Above: Shiva Parasram.

Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats.

“I was talking to one of my friends who works at a pretty high position in the Big Four ( Deloitte, Ernst & Young (EY), KPMG, and PwC) about the implications with data privacy and the GDPR. If they have customer information (for anyone in the) EU at the moment or (someone) who falls under the EU GDPR, when the EU gets wind of this and they do their own investigations and analyse it, there could be fines for this. And those fines are nothing minimal”

Parasram wonders if TSTT still has the staff capabilities to mount a forensic analysis of what was taken. He’s been informed that after recent layoffs, TSTT may be operating with a skeleton staff for cybersecurity.

“We are trying to figure out if TSTT was actually aware of the full extent of the dump, if they actually took the dump to analyse it. One of my guys tried to open one of the Excel files. The file is so large that even with 64 gigs of RAM, it was taking forever.”

Parasram is a long way from reviewing all the data in the dump, but notes. I have seen information for many people that I know, accurate information, you know the the photos with IDs and stuff like that. Whether people pay with cash or Linx. But that’s from the client-side database.”

“But even on the company side, there’s a lot of internal stuff. There’s a password file called SYS_password.xls for example (with) names of systems and what appear to be passwords. It’s a lot of information. Everybody is exhausted, and we are probably just scratching the surface. It’s a big nightmare because honestly, if they were part of the EU, this could be billions of dollars in fines

Shiva Parasram

Shiva Parasram, is an Enterprise Risk Consultant, Senior Cybersecurity Lecturer and Forensic Investigator. He has written four books about digital forensics and leads the Computer Forensics and Security Institute.

Related Posts

• Press Releases

bMobile partners with Neptune for satellite based network resilience

By Press Release / February 17, 2025

Neptune provides 100% geographic coverage across Trinidad and Tobago’s land and territorial waters

Read More

• BitDepth
• Featured

You should probably have an EPK

By Mark Lyndersay / March 24, 2025

Social Media: Users shoehorn their content into the templates provided and everybody, from company presidents to interns, looks exactly the same.

Read More

• Featured
• Opinion

Should we be concerned about in-car gaming with Android Auto?

By OpEd / March 17, 2025

Car systems have already been successfully attacked through the entertainment and connectivity interfaces.

Read More

• Featured
• Press Releases

Pieter Verkade appointed new CEO of DigicelTT

By Press Release / March 17, 2025

Verkade is a seasoned executive with over 27 years of experience in the telecommunications industry.

Read More

• BitDepth
• Featured

Hands-on with the Samsung S25 Ultra

By Mark Lyndersay / March 17, 2025

Samsung has quietly ushered its largely unloved digital assistant Bixby off the premium space offered with a right swipe on the home screen

Read More

• BitDepth
• Featured

The last Carnival column

By Mark Lyndersay / March 10, 2025

Managing Carnival using the same structure that was first devised 68 years ago under the CDC seems particularly misguided.

Read More

• BitDepth
• Featured

Will UPI change how we shop?

By Mark Lyndersay / March 3, 2025

Underlying any significant change to digital payments will be the implementation of a national e-ID system.

Read More

• Press Releases

Samsung explains its AI approach for the S25

By Press Release / February 24, 2025

Intuitive AI anticipates user needs before they are explicitly communicated, offering suggestions or automating tasks

Read More

• BitDepth
• Featured

Is e-money a solution in search of a problem?

By Mark Lyndersay / February 24, 2025

According to the CBTT in its responses to questions, will cost its users "either very little or zero to use.”

Read More

• Press Releases

bMobile takes mobile speed top spot for Q3, Q4, 2024

By Press Release / February 24, 2025

Alongside significant investments in expanding its 4G LTE network, bmobile has optimized spectrum efficiency and enhanced its radio capacity across its entire network

Read More

• Press Releases

bMobile partners with Neptune for satellite based network resilience

By Press Release / February 17, 2025

Neptune provides 100% geographic coverage across Trinidad and Tobago’s land and territorial waters

Read More

• BitDepth
• Featured

You should probably have an EPK

By Mark Lyndersay / March 24, 2025

Social Media: Users shoehorn their content into the templates provided and everybody, from company presidents to interns, looks exactly the same.

Read More

• 1
• 2
• 3
• 4
• 5
• 6
• 7
• 8
• 9
• 10

Samsung explains its AI approach for... February 24, 2025

Is e-money a solution in search... February 24, 2025

bMobile takes mobile speed top spot... February 24, 2025

bMobile partners with Neptune for satellite... February 17, 2025

You should probably have an EPK March 24, 2025

Should we be concerned about in-car... March 17, 2025

Pieter Verkade appointed new CEO of... March 17, 2025

Hands-on with the Samsung S25 Ultra March 17, 2025

The last Carnival column March 10, 2025

Will UPI change how we shop? March 3, 2025

Samsung explains its AI approach for... February 24, 2025

Is e-money a solution in search... February 24, 2025

bMobile takes mobile speed top spot... February 24, 2025

bMobile partners with Neptune for satellite... February 17, 2025

You should probably have an EPK March 24, 2025

Should we be concerned about in-car... March 17, 2025

Pieter Verkade appointed new CEO of... March 17, 2025

Hands-on with the Samsung S25 Ultra March 17, 2025