MHAB A.I CyberSecurity Scoring
MHAB
Company Information
Website:https://mha.gov.bd/
Employees number:146
Number of followers:0
NAICS:92
Industry Type:Government Administration
Homepage:mha.gov.bd
MHAB Risk Score (AI oriented)
Between 800 and 849
MHABGovernment Administration
Updated:
08/04/2026
08/04/2026
816/1000
Good
A
MHAB Global Score (TPRM)
xxxx
MHABGovernment Administration
Score locked

MHABGood
Current Score
816A (GOOD)
01000
1 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
817
JUNE 2026
817
MAY 2026
817
APRIL 2026
816
MARCH 2026
816
FEBRUARY 2026
816
JANUARY 2026
816
DECEMBER 2025
816
NOVEMBER 2025
815
OCTOBER 2025
815
SEPTEMBER 2025
815
AUGUST 2025
814
MARCH 2025
830
Cyber Attack
01 Mar 2025 • MHAB
Ministry of Defence, Ministry of Finance and Ministry of Defence: South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware
SideWinder Targets South Asian Governments in Sophisticated Cyber Espionage Campaign
813
CRITICAL-17
MIN1775638175
SideWinder Targets South Asian Governments in Sophisticated Cyber Espionage Campaign
A newly uncovered cyber espionage campaign by the threat actor SideWinder has targeted high-level government institutions in Sri Lanka, Bangladesh, and Pakistan, according to researchers at Acronis. The attacks, which align with tactics previously documented by Kaspersky in March 2025, employed spear-phishing emails with geofenced payloads to ensure only victims in specific countries received malicious content.
Among the compromised entities were Bangladesh’s Telecommunication Regulatory Commission, Ministry of Defence, and Ministry of Finance; Pakistan’s Directorate of Indigenous Technical Development; and Sri Lanka’s Department of External Resources, Department of Treasury Operations, Ministry of Defence, and Central Bank. The campaign exploited two long-standing Microsoft Office vulnerabilities CVE-2017-0199 (remote code execution) and CVE-2017-11882 (memory corruption in Equation Editor) to deploy StealerBot, a .NET-based malware.
The attack chain began with malicious documents that triggered CVE-2017-0199, delivering next-stage payloads via DLL side-loading to install StealerBot. A key tactic involved geofencing: if a victim’s IP address did not match the targeted region, an empty RTF file was sent as a decoy. The final payload, an RTF file exploiting CVE-2017-11882, executed a shellcode-based loader to deploy StealerBot, which is designed to steal screenshots, keystrokes, passwords, and files, establish a reverse shell, and drop additional malware.
Acronis researchers noted that SideWinder has maintained consistent operational tempo, reflecting sustained intent and organizational continuity. The group’s precision targeting delivering payloads only to carefully selected victims and often for limited durations underscores its high degree of control over attack execution. The campaign highlights the persistent threat posed by advanced cyber espionage actors to critical government infrastructure in South Asia.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for MHAB ??
What was MHAB's A.I Rankiteo Cyber Score in June 2026 ??
What was MHAB's A.I Rankiteo Cyber Score in May 2026 ??
What was MHAB's A.I Rankiteo Cyber Score in April 2026 ??
What was MHAB's A.I Rankiteo Cyber Score in March 2026 ??
What was MHAB's A.I Rankiteo Cyber Score in February 2026 ??
What was MHAB's A.I Rankiteo Cyber Score in January 2026 ??
What was MHAB's A.I Rankiteo Cyber Score in December 2025 ??
What was MHAB's A.I Rankiteo Cyber Score in November 2025 ??
What was MHAB's A.I Rankiteo Cyber Score in October 2025 ??
What was MHAB's A.I Rankiteo Cyber Score in September 2025 ??
What was MHAB's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on MHAB's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with MHAB ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view MHAB's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?