InfoSecBulletin Cybersecurity for mankind
TheTeamPhoenix, a non-profit organization, successfully hosted Phoenix Summit 2024, the largest cyber security event in Bangladesh, from May 23-24. This summit aimed to inspire and empower both novices and seasoned enthusiasts, professionals in the field of cyber security and technology.
Phoenix Summit 2024 was more than just a conference; it was a call to action for anyone passionate about making a difference in technology and security. Bringing together experts, novices, and enthusiasts, the event focused on skill enhancement and fostering a robust, research- oriented educational and professional journey.
WhatsApp banned on all US House of Representatives devices
Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store
OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems
Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform
Hackers Bypass Gmail MFA With App-Specific Password Reuse
Russia detects first SuperCard malware attacks via NFC
Income Property Investments exposes 170,000+ Individuals record
ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs
CISA Flags Active Exploits in Apple iOS and TP-Link Routers
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
The summit featured two themed days: Blue Teaming Day, dedicated to defensive strategies, and Red Team Day, focused on offensive cybersecurity aspects, culminating in a closing ceremony.
A highlight was the Red Team Village hosting the Phoenix Summit CTF competition, powered by ThreatSims, which saw 450+ registered participants and 100 finalists, with the final round completed on May 17. The winners were Sheikh Ali Akbar (Champion), Tarikul Islam (1st runner-up), and Muztahidul Islam Tanim (2nd runner-up). A special initiative to empower women in cybersecurity featured Farhana Mahbuba. From Jatiyo Kobi Kazi Nazrul Islam University, Mymensingh.
Global and Local Insights:
The summit featured a distinguished lineup of national and international speakers, ensuring a rich exchange of knowledge and experiences. The event covered topics from in-depth technical discussions to policy-making and strategic planning. Esteemed speakers included Adli Wahid and Zobair Khan from APNIC, Australia, Dr. Munawar Hafiz, Founder and CEO of OpenRefactory, Inc., USA, and Saugat Pokharel from Nepal.
Bangladeshi cybersecurity experts such as Almas Zaman, Jubayer Al Nazi, S M Zia Ur Rashid, Hasan Shahriar Fahim, Prial Islam, and Mehedi Hasan Remon also shared their insights. Notable professionals like Engr. Mushfiqur Rahman, Chief Information Technology Officer at First Security Islami Bank PLC, and Muhammad Abul Kalam Azad, Head of Info Security at Eastern Bank PLC, provided valuable experiences and ideas.
The summit featured six research publications, one product launch, and three case studies among the 21 speakers. Topics covered included Web2 vs Web3 security, open-source software bug fixes, honeypots in proactive defense, securing BGP, API security, emerging technology threats, data journey tracing, AI-powered cyber defense, black box testing, creative bug hunting, leveraging generative AI, hardware hacking, reverse engineering, AI vulnerabilities, advanced cross-site scripting, global internet governance, cybercrime trends, DNS attack mitigation, defending against social media manipulation, and offensive engineering approaches.
Community and Industry Engagement:
Phoenix Summit welcomed a diverse audience of over 950 participants, including university students, professionals, and decision-makers from manufacturing, conglomerates, pharmaceuticals, telecommunications, banking, defense agencies, academia, legal sectors, and e- commerce.
The event attracted attendees not only from Dhaka but also from across Bangladesh, including Rajshahi, Khulna, Mymensingh, Sylhet, Patuakhali, Pabna, Naogaon, Chittagong, Narayanganj, and Cumilla.
Mr. Iqbal Ahmed Fakhrul Hasan Russell, newly elected VP of Finance of BASIS and CEO of Divine IT Limited, shared his life lessons and vision for building a safer, smarter Bangladesh to the audience of Phoenix Summit.
TheTeamPhoenix is dedicated to advancing community well-being and setting new standards in cybersecurity and technology to empower individuals, strengthen defenses, and ensure ongoing growth in these fields. its aim to be a globally recognized leader driving innovation, education, and research, creating a safer and smarter digital world.
For the first time ever in Bangladesh, Phoenix Summit 2024, a community event, announced the Infosec Community Awards. These awards recognize communities and organizations for their valuable contributions to improving the cybersecurity landscape in Bangladesh.
The CTF Community Bangladesh and Bug Bounty Community Bangladesh, which have significantly enhanced the community through their efforts in skill development and research, won the Infosec Community Award 2024. Additionally, Rayhan Ahmed Niloy from ThreatSims received the Infosec Community Mentor Award 2024 for his continuous mentorship.
Dihan Islam Olif, Operations Manager, TheTeamPhoenix, addressed the community, emphasizing the importance of collaboration to build a valuable, research-focused network that safeguards Bangladesh’s digital assets and global platforms. He urged all connected communities to join forces and help create a Smart Bangladesh with enhanced security for its people.
Shamim Reza, Founder, TheTeamPhoenix, shared TheTeamPhoenix’s mission & vision and announced two new initiatives: FindPros and Phoenix Academy. These platforms will provide professionals and corporations opportunities to hire and get hired based on proven skills, reducing noise in the job sector of Cyber Security. Additionally, he made several announcements:
1. TheTeamPhoenix has collaborated with two international cybersecurity entities to research two separate prototypes, with the products to be unveiled at Phoenix Summit 2025 via the TTP Research Center.
2. The next renasCON event will take place on Saturday, October 26th, 2024, focusing on Blockchain technology.
3. Ten speakers from Phoenix Summit 2024 will mentor ten selected participants on Ten separate research projects, with findings to be published and shared at Phoenix Summit 2025.
4. Shadow Server Foundation will host a Hackathon at Phoenix Summit 2025.
5. Red Team Village will host the Phoenix Summit CTF 2025, open to participants from the Asia Pacific region.
Phoenix Summit 2024 was more than just an event; it was a pivotal step towards a more secure future. By uniting leading minds in cybersecurity, offering diverse perspectives, and promoting community collaboration, the summit is poised to transform the cybersecurity landscape.
This year, our goal was to engage participants from SAARC countries. From next year onward, it’s aim is to expand participation to include the Asia Pacific region to harness the power of collaboration to experience the new dimension in Cyber Security and Technology. Team Phoenix welcome to us in the movement to create a safer, smarter cyberspace for all.
