InfoSecBulletin Cybersecurity for mankind
Shared responsibilities must be ensured to save countries digital space safety speakers said this at “InfoSecCon-2024” held at Dhaka on 9 March, Saturday. The conference included topic based sessions and panel discussions on various topic where countries leading professionals were presents.
S M Tofayel Ahmad, joint director, ICT, Bangladesh Bank well explained about the cyber resiliency on broader perspective. He discussed some statistics on cyber attack specially on Banking sector in recent times and way forward to remediate.
AWS SNS misused for Data Exfiltration and Phishing
Researcher found non protected database form ESHYFT containig 86000 records
CVE-2024-55591 and CVE-2025-24472
New SuperBlack ransomware exploits Fortinet flaws
CVE-2025-25291 & CVE-2025-25292
Attention! GitLab Patched Critical Authentication Bypass Flaws
CVE-2025-20138
Cisco released High Security Alert for IOS XR Software
400+ IPs Exploiting Multiple SSRF Vulnerabilities
NVIDIA has released update for NVIDIA Riva
CVE-2025-24201
Apple fixes 0-day exploited in “extremely sophisticated attack”
Microsoft’s March 2025 updates fix 7 zero-day, 57 flaws
Ballista Botnet infects 6000 Unpatched TP-Link Routers
Fahad Zaman Chowdhury, Joint Director (ICT), Back office and member CIRT, Bangladesh Bank delivered a insightful discussion on “Enhancing compliance and regulatory frameworks in Bangladesh banking sector: challenges and mitigation”. He emphasized time demanding guidelines and implementation by the regulatory authority to protect organizations.
Adli Wahid, Senior internet security specialist from APNIC describes the importance of zero trust security in the era of Generative AI in Bangladesh perspective. He described some key challenges and way forward for this framework.
Mahdee uz zaman, International Consultants, A2i on his key note speech on “Exploring data center and cloud services: Bangladesh Perspective” said, for many reason Bangladesh has become a growing market for data center and cloud services. Bangladesh draws attention on international market in this sector. Economic growth, digital transformation initiatives, Connectivity and Infrastructure Development and so on are engaging more IOT devices and thus create more data which must be stored within countries boarder as per regulation.
On the same topic a panel discussion held where Prof. Dr. Md. Mahfuzul Islam, VC, BSMRDU, Yousup Faruqu, Managing Director, Microsoft Bangladesh, Prof. B M Mainoul Islam, Director, IIT Dhaka university took part and Muhibbul Muktadir Tanim, General Secretary, BDSAF moderated the session. On the panel discussion, panelists said, with the passage of time, the scope of data centers and cloud services is also increasing in the country. Many data centers have already come up in the country to meet the growing demand. All types of organizations including financial institutions, fintech, telco are turning towards this service. So, the panelists emphasized on the efficient manpower, including ensuring the security and compliance of the service on a broader perspectives.
Another panel discussion titled “Ransomware defense strategies: A comprehensive approach in the modern threat landscape” where Md. Ishaque Miah, CISO, Bangladesh Bank, Md. Shahadat Hossain, Principal Engineer, Enterprise Security, Grameen phone, Md. Najmul Islam, SP, CTTC, DMP discussed the current ransomware trends, tactics and mitigation way. The panelists emphasized on people, process and technology in the age of AI generated attack to safeguard the institutions. The session was moderated by Sumon Ahmed Sabir, EC Member, APNIC.
Director General of National cyber security agency (NCSA) Abu Sayed Md. Kamruzzaman said, The gov.t is working tirelessly working to secure countries digital space. He referred various activities of NCSA in cyber security arena. He said, as in cyber security arena, no one is 100% protected so we have to fight against it all together.
Special Guest Debdulal Roy, ED (ICT) Bangladesh Bank said, Cybersecurity is very important in Bangladesh for various reasons. It helps in protecting against different and changing cyber threats. It also safeguards important data and critical infrastructure, and helps in reducing financial losses. Following regulations and building public trust in digital services are also important aspects of cybersecurity. Effective cybersecurity measures need a comprehensive approach that includes technical solutions, regulatory frameworks, capacity building, and public awareness campaigns.
Md. Shamsul Arefin, ICT Secretary said, we all are in pin point of cyber attack because cyber criminals are smarter and they applied advanced technic to attack. So, we have to be prepared against them with combined efforts. Gov.t, private, individuals, institutions along with researchers and startups all should come forward to safe our digital space as well safe our country digitally.
The event was attended by local, foreign guests, stock holders and industry experts.
