Bangladesh at risk of massive cyber attack
Kasablanka is acting to spread their botnets within Bangladesh for espionage
Cyber Threat Research team of Bangladesh Computer Council's e-Government Computer Incident Response Team (BGD e-GOV CIRT) on Wednesday sent out a warning of a cyber attack on a massive scale by an international hacking group known as 'Kasablanka'.
They recently observed and identified the ongoing development of attack variants and dedicated malware campaigns specifically targeted at Bangladeshi infrastructure.
A handout from BGD e-GOV CIRT warned that the specific type of malware is targeting users or consumers from different financial and government institutions in the country.
However, they also clarified that the group is acting to spread their botnets within Bangladesh to tweak for espionage rather than for breaching accounts for financial gains.
This specific campaign utilises a type of RAT (Remote Access Trojan) known as LodaRAT to infiltrate windows and android systems.
Their recent phishing campaign tried to allure the people interested in vaccination by using a fake web portal corona-bd.com/apply like the legitimate Covid-19 vaccine program associated website corona.gov.bd.
BGD e-GOV CIRT urged financial and government institutions at risk to ensure proper information and cybersecurity awareness training among all the employees, customers, and consumers and properly educate customers and consumers in using their applications such as Mobile Banking service, etc.
They also requested to report or inform BGD e-GOV CIRT regarding any incident of a breach at https://www.cirt.gov.bd/incident-reporting/.
