FeaturedNews Briefs

Parasram warns of possible GDPR fines after assessing TSTT data dump

By
2 Mins read
7172
Share

Above: Shiva Parasram.

Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats.

“I was talking to one of my friends who works at a pretty high position in the Big Four ( Deloitte, Ernst & Young (EY), KPMG, and PwC) about the implications with data privacy and the GDPR. If they have customer information (for anyone in the) EU at the moment or (someone) who falls under the EU GDPR, when the EU gets wind of this and they do their own investigations and analyse it, there could be fines for this. And those fines are nothing minimal”

Parasram wonders if TSTT still has the staff capabilities to mount a forensic analysis of what was taken. He’s been informed that after recent layoffs, TSTT may be operating with a skeleton staff for cybersecurity.

“We are trying to figure out if TSTT was actually aware of the full extent of the dump, if they actually took the dump to analyse it. One of my guys tried to open one of the Excel files. The file is so large that even with 64 gigs of RAM, it was taking forever.”

Parasram is a long way from reviewing all the data in the dump, but notes. I have seen information for many people that I know, accurate information, you know the the photos with IDs and stuff like that. Whether people pay with cash or Linx. But that’s from the client-side database.”

“But even on the company side, there’s a lot of internal stuff. There’s a password file called SYS_password.xls for example (with) names of systems and what appear to be passwords. It’s a lot of information. Everybody is exhausted, and we are probably just scratching the surface. It’s a big nightmare because honestly, if they were part of the EU, this could be billions of dollars in fines

Shiva Parasram

Shiva Parasram, is an Enterprise Risk Consultant, Senior Cybersecurity Lecturer and Forensic Investigator. He has written four books about digital forensics and leads the Computer Forensics and Security Institute.

 

 

 

Related Posts

America’s open mic moment

America’s open mic moment

By Mark Lyndersay / November 18, 2024
What made online pundits so effective in the US election?
Read More
The press and the president-elect

The press and the president-elect

By Mark Lyndersay / November 11, 2024
Beyond the president-elect's often-expressed intent to retaliate against journalists he believes are unfairly attacking him is the agenda of Project 2025.
Read More
All washed up

All washed up

By Mark Lyndersay / November 4, 2024
Dirt on its own will simply shake out of fabric. What keeps it in place is oil and grease, readily generated by human skin.
Read More
Samsung extends Knox security to its home appliances

Samsung extends Knox security to its home appliances

By Press Release / October 28, 2024
Knox Matrix is a security solution that comprehensively protects connected devices and networks using private blockchain technology.
Read More
bmobile and CARIRI host 3,500 children at Innovation Camp

bmobile and CARIRI host 3,500 children at Innovation Camp

By Press Release / October 28, 2024
In the Power Up Competition, students were challenged to develop solutions for real-world problems particularly those affecting the environment.
Read More
The state of Caribbean digital transformation

The state of Caribbean digital transformation

By Mark Lyndersay / October 28, 2024
Despite 87 per cent believing that digital will disrupt their industry, 87 per cent acknowledged that they don't have the right leaders
Read More
The WordPress War

The WordPress War

By Mark Lyndersay / October 21, 2024
WPEngine and the websites of its customers were blocked from the WordPress log-in system theme and plug-in updates and other background processes that enable a Wordpress website.
Read More
A budget of concrete and asphalt

A budget of concrete and asphalt

By Mark Lyndersay / October 14, 2024
Four years after Hassel Bacchus took up the pioneering role of Digital Transformation Minister, the 2025 budget could not identify any completed transformation project that's positively affected citizens.
Read More
Being secure when making tap to pay transactions

Being secure when making tap to pay transactions

By Press Release / October 13, 2024
Each transaction is accompanied by a unique code that securely protects cardholder payment information.
Read More
TT Digital Transformation Minister re-elected president of CTU

TT Digital Transformation Minister re-elected president of CTU

By Mark Lyndersay / October 8, 2024
“The Caribbean cannot be a mere onlooker. Rather, we must be active innovators and contributors, ensuring that our regional priorities, unique perspectives and culture are safeguarded and prioritised at a...
Read More
America’s open mic moment America’s open mic moment November 18, 2024
The press and the president-elect The press and the president-elect November 11, 2024
All washed up All washed up November 4, 2024
Samsung extends Knox security to its home appliances Samsung extends Knox security to its... October 28, 2024
bmobile and CARIRI host 3,500 children at Innovation Camp bmobile and CARIRI host 3,500 children... October 28, 2024
The state of Caribbean digital transformation The state of Caribbean digital transformation October 28, 2024
The WordPress War The WordPress War October 21, 2024
A budget of concrete and asphalt A budget of concrete and asphalt October 14, 2024
Being secure when making tap to pay transactions Being secure when making tap to... October 13, 2024
TT Digital Transformation Minister re-elected president of CTU TT Digital Transformation Minister re-elected president... October 8, 2024

🤞 Get connected!

A once weekly email notification of new stories on TechNewsTT. Just that. No spam.

Possible UI Glitch. Click top right corner to dismiss 👉

Get Connected!

A once weekly email notification of new stories on TechNewsTT.

Just that. No spam.

7172
Share
Related posts
News Briefs

TSTT confirms Kent Western as CEO

By
1 Mins read
Effective October 01, 2024, TSTT has confirmed the appointment of Kent Western as Chief Executive Officer. Western has been acting…
Press Releases

TSTT partners with France's SOGET to improve port efficiency and digital transformation

By
3 Mins read
The PCS complements existing systems, neither replacing nor competing with them, ushering in a new aspect of interoperability and data sharing.
Press Releases

TSTT activates disaster plan, closes select outlets

By
1 Mins read
We are working closely with the Office of Disaster Preparedness and Management (ODPM), Tobago Emergency Management Agency (TEMA) and other agencies to ensure critical services are restored promptly and safely, if impacted.
Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

1 Comment
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
trackback
Roundup: for the week ending 5 November 2023 | ICT Pulse – The leading technology blog in the Caribbean
1 year ago

[…] Trinidad and Tobago – Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats… more […]

0
Reply
wpdiscuz   wpDiscuz
×
FeaturedNews Briefs

Updated: TSTT reported hacked by RansomEXX exploit

By
1
0
Share your perspective in the comments!x
()
x