Porn Scam Alert

BtCIRT has been reported of porn scam emails which purports to come from a hacker claiming to have video and image footage of the victim watching pornography. Victims are then threatened that the scammer will send the alleged video or images to their personal contacts unless they pay a ransom of $5306 in bitcoin payment. They claim to have managed to hijack the victim’s browser while the victim visited an adult site and used it as an RDP server to install a keylogger, using which they got access to the victim’s contacts from Facebook, Messenger and email account and...

Corono Virus Related- SCAM ALERT!!

The Bhutan Computer Incident Response Team (BtCIRT), Department of IT and Telecom (DITT) would like to earnestly request the general public to not fall into the corona virus related scam/phishing during the lockdown. It has come to the notice of BtCIRT of a scam making rounds in the social media platform Whatsapp whereby the scam message indicates the government is offering money to all citizens above the age of 18 years old for which a link is provided for checking eligibility (as attached below):Any COVID related support or information that the government provides would be announced through BBS, websites...

Open source SIEM with Wazuh and elastic stack

“Wazuh is a free, open source and enterprise-ready security monitoring solution for threat detection, integrity monitoring, incident response and compliance” which when integrated with elastic stack enhances visualization and reporting. If you are looking for open source Siem solution and struggling with installation, feel free to use the guide  Wazuh with elastic stack Guide.  This guide has been prepared following official Wazuh installation documentation....

Coronavirus Scams and Malware

The threat actors are weaponizing the tremendous urge for coronavirus related  information people have, as it spreads across the globe to drop malware through various channels including Phishing email , Malicious websites and social engineering.  Therefore, BtCIRT urges everyone to Think before you click on any links received via email, instant messaging apps or shared via other social media platforms. For any updates,  please visit trusted sources of information: WHO  for global statistics and advisories and  Ministry of Health for any information related to Bhutan.  ...

Mailvelope Manual

Mailvelope is a browser add-on or a plugin that extends its   capability in encrypting email contents and is based on OpenPGP cryptography standards. To be able to send, receive or digitally sign emails securely using OpenPGP based services like Mailvelope, users first have to create public, private key pair and share the public key. For detailed manual please visit: Mailvelope manual...