CHESTER SAM­BRA­NO

The Min­istry of Na­tion­al Se­cu­ri­ty’s Trinidad and To­ba­go Cy­ber Se­cu­ri­ty In­ci­dent Re­sponse Team (TT-CSIRT) is urg­ing all or­ga­ni­za­tions to take the nec­es­sary pre­cau­tions to mit­i­gate against ris­ing ran­somware at­tacks in Trinidad and To­ba­go.

In a me­dia re­lease, the Min­istry of Na­tion­al Se­cu­ri­ty says the fol­low­ing re­sources de­tail the nec­es­sary ac­tions that must be tak­en to hard­en or­ga­ni­za­tions:

• Ran­somware Pre­ven­tion Guide: https://ttc­sirt.gov.tt/ran­somware-pre­ven­tion/

• Ran­somware Re­sponse Check­list: https://ttc­sirt.gov.tt/ran­somware-re­sponse-check­list/

It tells busi­ness­es, "Should your or­ga­ni­za­tion fall vic­tim to a ran­somware at­tack, con­tact TT-CSIRT im­me­di­ate­ly via on­line form: https://ttc­sirt.gov.tt/re­port-an-in­ci­dent/ or email: con­tacts@ttc­sirt.gov.tt.”

The Min­istry ex­plains that TT-CSIRT pro­vides dif­fer­ent tiers of in­ci­dent re­sponse de­pend­ing on the need of the or­ga­ni­za­tion. These tiers are:

• Con­sul­ta­tive – gives ad­vice and guid­ance to the or­ga­ni­za­tion’s in­ci­dent re­sponse team (IRT)

• In­ci­dent Han­dling – co­or­di­nates the in­ci­dent re­sponse process and ad­vis­es the or­ga­ni­za­tion’s In­ci­dent Re­sponse Team

• In­ci­dent Man­age­ment – co­or­di­nates the in­ci­dent re­sponse process, leads the or­ga­ni­za­tion’s IRT and de­ploy­ment of TT-CSIRT’s tech­ni­cal per­son­nel and re­sources to re­solve the in­ci­dent.

It says, "in­for­ma­tion pro­vid­ed to the TT-CSIRT will be held se­cure­ly and in strictest con­fi­dence, in­for­ma­tion will not be dis­closed with­out the con­sent of the client or­ga­ni­za­tion and any in­for­ma­tion held will be anonymized and de­pict­ed on­ly in ag­gre­gat­ed sta­tis­tics."