The Ministry of Public Administration and Communications of Trinidad and Tobago (MPAC) have issued a press release dated May 17 2017 “Protection against Ransomware”.

In the press release, MPAC notes that

• it has received assurances from the managers of Government’s ICT infrastructure that systems are in place to treat with ransomware threats such as WannaCrypt/WannaCry ;
• a eight month extension to using Symantec’s End-point security software
• a review looking at the vulnerability of Government’s ICT infrastructure
• Information about WannaCrypt, including general tips on avoiding such ransomware.

Here’s the MPAC’s press release:

---

PROTECTION AGAINST RANSOMWARE
May 17, 2017

The Minister of Public Administration and Communications has received an assurance from the managers of the Government’s Information and Communications Technology (ICT) infrastructure that there are systems in place to treat with `ransomware’ attacks that afflicted over 100 countries over the weekend.

The Government’s ICT infrastructure, GovNeTT, is managed by the National Information and Communication Technology Company Limited (iGovTT) which is supported by contractual agreements with a contractor’s alliance of Fujitsu and a team of ICT companies.

Last week the Minister told the House of Representatives that Government had saved US$40 million in negotiating a new Microsoft Enterprise Agreement for the public service and had also reached agreement on a new End-point security software contract with Symantec. End-point Security protection will be the Government’s first defense in protecting its IT assets from cyber-attacks such as Ransomware.

The Government also achieved $2.5 million dollars in savings in its negotiations with Symantec. The old Symantec agreement expired in 2016 but the Ministry of Public Administration and Communications (MPAC) negotiated an eight-month extension at no cost. It is expected that the new agreement will provide $3.6 million worth of security software to the public sector.

As the Minister with responsibility for ICT, Minister Cuffie said the Symantec agreement provides security for all computers and software throughout the public service.

Additionally, a review which looks at the vulnerability of GovNeTT is also being conducted. This exercise is expected to be completed shortly. In the meantime, the MPAC will work with iGovTT to prepare a best practice checklist which will be shared with all Ministries, Government departments and agencies.

Further information on the ransomware attack is provided below from our ICT providers:

There was widespread international disruption caused by the ransomware attack known as WannaCryptOr/WannaCry. This has the ability to encrypt all files on a Windows system and render it unusable unless a fee is paid for decryption.

On 12-May-2017, Microsoft released a security update for versions of Windows that are no longer under mainstream support (Windows Server 2003 SP2 x64, Windows  Server 2003 SP2 x86, Windows XP SP2 x64, Windows XP SP3 x86, Windows XP Embedded SP3 x86, Windows 8 x86, Windows 8 x64).

Fujitsu has assured that it is aware of the global ransomware threat from last Friday and has been reviewing potentially vulnerable Windows systems in GovNeTT. This includes the current patch levels as well as firewall rules which may allow for the spread of the threat. The company has committed to executing any emergency change orders based on their findings.

Public servants and members of the public are asked to note cyber criminals are constantly active, seeking new ways to attack both corporate networks and individual syayems. Attacks vary in purpose but “phishing” attacks are increasingly common. Phishing attacks often appear to come from a trusted source, including an organization’s leadership team. All persons are reminded to be extremely vigilant when opening emails from unexpected sources or from individuals known to you but from an unusual/different email address, opening attachments or following links.

Some simple steps you can take to protect yourself are:

• If an email looks suspicious, treat it with care and do not click on enclosed links
• Take particular care with links in web-based email
• Rather than clicking on a link, open a new browser window and go to the known home page for the site
• Use different passwords for different online accounts; if one is compromised the others will still be protected
• Change passwords regularly, and if you suspect that your password has been compromised, change it immediately
• Don’t disclose your password to anyone
• Remember that reputable companies do not send unsolicited mail asking you to provide sensitive information
• Don’t provide personal or financial information through a website, unless you typed in the web address yourself
• Look for indications that a website is secure (for example, a URL that begins https)

---

 

 

The Ministry of Works of Transport (MOWT) of Trinidad and Tobago has launched an Online Vehicle Validation System at a ceremony at the MOWT Port of Spain office on May 3 2017.

Persons can visit https://apps.mowt.gov.tt/vrv/ to “quickly validate or confirm vehicle owner and vehicle registration electronically based on documents stored at the transport division of the Ministry of Works and Transport.” by entering any two of the following three fields:

• License Plate Number
• Chassis Number
• Engine Number

 

 

 

 

 

 

For those interested in learning more about the open call for proposals for the Skills for Global Services initiative in Trinidad and Tobago , there will be a free  informational session about this initiative on Monday April 24 2017 at 2pm local time (1800 UTC) at the Leon Agostini Conference Hall, T&T Chamber Building. The event will be live streamed. You can register for the conference at https://chamber.org.tt/webinars/idb/

 

 

 

Businesses and organisations in Trinidad and Tobago in the Information Technology-enabled Services (ITeS) industry in need of training for employees to support the growth of your business and looking to expand to international markets, there is an opportunity to bid for resources (training, curriculum development, certification) for skills development, tailored for your needs via the Ministry of Planning and Development’s ‘Skills for Global Services: Employers Owning the Skills Agenda’ initiative at http://www.globalskills.gov.tt/ .

