FeaturedNews Briefs

Parasram warns of possible GDPR fines after assessing TSTT data dump

By
2 Mins read
9142
Share

Above: Shiva Parasram.

Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats.

“I was talking to one of my friends who works at a pretty high position in the Big Four ( Deloitte, Ernst & Young (EY), KPMG, and PwC) about the implications with data privacy and the GDPR. If they have customer information (for anyone in the) EU at the moment or (someone) who falls under the EU GDPR, when the EU gets wind of this and they do their own investigations and analyse it, there could be fines for this. And those fines are nothing minimal”

Parasram wonders if TSTT still has the staff capabilities to mount a forensic analysis of what was taken. He’s been informed that after recent layoffs, TSTT may be operating with a skeleton staff for cybersecurity.

“We are trying to figure out if TSTT was actually aware of the full extent of the dump, if they actually took the dump to analyse it. One of my guys tried to open one of the Excel files. The file is so large that even with 64 gigs of RAM, it was taking forever.”

Parasram is a long way from reviewing all the data in the dump, but notes. I have seen information for many people that I know, accurate information, you know the the photos with IDs and stuff like that. Whether people pay with cash or Linx. But that’s from the client-side database.”

“But even on the company side, there’s a lot of internal stuff. There’s a password file called SYS_password.xls for example (with) names of systems and what appear to be passwords. It’s a lot of information. Everybody is exhausted, and we are probably just scratching the surface. It’s a big nightmare because honestly, if they were part of the EU, this could be billions of dollars in fines

Shiva Parasram

Shiva Parasram, is an Enterprise Risk Consultant, Senior Cybersecurity Lecturer and Forensic Investigator. He has written four books about digital forensics and leads the Computer Forensics and Security Institute.

 

 

 

Related Posts

Digital New Year’s resolutions

Digital New Year’s resolutions

By Mark Lyndersay / December 29, 2025
Every computer and smartphone has a digital calendar system, which means that you have a live appointment book capable of giving you reminders.
Read More
Choosing the best KYC verification tool for your business

Choosing the best KYC verification tool for your business

By OpEd / December 27, 2025
Fraud attempts today are much more advanced with the use of fake IDs. deepfakes, synthetic identities, and account takeovers.
Read More
Media monitoring in today’s information economy

Media monitoring in today’s information economy

By OpEd / December 25, 2025
Companies must strike a balance between the desire to be enlightened and the need to observe individual rights and social values.
Read More
What Does Your Music Say About You?

What Does Your Music Say About You?

By Press Release / December 22, 2025
The virality of “musical age” reflects a deeper pattern: algorithms have blurred generational boundaries.
Read More
WiPay announces new strategy for services, payments

WiPay announces new strategy for services, payments

By Mark Lyndersay / December 22, 2025
Are there enough bread and butter customers who need new options for travel, phone service and loan services to make those add-on businesses worth the time of WiPay.
Read More
TSTT, PSA announce Affinity Plan for 16,000 members

TSTT, PSA announce Affinity Plan for 16,000 members

By Press Release / December 21, 2025
PSA members have access to bundles that combine mobile, broadband internet, TV/landline, and home security services at discounted rates.
Read More
Vendor screening: Why it matters for compliance, security, and partnership

Vendor screening: Why it matters for compliance, security, and partnership

By OpEd / December 20, 2025
Current regulatory demands require organizations to maintain constant oversight of vendor operations throughout the entire relationship
Read More
Old Mac, new OS

Old Mac, new OS

By Mark Lyndersay / December 15, 2025
The best OS versions to target are Sonoma and Sequoia because these systems are still receiving minor security and improvement updates.
Read More
Personalization will be the core of the next tech revolution

Personalization will be the core of the next tech revolution

By OpEd / December 14, 2025
Personalization is no longer a marketing add-on. It is the backbone of the next technology wave.
Read More
WiDay 2025 – WiPay’s five-pillar ecosystem

WiDay 2025 – WiPay’s five-pillar ecosystem

By Press Release / December 8, 2025
Wayne underscored WiPay’s role in bringing the unbanked online through a cash-to-digital voucher network.
Read More
Digital New Year’s resolutions Digital New Year’s resolutions December 29, 2025
Choosing the best KYC verification tool for your business Choosing the best KYC verification tool... December 27, 2025
Media monitoring in today’s information economy Media monitoring in today’s information economy December 25, 2025
What Does Your Music Say About You? What Does Your Music Say About... December 22, 2025
WiPay announces new strategy for services, payments WiPay announces new strategy for services,... December 22, 2025
TSTT, PSA announce Affinity Plan for 16,000 members TSTT, PSA announce Affinity Plan for... December 21, 2025
Vendor screening: Why it matters for compliance, security, and partnership Vendor screening: Why it matters for... December 20, 2025
Old Mac, new OS Old Mac, new OS December 15, 2025
Personalization will be the core of the next tech revolution Personalization will be the core of... December 14, 2025
WiDay 2025 – WiPay’s five-pillar ecosystem WiDay 2025 – WiPay’s five-pillar ecosystem December 8, 2025

🤞 Get connected!

A once weekly email notification of new stories on TechNewsTT. Just that. No spam.

Possible UI Glitch. Click top right corner to dismiss 👉

Get Connected!

A once weekly email notification of new stories on TechNewsTT.

Just that. No spam.

9142
Share
Related posts
Press Releases

TSTT, PSA announce Affinity Plan for 16,000 members

By
2 Mins read
PSA members have access to bundles that combine mobile, broadband internet, TV/landline, and home security services at discounted rates.
Press Releases

UTC, TSTT and National Payment Company sign agreement for national e-KYC platform

By
2 Mins read
It’s scalable, secure, and meets international standards — a strong statement of what our local teams can accomplish
Press Releases

TSTT offers online, immersive digital internship for 600 youth

By
3 Mins read
“Corporate social responsibility must be aligned in a way that redounds to the benefit of Trinbagonians.”
Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

1 Comment
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
trackback
Roundup: for the week ending 5 November 2023 | ICT Pulse – The leading technology blog in the Caribbean
2 years ago

[…] Trinidad and Tobago – Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats… more […]

0
Reply
wpdiscuz   wpDiscuz
×
FeaturedNews Briefs

Updated: TSTT reported hacked by RansomEXX exploit

By
1
0
Share your perspective in the comments!x
()
x