Bangladesh Cybersecurity 2020 Overview
Bangladesh's national awareness of cybersecurity increased dramatically following the 2016 Bangladesh Bank SWIFT hacking incident ($81M in losses). As of 2020, a national cybersecurity strategy has been formulated, BGD e-GOV CIRT is operational, and the Digital Security Act (DSA) has been enacted, establishing an institutional foundation — though enterprise and government security capabilities remain at an early stage.
The cybersecurity market is approximately $45M, projected to grow at 30% annually and reach $170M by 2025. The rapid expansion of MFS (mobile financial services) has driven a surge in financial fraud, while OT security for garment factories, strengthening government cybersecurity capacity, and data protection legislation are all urgent priorities. Korean organizations including KISA, AhnLab, and S2W are exploring ODA linkage and technology export opportunities.
Cyber Threat Landscape Analysis
The primary threats in Bangladesh are financial fraud, ransomware, DDoS attacks, and phishing. MFS (mobile financial services) proliferation has driven a sharp increase in mobile financial fraud, and Industrial Control System (ICS) security for garment factories has emerged as a new challenge. Nation-state APT attacks have also been on an upward trend since 2020.
| Threat | Cases/Year | Primary Targets | Estimated Losses | Trend | Korean Solutions |
|---|---|---|---|---|---|
| Financial Fraud | 15,000+ | MFS and online banking | $50M+ | Surging | AhnLab, Igloo Security |
| Ransomware | 3,000+ | Enterprises and hospitals | $10M+ | Increasing | AhnLab V3, ESTsecurity |
| Phishing | 20,000+ | Individuals and companies | $20M+ | Increasing | S2W, Genians |
| DDoS | 500+ | Government and finance | Service disruption | Flat | Akamai and SKB partnerships |
| ICS Attacks | 100+ | Garments and power | Production stoppage | Emerging | Norma, Pentasecurity |
National Cybersecurity Strategy and Legal Framework
The government has established legal and institutional foundations through the 2014 ICT Act amendment, the 2018 Digital Security Act (DSA), and the 2020 National Cybersecurity Strategy. BGD e-GOV CIRT serves as the national CERT, overseeing threat monitoring, incident response, and capacity building. The government's goal is to elevate cybersecurity capabilities to ASEAN standards by 2025.
Security Status and Challenges by Industry
The financial sector has the highest security readiness, but still falls short of global benchmarks. Garment and manufacturing OT (Operational Technology) security is virtually nonexistent, and government agencies face a severe shortage of security personnel. Tailored security solutions and workforce development for each industry are urgently needed.
Korean Cybersecurity Firm Cooperation Opportunities
| Sector | Demand | Korean Firms / Organizations | Cooperation Mode | Expected Revenue |
|---|---|---|---|---|
| Financial Security | MFS and banking protection | S2W, AhnLab, Igloo Security | Solution export and localization | $5M |
| OT / ICS Security | Garment and power facilities | Norma, Pentasecurity | Technology transfer and consulting | $3M |
| Workforce Development | CERT and security professionals | KISA (Korea Internet & Security Agency) | ODA training and education | $2M |
| Security Certification | ISO 27001 consulting | BSI Korea, DNV | Consulting and audit | $1M |
| National SOC | BGD CIRT support | 코리아SK Shieldus, NSHC | ODA and commercialization | $4M |
| Country | Market Size | CERT Status | Primary Threats | Korean Cooperation Suitability |
|---|---|---|---|---|
| Bangladesh | $45M | Established 2016 | Financial fraud, ransomware | ★★★★☆ |
| India | $2.5B | CERT-In (mature) | APT, supply chain | ★★★☆☆ |
| Sri Lanka | $20M | Established 2012 | Phishing, financial fraud | ★★★★☆ |
| Pakistan | $30M | Established 2014 | Finance and government attacks | ★★★☆☆ |
| Nepal | $5M | Early stage | Phishing and fraud | ★★☆☆☆ |