The major ITeS fields in Trinidad and Tobago include: Animation Services,
Applications Development, Business Process Outsourcing/ Off-Shoring, E-Gaming/Video Gaming Services, Hardware Manufacturing and Repairs,
Mobile Technology, Programming and Coding, Software Development,
Systems Analysis, and Website Development.

Therefore, firms registered in Trinidad and Tobago of all sizes or small entrepreneurs that are from the services sector and have IT core businesses, are exporting or wish to do so can partner with training/education institutions to submit proposals for the Skills for Global Services Initiatives by June 23 2017.

However, firms interested in submitting proposals should submit letters of interest and answer a short questionnaire before May 10, 2017. Firms that have submitted letters of interest by May 10 2017 will receive assistance via workshops to help develop and prepare their proposals before June 23 2017.

Full details about the initiative and the call for proposals can be found at http://www.globalskills.gov.tt/ .

 

The Caribbean Network Operators Group (CaribNOG) will be hosting its thirteenth regional gathering, CaribNOG 13 in Bridgetown, Barbados at the 5th Floor Conference Room, Baobab Towers, Warrens, St. Michael on Apr 18th-19th 2017.

CaribNOG is a not-for-profit, independent, technical community that providing an important regional forum for building technical capacity, sharing industry experiences and promoting relevant solutions for advancing network engineering in the Caribbean. CaribNOG has built a reputation as an influential forum where computer network technicians and technology professionals share knowledge and experiences and participate in expert-led, high-tech training and hands-on technical workshops.

A key objective of CaribNOG is to better position the Caribbean to address critical technology challenges and issues and to collaboratively derive relevant solutions.

You can watch and participate at the sessions at CaribNOG 13 remotely. Here are the relevant links:

• View/ Download the CaribNOG 13 Meeting Agenda. Note that the time in Barbados is the same in Trinidad and Tobago.
• Remote link to view and participate in CaribNOG
  http://www.caribnog.org/webcast 

 

 

Adobe Acrobat Reader and Adobe Acrobat

According to Adobe’s security bulletin dated April 11 2017

“Adobe has released security updates for Adobe Acrobat and Reader for Windows and Macintosh. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system…Adobe recommends users update their software installations to the latest versions.”

Adobe Reader is widely used to view PDFs whereas Acrobat is used to create PDFs.

Read the Adobe Security Bulletin at https://helpx.adobe.com/security/products/acrobat/apsb17-11.html to learn how to update Adobe Reader and Adobe Acrobat.

Adobe Flash Player

According to the Adobe security bulletin dated April 11 2017 :

“Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.”

Many conferencing solutions (like Adobe Connect) and Flash games use the Flash plugin. So if you have Adobe Flash installed, UPDATE ASAP!

However, consider uninstalling Flash if you’re not using it. If you were only using Adobe Flash to watch YouTube videos, YouTube now defaults to HTML5 instead of Adobe Flash for playing videos in Google Chrome, IE 11, Apple Safari 8 and Mozilla Firefox. So you can uninstall Adobe Flash if you are using these browsers (and not worry about keeping Adobe Flash up to date).

The latest update bumps the latest version of Flash Player for Windows, Mac OS, Linux  and Mac OS X to version 25.0.0.148

To determine what version of the Adobe Flash player you have on your Windows, Macintosh or Linux system, visit
http://www.adobe.com/software/flash/about/

Windows users should take note that

• the Flash Player in Microsoft Internet Explorer v9 and earlier versions of Internet Explorer,
• the Flash player in web browsers like Mozilla Firefox and Safari.
• the Flash player in web browsers in Chromium and Opera.

are separate installs. You should install and update versions of Adobe Flash for ALL three browser variations if you have all three browsers installed.

Several browsers such as

• Google Chrome for Windows, Mac OS and Linux
• Internet Explorer 10, Internet Explorer 11 for Windows
• Microsoft Edge for Windows 10

has Adobe Flash built-in and users should update their browsers to update the Flash version in these browsers.

(Update April 5 : added SSIG2017 April 5 YouTube Livestream)
(Update April 4 : added SSIG2017 April 4 YouTube Livestream )

The 9th annual South School of Internet Governance (SSIG) is taking place from April 3 to April 7, 2017 in Brazil.

The SSIG’s mission is to

• Increase the number of representatives of the Latin American and Caribbean region in the international Internet Governance debate spaces.
• Motivate the new regional leaders of opinion to becoming active participants in Internet Governance meetings and activities, where the future of the Internet is shaped.
• Make them the future leaders on Internet Governance in their countries and regions.

As such, various topics related to Internet Governance will be presented.

The SSIG 2017 Agenda show the times of the various sessions local to Brazil. Brazil is one hour ahead of Trinidad and Tobago so subtract 1 hour from the SSIG 2017 agenda to get the time in Trinidad and Tobago of the various SSIG2017 sessions.

Fortunately, the SSIG 2017 is being livestreamed on YouTube in various languages. You can watch the SSIG2017 English livestream on YouTube.

• SSIG2017 April 3
• SSIG2017 April 4