Above: Shiva Parasram.
Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats.
“I was talking to one of my friends who works at a pretty high position in the Big Four ( Deloitte, Ernst & Young (EY), KPMG, and PwC) about the implications with data privacy and the GDPR. If they have customer information (for anyone in the) EU at the moment or (someone) who falls under the EU GDPR, when the EU gets wind of this and they do their own investigations and analyse it, there could be fines for this. And those fines are nothing minimal”
Parasram wonders if TSTT still has the staff capabilities to mount a forensic analysis of what was taken. He’s been informed that after recent layoffs, TSTT may be operating with a skeleton staff for cybersecurity.
“We are trying to figure out if TSTT was actually aware of the full extent of the dump, if they actually took the dump to analyse it. One of my guys tried to open one of the Excel files. The file is so large that even with 64 gigs of RAM, it was taking forever.”
Parasram is a long way from reviewing all the data in the dump, but notes. I have seen information for many people that I know, accurate information, you know the the photos with IDs and stuff like that. Whether people pay with cash or Linx. But that’s from the client-side database.”
“But even on the company side, there’s a lot of internal stuff. There’s a password file called SYS_password.xls for example (with) names of systems and what appear to be passwords. It’s a lot of information. Everybody is exhausted, and we are probably just scratching the surface. It’s a big nightmare because honestly, if they were part of the EU, this could be billions of dollars in fines
Shiva Parasram
Shiva Parasram, is an Enterprise Risk Consultant, Senior Cybersecurity Lecturer and Forensic Investigator. He has written four books about digital forensics and leads the Computer Forensics and Security Institute.
Related Posts
New MoF based phishing scheme in...
June 8, 2026
Solving the region’s journalism problem
June 8, 2026
When “It wasn’t a breach” actually...
June 3, 2026
Tambini to journalists: “Keep doing what...
May 31, 2026
How do we unfetter journalism from...
May 25, 2026
bmobile launches second youth internship programme,...
May 23, 2026
Samsung and Google announce collab on...
May 21, 2026
Visa introduces card-based identity verification with...
May 15, 2026
What the Canvas hack tells us...
May 15, 2026
Ghost women in AI? Hardly!
May 10, 2026
![](https://<!-- wp:image {"lightbox":{"enabled":false},"id":18525,"sizeSlug":"full","linkDestination":"custom","align":"center"} --> <figure class="wp-block-image aligncenter size-full"><a href="https://bluehost.sjv.io/c/347535/2147563/11352" target="_blank" rel=" noreferrer noopener"><img src="https://technewstt.com/wp-content/uploads/2026/05/Hosting-2-336x280-1.png" alt="" class="wp-image-18525"/></a></figure> <!-- /wp:image -->)
[…] Trinidad and Tobago – Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats… more […]