• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

‘Team Mysterious Bangladesh’ Hackers Target Indian Education Entity

You are here: Home / General Cyber Security News / ‘Team Mysterious Bangladesh’ Hackers Target Indian Education Entity
December 5, 2022

A threat actor team named “Team Mysterious Bangladesh” has claimed to have compromised the Indian Central Board of Higher Instruction (CBHE) methods.

In accordance to a new advisory by cybersecurity professionals at CloudSEK, the hackers would have stolen personally identifiable facts (PII), including names, Aadhaar quantities, Indian Financial Program Codes (IFSC codes) and other information of a lot of people.

“CloudSEK’s contextual AI digital risk platform XVigil found a risk actor team named Workforce Mysterious Bangladesh who claimed to have compromised the CBHE Delhi, India,” the enterprise wrote.

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


“The team outlined leaking details about college students from 2004 to 2022. The actor shared a snapshot of the facts for a pupil.”

Accessibility to the admin panel of the CBHE Delhi platform would empower any individual to see the success of all learners from 2004 to 2022 and even delete or incorporate information, CloudSEK explained.

“Hence, the actors acquired unauthorized access to the admin panel, enabling them to compromise the information for CBHE Delhi India,” the organization reported. “Additionally, a directory of the domain was compromised by the hacktivist as they defaced it with their names.”

Extra usually, CloudSEK stated the leaked details could be utilised to acquire preliminary access to the firm’s infrastructure, and usually utilized or weak passwords could direct to brute-power attacks. The information could also deliver destructive actors with specifics expected to execute refined ransomware attacks, exfiltrate information and sustain persistence.

CloudSEK extra that Crew Mysterious Bangladesh is known for using many scripts for distributed denial-of-service (DDoS) attacks and an HTTP flooding attack strategy very similar to DragonForce. Over and above the CBHE attack, the risk actor would also carry out hacktivism-targeted campaigns in Iran.

To protect against threats like this, the firm has recommended companies patch susceptible and exploitable endpoints and not retail store unencrypted secrets in .git repositories.

System admins ought to also observe for anomalies in user accounts, potentially indicative of account takeovers, as effectively as cybercrime boards for probable practices utilized by threat actors.

The hottest CloudSEK advisory will come around two months immediately after Leakbase said someone allegedly hacked the Swachhata System in India and stole 16 million user information.


Some components of this write-up are sourced from:
www.infosecurity-journal.com

Previous Post: «Cyber Security News Cyber Extortion Growing Exponentially in Africa, Middle East and China, Finds Orange
Next Post: Rackspace Restores Systems After Security Incident Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • BREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. – Dutch Operation
  • OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities
  • Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
  • Deploying AI Agents? Learn to Secure Them Before Hackers Strike Your Business
  • Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
  • Beyond Vulnerability Management – Can You CVE What I CVE?
  • Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
  • Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
  • 38,000+ FreeDrain Subdomains Found Exploiting SEO to Steal Crypto Wallet Seed Phrases
  • SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root

Copyright © TheCyberSecurity.News, All Rights Reserved.