1. Phishing & Social Engineering

Attackers trick individuals via fake emails, SMS, or sites—often targeting mobile banking users and government staff—to steal credentials or financial information. In Bangladesh, these attacks are increasingly sophisticated and widespread.

2. Ransomware

Malware that encrypts vital data and demands cryptocurrency payment. In Bangladesh, both private businesses and government agencies—including the healthcare sector—have been hit. Such attacks disrupt operations and don’t guarantee data recovery even if paid.blog.meghops.io+1Implevista

3. Data Breaches / Personal Data Leaks

Unauthorized exposure of sensitive information—like national ID numbers or addresses—has happened on a massive scale, including a major government website leak affecting over 50 million citizens.Wikipediablog.meghops.iosaiful.im

4. Supply Chain & Cloud Misconfigurations

Rapid adoption of cloud platforms (e.g., AWS, Azure) has increased exposure to misconfigurations, leading to unauthorized access. Weak security practices among third-party vendors or service providers also heighten risk.

5. Malware, Worms & Spyware

Malicious software—such as viruses, Trojans, worms, and browser modifiers—threatens devices and networks. Pirated software and unpatched systems make Bangladeshi organizations especially vulnerable.bytecarelab.comcirt.gov.bdsaiful.im

6. Distributed Denial of Service (DDoS) Attacks

These attacks flood networks or websites with traffic, rendering services unavailable. Targets include banks, government portals, and critical infrastructure.bytecarelab.comImplevista

7. Insider Threats

Risks posed by employees—whether maliciously or accidentally—are increasingly concerning. Poor access controls and lack of awareness make this a growing issue.Implevistabytecarelab.com

8. Mobile & IoT Vulnerabilities

As smartphone usage and smart device deployment rise, Bangladesh faces threats from insecure apps, public Wi-Fi, and weakly protected IoT devices.Implevistafsnitsolution.com

9. Advanced Persistent Threats (APTs)

Highly organized actors—often state-backed—target critical financial systems. A prime example is the infamous 2016 Bangladesh Bank cyber heist, linked to the North Korean Lazarus Group, where hackers attempted to steal nearly $1 billion via the SWIFT network.Wikipedia+1WIRED

10. Unsecured Critical Infrastructure & Spyware (e.g., Pegasus)

Critical systems like power, telecom, and banking remain vulnerable due to outdated systems, weak protocols, and low cyber emergency preparedness. Bangladesh has also been among the countries where Pegasus spyware was found, raising serious privacy and surveillance concerns.blog.meghops.ioThe Financial ExpressWikipedia