PORT OF SPAIN, Trinidad, CMC – Prime Minister of Trinidad and Tobago Dr. Keith Rowley has called on the Telecommunication Services of Trinidad and Tobago (TSTT) to treat as a “national security threat” the cyberattack on its system that has left the personal information of thousands of its customers comprosmised.
Late last month, international hackers Ransomexx announced it had infected TSTT with ransomware and stole as many as six gigabytes (GB) of its data, including names, e-mail addresses, national ID numbers, phone numbers and “a lot of other sensitive data”.
The paper said that it had obtained a copy of the 6GB of data from TSTT which was uploaded to the dark web, following a cyberattack on the company on October 9, and was able to verify this. It said the data bundle includes scans, a list of names and credentials.
It said Prime MInister Rowley had at the time of publishing the story had not responded to its request for a comment and that he had also veeb sent a copy of the information which the newspaper said it was able to source and verify.
In a statement posted on his Facebook page, Prime MInister Rowley said “I have confirmed that the information used by the Trinidad Guardian to publish its story was NOT my data. That data profile of ID and DP is for another family member.”
“That piece of data has information which is accurate but not secret”.
But Prime Minister Rowley warned that “this data or any other for that matter, falling into the hands of criminals, is deeply disturbing and this occurrence should be treated with the greatest competence and utmost sincerity by the company.
Public Utilities Minister Marvin Gonzales has since called for”a thorough and full-scale investigation” into the cyberattack after saying that he is “deeply concerned” about the csituation.
Gonsalves said that digital security invasions were becoming an increasingly frequent phenomenon worldwide and that while no organisation or individual was immune to such attacks, the breach of TSTT’s digital security apparatus “is a matter of grave concern to Government.
TSTT last weekend acknowledged that information on some of its customers had been captured following a cyberattack last month.
“During the past seven days, TSTT has been working with its international cyber security experts and has undertaken a rigorous examination of data published on the dark web after a ransomware group claimed ownership of a cyberattack on the telecommunications company.
“Although the published material was easily accessible, the corroboration process was time consuming because it required cross referencing data across multiple extensive databases to verify sources. With the support of our cyber security consultants, the company has determined that the data released contains largely identifying information, and TSTT apologises to those customers whose information was accessed by these cyber terrorists,” the company said in a statement.
The telecommunications company said that it is still scrutinising the data, but that what had been stolen represents less than one per cent of the petabytes of data the company produces and stores.
“Moreover, it represents information of a small subset of TSTT’s customer base. A single customer could generate hundreds or thousands of records of non-critical, non-sensitive transactions. The majority of TSTT’s customers’ information was not accessed,” TSTT added,
More Stories
BUT supports proposed measures to address school violence
Combs’ mother ‘saddened’ by ‘lies’
Violence raging a year after October 7 attack