FeaturedNews Briefs

Parasram warns of possible GDPR fines after assessing TSTT data dump

By
2 Mins read
9234
Share

Above: Shiva Parasram.

Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats.

“I was talking to one of my friends who works at a pretty high position in the Big Four ( Deloitte, Ernst & Young (EY), KPMG, and PwC) about the implications with data privacy and the GDPR. If they have customer information (for anyone in the) EU at the moment or (someone) who falls under the EU GDPR, when the EU gets wind of this and they do their own investigations and analyse it, there could be fines for this. And those fines are nothing minimal”

Parasram wonders if TSTT still has the staff capabilities to mount a forensic analysis of what was taken. He’s been informed that after recent layoffs, TSTT may be operating with a skeleton staff for cybersecurity.

“We are trying to figure out if TSTT was actually aware of the full extent of the dump, if they actually took the dump to analyse it. One of my guys tried to open one of the Excel files. The file is so large that even with 64 gigs of RAM, it was taking forever.”

Parasram is a long way from reviewing all the data in the dump, but notes. I have seen information for many people that I know, accurate information, you know the the photos with IDs and stuff like that. Whether people pay with cash or Linx. But that’s from the client-side database.”

“But even on the company side, there’s a lot of internal stuff. There’s a password file called SYS_password.xls for example (with) names of systems and what appear to be passwords. It’s a lot of information. Everybody is exhausted, and we are probably just scratching the surface. It’s a big nightmare because honestly, if they were part of the EU, this could be billions of dollars in fines

Shiva Parasram

Shiva Parasram, is an Enterprise Risk Consultant, Senior Cybersecurity Lecturer and Forensic Investigator. He has written four books about digital forensics and leads the Computer Forensics and Security Institute.

 

 

 

Related Posts

Dukharan deepfaked

Dukharan deepfaked

By Mark Lyndersay / March 4, 2026
If a post, video, or article claiming to be me is not hosted on my official website or verified channels, it is a fabrication. Period. I do not endorse get-rich-quick...
Read More
Visa contactless transactions grew 30% during TT’s 2026 Carnival 

Visa contactless transactions grew 30% during TT’s 2026 Carnival 

By Press Release / March 4, 2026
Digital payments have entered a sustained growth phase in Trinidad and Tobago, fundamentally transforming how locals and visitors experience major cultural celebrations.
Read More
Samsung’s S26 leans in hard on AI

Samsung’s S26 leans in hard on AI

By Mark Lyndersay / March 1, 2026
Some users including those with data that requires above average security, may not greet these agentic AI advancements with enthusiasm.
Read More
Why verification technologies will shape the next decade

Why verification technologies will shape the next decade

By OpEd / February 25, 2026
Trust infrastructure enables identity-backed interactions to cryptographically link each payment to a verified legal identity.
Read More
A 2026 manifesto for Carnival

A 2026 manifesto for Carnival

By Mark Lyndersay / February 23, 2026
The idea of Carnival, the spark of the individual, rebellious, expressed as boldly inventive creation still catches fire.
Read More
Digital SME onboarding for CIBC customers coming to TT

Digital SME onboarding for CIBC customers coming to TT

By Press Release / February 23, 2026
The new system is designed to remove traditional barriers to opening a business account, providing entrepreneurs with a faster, simpler, and more transparent onboarding experience.
Read More
A hiss from a rose

A hiss from a rose

By Mark Lyndersay / February 15, 2026
There is likely to be a need for sex re-education to deprogram children who see sex as a wrestling match.
Read More
TATT answers questions about its cybersecurity framework for telcoms, broadcasters

TATT answers questions about its cybersecurity framework for telcoms, broadcasters

By Mark Lyndersay / February 10, 2026
Meaningful cybersecurity incidents are those that result in loss or degradation of services, whether isolated or widespread, due to compromised network element.
Read More
News is a niche until it’s not

News is a niche until it’s not

By Mark Lyndersay / February 9, 2026
The New York Times produced approximately 230 pieces of content per day on average; The Washington Post, more than 500 per day in 2016
Read More
FT’s second Next Gen News report offers deeper insights

FT’s second Next Gen News report offers deeper insights

By Mark Lyndersay / February 9, 2026
Successful producers are reversing the journalism process, dismantling the inverted pyramid of news structure
Read More
Dukharan deepfaked Dukharan deepfaked March 4, 2026
Visa contactless transactions grew 30% during TT’s 2026 Carnival  Visa contactless transactions grew 30% during... March 4, 2026
Samsung’s S26 leans in hard on AI Samsung’s S26 leans in hard on... March 1, 2026
Why verification technologies will shape the next decade Why verification technologies will shape the... February 25, 2026
A 2026 manifesto for Carnival A 2026 manifesto for Carnival February 23, 2026
Digital SME onboarding for CIBC customers coming to TT Digital SME onboarding for CIBC customers... February 23, 2026
A hiss from a rose A hiss from a rose February 15, 2026
TATT answers questions about its cybersecurity framework for telcoms, broadcasters TATT answers questions about its cybersecurity... February 10, 2026
News is a niche until it’s not News is a niche until it’s... February 9, 2026
FT’s second Next Gen News report offers deeper insights FT’s second Next Gen News report... February 9, 2026

🤞 Get connected!

A once weekly email notification of new stories on TechNewsTT. Just that. No spam.

Possible UI Glitch. Click top right corner to dismiss 👉

Get Connected!

A once weekly email notification of new stories on TechNewsTT.

Just that. No spam.

9234
Share
Related posts
BitDepth+Featured

TATT answers questions about its cybersecurity framework for telcoms, broadcasters

By
6 Mins read
Meaningful cybersecurity incidents are those that result in loss or degradation of services, whether isolated or widespread, due to compromised network element.
Press Releases

NPICTT and TSTT announce strategic national partnership for digital payments and eKYC

By
3 Mins read
NPICTT now operates as the national payments infrastructure provider, while its Innovation Centre functions as the entry point for certified digital solutions to be rolled out across the public sector.
Press Releases

TSTT, PSA announce Affinity Plan for 16,000 members

By
2 Mins read
PSA members have access to bundles that combine mobile, broadband internet, TV/landline, and home security services at discounted rates.
Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

1 Comment
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
trackback
Roundup: for the week ending 5 November 2023 | ICT Pulse – The leading technology blog in the Caribbean
2 years ago

[…] Trinidad and Tobago – Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats… more […]

0
Reply
wpdiscuz   wpDiscuz
×
FeaturedNews Briefs

Updated: TSTT reported hacked by RansomEXX exploit

By
1
0
Share your perspective in the comments!x
()
x