99 matches found
INTERPOL Dismantles 45,000 Malicious IPs, Arrests 94 in Global Cybercrime
INTERPOL on Friday announced the takedown of 45,000 malicious IP addresses and servers used in connection with phishing, malware, and ransomware campaigns, as part of the agency's ongoing efforts to dismantle criminal networks, disrupt emerging threats, and safeguard victims from scams. The effor...
SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware Chains
The threat activity cluster known as SloppyLemming has been attributed to a fresh set of attacks targeting government entities and critical infrastructure operators in Pakistan and Bangladesh. The activity, per Arctic Wolf, took place between January 2025 and January 2026. It involves the use of...
CVE-2026-22481
Missing Authorization vulnerability in Rasedul Haque Rumi BD Courier Order Ratio Checker bd-courier-order-ratio-checker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BD Courier Order Ratio Checker: from n/a through = 2.0.1...
FBI Seizes Fake ID Template Domains Operating from Bangladesh
US authorities have charged Zahid Hasan with running TechTreek, a $2.9 million online marketplace selling fake ID templates. The investigation, involving the FBI and Bangladesh police, uncovered a global scheme selling fraudulent passports and social security cards to over 1,400 customers...
SideWinder Adopts New ClickOnce-Based Attack Chain Targeting South Asian Diplomats
A European embassy located in the Indian capital of New Delhi, as well as multiple organizations in Sri Lanka, Pakistan, and Bangladesh, have emerged as the target of a new campaign orchestrated by a threat actor known as SideWinder in September 2025. The activity "reveals a notable evolution in...
LionCoders SalePro POS 安全漏洞
LionCoders SalePro POS is a point-of-sale system and inventory management software from LionCoders Bangladesh. A security vulnerability exists in LionCoders SalePro POS version 5.4.8, which stems from improper cleanup of the customer name parameter and could lead to a stored cross-site scripting...
LionCoders SalePro POS 安全漏洞
LionCoders SalePro POS is a point-of-sale system and inventory management software from LionCoders Bangladesh. A security vulnerability exists in LionCoders SalePro POS version 5.5.0 and prior versions, which stems from mishandling of the login component and could result in the transmission of...
image_gallery 跨站脚本漏洞
imagegallery is an image gallery management system by the individual developer Md. Yamin Hossain of Bangladesh. A cross-site scripting vulnerability exists in imagegallery version 1.0, which stems from a cross-site scripting attack due to improper handling of the username parameter in the...
Cloudflare Warns of India-Linked Hackers Targeting South and East Asian Entities
An advanced threat actor with an India nexus has been observed using multiple cloud service providers to facilitate credential harvesting, malware delivery, and command-and-control C2. Web infrastructure and security company Cloudflare is tracking the activity under the name SloppyLemming, which ...
Bangladeshi Hackers Deface India’s Zee Media Website for Mocking Floods
Bangladeshi hackers "SYSTEMADMINBD" defaced Zee Medias website, accusing them of mocking the situation in Bangladesh amid severe flooding.…...
VPN Usage Increased 5016% in Bangladesh Amidst Online Censorship
VPN demand skyrockets in Bangladesh due to internet restrictions. Learn about the global impact of VPNs on internet…...
WordPress Muslim Prayer Time BD plugin <= 2.4 - Settings Reset via CSRF vulnerability
Settings Reset via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin Muslim Prayer Time BD versions = 2.4...
WordPress Plugin Muslim Prayer Time BD Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
bangladesh.gov.bd Cross Site Scripting vulnerability OBB-3917764
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Student Management System 跨站脚本漏洞
Student Management System is a simple web-based student management software developed by Sk. Amir Hamza, an individual developer in Bangladesh. A cross-site scripting vulnerability exists in Complete Online Student Management System version 1.0, which originates from a cross-site scripting...
bangladesh-ccp.org Cross Site Scripting vulnerability OBB-3860611
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
A Spy Agency Leaked People's Data Online—Then the Data Was Stolen
The National Telecommunication Monitoring Center in Bangladesh exposed a database to the open web. The types of data leaked online are extensive...
doc.liberationwarbangladesh.net Cross Site Scripting vulnerability OBB-3774468
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
youthclubofbangladesh.org Cross Site Scripting vulnerability OBB-3773322
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
"Mysterious Team Bangladesh" Targeting India with DDoS Attacks and Data Breaches
A hacktivist group known as Mysterious Team Bangladesh has been linked to over 750 distributed denial-of-service DDoS attacks and 78 website defacements since June 2022. "The group most frequently attacks logistics, government, and financial sector organizations in India and Israel,"...