A reputed Internet Service Provider (ISP) involved in providing network services to banks and financial institutions in Bangladesh has been under cyberattack by malicious software (malware).
Unknown cybercriminals launched the attack on the server of the ISP severely disrupting its clients’ internet services and data storage system.
The ISP is working to recover quickly from the cyberattack by unknown cybercriminals.
Meanwhile, Bangladesh Computer Council (BCC) has instructed the banks and financial institutions or any other institution who are the ISP’s clients to stay at the maximum precautions from cyberattack.
Information about the malware has been sent to concerned organizations warning not to click any information-rich message or e-mail.
The BCC's forensic lab has prepared an interim report after nine days of investigation into cyberattacks in Bangladesh.
This information has been obtained from that report. The report was recently sent to high-level of the government.
The cyber forensic experts in the report said the country's three Internet Protocols (IPs) have identified the location of the malware virus.
"One of them, a reputed internet service provider is facing disruption in internet service delivery and data storage," the report said warning, "Organizations that use the ISP’s internet services may have their database damaged."
The virus spreads slowly and extreme precaution is needed to prevent it from spreading.
The ISP’s client banks and financial institutions have been asked to be vigilant since the malware is designed to siphon money by carrying out cyberattacks in financial sectors of the country.
Moreover, Bangladesh Bank has instructed the country's banks to be extremely vigilant. As a result, banks have taken precautions as well as restricted ATM booths and online transactions.
According to the report, cyber experts have collected several samples of the malware virus. Of these, they have given a list in the report. They also gave several samples of how to identify the virus.
It also has a guideline on how to make the malware ineffective. Banks and financial institutions, as well as other government and non-government organizations, are working to commemorate the report guidelines.
According to sources, BCC has advised not to click on any e-mail or Facebook message that has an unfamiliar or attractive or enticing offer. These may contain the virus, which will become active and spread as soon as the computer operator clicks on it.
Organizations have been asked to inform BCC if any sees these messages online or on its systems.
The BCC is working further on the other two IPs where the malware virus was found. Soon they will be identified and rendered useless.
In this context, the director of BCC Tarek Barkatullah said, "We have received evidence that the malware virus has attacked the server of an internet company."
“Now it can spread slowly. That's why we have to be more careful now. All parties concerned have been instructed in this regard. Many are contacting us. They are being given the necessary advice,” he added.
Every bank is working according to the guidelines of BCC to strengthen its online transaction software. At the same time, officials of each bank's information technology department are carefully monitoring whether there is an attack on their own online transaction software, he further said.
Meanwhile, the global financial sector has also taken a cautious stance after the cyber unit of the US Federal Bureau of Investigation (FBI) issued such a warning that there could be a cyberattack on the global financial sector. Detectives from the FBI's Cyber Security Department are working hard to determine the source of the virus. Cyber detectives from different countries including Bangladesh are also working with them.
ask/zn
