS attack shows how attackers with AI can connect known cloud strategies to go from first access to...
Read More
How Hacker Compromise AWS Cloud Environment Using AI in 72 Hours

Mycelium Framework: First AI-as-a-Service Botnet

A new cybercrime ad is catching attention in the security world. It talks about a botnet that doesn't just get...
Read More
Mycelium Framework: First AI-as-a-Service Botnet

CrowdStrike Shows 5 New Prompt Injection Techniques for AI Agents

CrowdStrike has shared five new ways to inject prompts, showing the rising danger to AI agents as more organizations use...
Read More
CrowdStrike Shows 5 New Prompt Injection Techniques for AI Agents

Critical GCP Dialogflow Vulnerability Allows Malicious Code Injection

A critical flaw in Google Cloud Platform’s Dialogflow CX lets attackers add harmful code to a company's AI chatbot system....
Read More
Critical GCP Dialogflow Vulnerability Allows Malicious Code Injection

CIRT identified 153 publicly exposed FortiGate devices in Bangladesh

CIRT identified 153 publicly exposed FortiGate devices in Bangladesh. In an advisory CIRT said, the campaign has been observed globally,...
Read More
CIRT identified 153 publicly exposed FortiGate devices in Bangladesh

Thousands of MCP Servers Exposed to File Access and Injection Attacks

Thousands of Model Context Protocol (MCP) servers have serious security flaws like file access issues, command injection, server-side request forgery...
Read More
Thousands of MCP Servers Exposed to File Access and Injection Attacks

CERT/CC Alerts to Hidden Admin Backdoor in Tenda Router Firmware

Several Tenda firmware versions have a hidden backdoor that lets people gain admin access to the device's web interface. An...
Read More
CERT/CC Alerts to Hidden Admin Backdoor in Tenda Router Firmware

Daily Cyber security update for 6. 07. 2026

Cyberattacks are rising around the world, including ransomware, malware, data leaks, and hacked websites. These events show how complex and...
Read More
Daily Cyber security update for 6. 07. 2026

nymaim, avalanche-tiny-banker, ranbyus, avalanche-urlzone, modpack, aisuru, matsnu, avalanche-matsnu, ngioweb, locky, boaxxe, smokeloader, avalanche-nymaim, qsnatch, avalanche-goznym, avalanche-unknown, avalanche-panda-banker, sunburst, adload, 911-socks5-proxy, avalanche-ranbyus, dltminer, infy, tinynuke, cryptolocker, gozi, avalanche-rovnix, vextrio-help-tds, bondat, proslikefan, skunkx, nymaim2, calypso, avalanche-xswkit, tsifiri, cryptodns-resolver, cobaltstrike, shadowpad, kovter, wd, tinba, avalanche-vmzeus, padcrypt, avalanche-corebot, tick, sharkbot, alien, sality2, zeus, emotet, yash rat, raton, rovnix, giftedvisitor, str-rat, enfal-apt, ebury, avalanche-trusteer-app, urlzone, bumblebee, downadup, red october, pseudomanuscript.

IoT & Network Exposure:

Not only the malware family but a lot of IoT and Network devices are now publicly exposed putting the network at risk. More than 17,000+ routers and IoT devices, along with 3,500+ network-connected printers are vulnerable to attack.

Apart form four CVEs are now actively exploring in Bangladesh including CVE-2026-41940 (WebPros/cPanel), CVE-2021-42013 (Apache HTTP Server), CVE-2017-9841 (PHPUnit Remote Code Execution (RCE), CVE-2023-20198 (Cisco IOS XE Web UI) to gain initial access as reported by CIRT.

Recently a cyber-attack campaign using AsyncRAT (Asynchronous Remote Access Trojan) aimed at Bangladesh is found. Threat analysis shows that the website ck44jili[.]com is a main Control Center (C2) for the AsyncRAT malware.

The campaign mixes malware, remote access, and fake financial tricks. Attackers hide harmful files as real software and run fake online gambling sites aimed at users in Bangladesh.

Of particular concern, the malicious infrastructure appears designed to socially engineer Bangladesh-based victims through localized payment mechanisms including bKash, Nagad, and Rocket, increasing the likelihood of successful financial fraud and malware infection.

The rise of malware types aimed at Windows, Android, IoT, and networks shows that attackers are using weak setups, old systems, open devices, and people’s actions to get in and stay connected.

Organizations in Bangladesh need to quickly improve their cyber defense. They should regularly update their systems, turn off unnecessary internet access for routers and IoT devices, use multi-factor authentication (MFA), watch network traffic for strange outbound connections, and set up advanced endpoint detection and response (EDR/XDR) tools. Security teams should also monitor signs of AsyncRAT activity and block harmful websites, IPs, and suspicious file downloads from fake gambling or financial sites.

As cyber threats to Bangladesh become more complex and larger, sharing threat information early, working together during incidents, and having better teamwork among government, private companies, internet providers, and cybersecurity groups will be crucial to improving the country’s cyber safety.

Check Also

Tenda

CERT/CC Alerts to Hidden Admin Backdoor in Tenda Router Firmware

Several Tenda firmware versions have a hidden backdoor that lets people gain admin access to …