Above: Shiva Parasram.
Cybersecurity consultant Shiva Parasram emphathises with TSTT customers who have information included in the data dump exfiltrated by RansomEXX, but warns that there is little that an individual can do about it. He noted that the raw data dump has migrated from the dark web and is now being shared on download sites like Megafiles.
“Honestly, I don’t think there’s much anybody could do because you know, it’s your name, your address, your ID,” Parasram said.
“Unfortunately, I have seen things like passports, drivers permits, death certificates, screenshots of payments from or transfers to confirm payments, screenshots of banking information.”
“There’s a letter by a businessman requesting a service. It’s a scan of a signed letter. Has his business address, account info, contact and dp. Then there are photos of his DP and passport. The only thing missing is his shoe size and blood type.”
“I don’t think there’s much anyone can do. You can change your password, but you can’t really change user names you can’t get a new ID card number and you’d have to move to get a new address.”
“This is one of the reasons why it’s so damning and the fines are so high in in the countries that that have laws for data leaks and data retention.”
“If my stuff was out there, there’s nothing much I could do and that data will be out there for very long time. Even if you somehow managed to pay a company to try to scrub that data, some sort of broker who would talk to the ransomware group, to tell them, I’d like to get this person’s name removed but then , you’re playing with fire. And you’d be pouring gas on the fire at the same time by doing that.”
Related posts
You should probably have an EPK
March 24, 2025
Should we be concerned about in-car...
March 17, 2025
Pieter Verkade appointed new CEO of...
March 17, 2025
Hands-on with the Samsung S25 Ultra
March 17, 2025
There are laws that protect us – is no one well-read in our consumer protection laws? What about our Electronic Transaction Act? This guy mentions none of that. Why? You don’t even have to prove damages, just reckless incompetence in protection of the data which would be very easy through discovery as violations of the consumer protections laws in TT = criminal charges and fines! But not when we say things like, oh well there’s nothing we can do. Are you serious?? Next time interview an attorney who specializes in this, not some random consultant who gives this kind of advice in ignorance.
Actually, the relevant laws are in the unproclaimed sections of the Data Protection Act. Until they are brought into law, no crime has been committed regarding the data breach.
[…] about their personal data being released onto the dark web, even as cybersecurity experts were saying there was nothing to be done about […]
[…] Trinidad and Tobago – Cybersecurity consultant Shiva Parasram emphathises with TSTT customers who have information included in the data dump exfiltrated by RansomEXX, but warns that there is little that an individual can do about it. He noted that the raw data dump has migrated from the dark web and is now being shared on download sites like Megafiles… more […]