FeaturedNews Briefs

Parasram warns of possible GDPR fines after assessing TSTT data dump

By
2 Mins read
9300
Share

Above: Shiva Parasram.

Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats.

“I was talking to one of my friends who works at a pretty high position in the Big Four ( Deloitte, Ernst & Young (EY), KPMG, and PwC) about the implications with data privacy and the GDPR. If they have customer information (for anyone in the) EU at the moment or (someone) who falls under the EU GDPR, when the EU gets wind of this and they do their own investigations and analyse it, there could be fines for this. And those fines are nothing minimal”

Parasram wonders if TSTT still has the staff capabilities to mount a forensic analysis of what was taken. He’s been informed that after recent layoffs, TSTT may be operating with a skeleton staff for cybersecurity.

“We are trying to figure out if TSTT was actually aware of the full extent of the dump, if they actually took the dump to analyse it. One of my guys tried to open one of the Excel files. The file is so large that even with 64 gigs of RAM, it was taking forever.”

Parasram is a long way from reviewing all the data in the dump, but notes. I have seen information for many people that I know, accurate information, you know the the photos with IDs and stuff like that. Whether people pay with cash or Linx. But that’s from the client-side database.”

“But even on the company side, there’s a lot of internal stuff. There’s a password file called SYS_password.xls for example (with) names of systems and what appear to be passwords. It’s a lot of information. Everybody is exhausted, and we are probably just scratching the surface. It’s a big nightmare because honestly, if they were part of the EU, this could be billions of dollars in fines

Shiva Parasram

Shiva Parasram, is an Enterprise Risk Consultant, Senior Cybersecurity Lecturer and Forensic Investigator. He has written four books about digital forensics and leads the Computer Forensics and Security Institute.

 

 

 

Related Posts

bmobile launches second youth internship programme, targets 1,200

bmobile launches second youth internship programme, targets 1,200

By Press Release / May 23, 2026
“Strong institutions are measured not only by the services they provide but also by the opportunities they help create.”
Read More
Samsung and Google announce collab on fashionable SmartGlasses

Samsung and Google announce collab on fashionable SmartGlasses

By Press Release / May 21, 2026
With this new AI form factor, we are further expanding the Galaxy device ecosystem. Each device is optimised to deliver unique AI experiences.
Read More
Visa introduces card-based identity verification with Bahamas test

Visa introduces card-based identity verification with Bahamas test

By Press Release / May 15, 2026
Identity is the key to safe commerce. Your Visa card is now the key to secure online identity verification.
Read More
What the Canvas hack tells us about higher education software

What the Canvas hack tells us about higher education software

By Mark Lyndersay / May 15, 2026
Instructure is managing a very different proposition than most software vendors do. It has positioned itself as an education partner managing a wide range of integrations with education software tools.
Read More
Ghost women in AI? Hardly!

Ghost women in AI? Hardly!

By Mark Lyndersay / May 10, 2026
"When I first came out of university a million years ago, everybody was like, why build something here? Just take what's in Europe, lift and shift. That has been the...
Read More
Who will ride the digital rails? The challenge of inclusion

Who will ride the digital rails? The challenge of inclusion

By Nicole Greene / May 9, 2026
A cheque written on one branch of a commercial bank takes four working days to clear at another branch of the same bank. Cheques between two different banks take longer.
Read More
Why Digital Identity is more than an ID card

Why Digital Identity is more than an ID card

By Nicole Greene / May 8, 2026
Digital identity is not chiefly a technology problem. It is a trust problem expressed through technology.
Read More
What a 1956 shipping revolution can teach us about GovTech

What a 1956 shipping revolution can teach us about GovTech

By Nicole Greene / May 6, 2026
Fragmented storage was not a security feature. It was a vulnerability. The databases had been safe only by virtue of being useless to each other.
Read More
IShowSpeed: Here and gone

IShowSpeed: Here and gone

By Mark Lyndersay / May 4, 2026
Watkins has 53 million subscribers on YouTube and his Trinidad and Tobago visit alone clocked 4.8 million views for a five hour and 47 minute stream.
Read More
Digital Public Infrastructure is the most important thing you’ve (probably) never heard of

Digital Public Infrastructure is the most important thing you’ve (probably) never heard of

By Nicole Greene / May 3, 2026
The expertise and learnings from building India’s digital stack did not remain in India.
Read More
bmobile launches second youth internship programme, targets 1,200 bmobile launches second youth internship programme,... May 23, 2026
Samsung and Google announce collab on fashionable SmartGlasses Samsung and Google announce collab on... May 21, 2026
Visa introduces card-based identity verification with Bahamas test Visa introduces card-based identity verification with... May 15, 2026
What the Canvas hack tells us about higher education software What the Canvas hack tells us... May 15, 2026
Ghost women in AI? Hardly! Ghost women in AI? Hardly! May 10, 2026
Who will ride the digital rails? The challenge of inclusion Who will ride the digital rails?... May 9, 2026
Why Digital Identity is more than an ID card Why Digital Identity is more than... May 8, 2026
What a 1956 shipping revolution can teach us about GovTech What a 1956 shipping revolution can... May 6, 2026
IShowSpeed: Here and gone IShowSpeed: Here and gone May 4, 2026
Digital Public Infrastructure is the most important thing you’ve (probably) never heard of Digital Public Infrastructure is the most... May 3, 2026

🤞 Get connected!

A once weekly email notification of new stories on TechNewsTT. Just that. No spam.

Possible UI Glitch. Click top right corner to dismiss 👉

Get Connected!

A once weekly email notification of new stories on TechNewsTT.

Just that. No spam.

9300
Share
Related posts
FeaturedPress Releases

bmobile launches second youth internship programme, targets 1,200

By
3 Mins read
“Strong institutions are measured not only by the services they provide but also by the opportunities they help create.”
BitDepthBitDepth+Featured

The garbage infesting my in-box

By
2 Mins read
Do not click on links before fully investigating them. Do not call given phone numbers.
BitDepthFeatured

TSTT's payments problem (updated)

By
6 Mins read
Something seems to have collapsed in what should be an efficient, all-digital payment and verification loop.
Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

1 Comment
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
trackback
Roundup: for the week ending 5 November 2023 | ICT Pulse – The leading technology blog in the Caribbean
2 years ago

[…] Trinidad and Tobago – Shiva Parasram is a cybersecurity expert who has been examining the dump of data exfiltrated from TSTT’s servers. When he spoke with me, he was coming to the end of 22 hours of examining the files, which were captured as unencrypted, plain text files in txt and csv formats. Images of customer documents and identification are in standard JPEG and PDF formats… more […]

0
Reply
wpdiscuz   wpDiscuz
×
FeaturedNews Briefs

Updated: TSTT reported hacked by RansomEXX exploit

By

1
0
Share your perspective in the comments!x
()
x