Trinidad and Tobago Computer Society

Author: ttcsadmin

Security updates available for Adobe Flash Player for Windows, MacOS X & Linux (August 11 2015) ; update ASAP or remove if not needed
Patch Tuesday is here and Adobe Flash has a security update. According to the Adobe security bulletin dated August 11, 2015:

“Adobe has released security updates for Adobe Flash Player. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

Many conferencing solutions (like Adobe Connect) and Flash games use the Flash plugin. So if you have Adobe Flash installed, UPDATE ASAP!

However, consider uninstalling Flash if you’re not using it. If you were only using Adobe Flash to watch YouTube videos, YouTube now defaults to HTML5 instead of Adobe Flash for playing videos in Google Chrome, IE 11, Apple Safari 8 and Mozilla Firefox. So you can uninstall Adobe Flash if you are using these browsers (and not worry about keeping Adobe Flash up to date).

The latest update bumps the latest version of Flash Player for Windows and Mac OS X to version 18.0.0.232.

To determine what version of the Adobe Flash player you have on your Windows, Macintosh or Linux system, visit
http://www.adobe.com/software/flash/about/

To download an offline version of Adobe Flash Player for Windows, Mac OS X and Linux without any adware or bundled third-party offers, visit
http://www.adobe.com/products/flashplayer/distribution3.html

Opera and Chromium browser users, you’ll have to download the flash player installer from http://www.adobe.com/go/getflash.

Windows users should take note that
- the Flash Player in Microsoft Internet Explorer v9 and earlier versions of Internet Explorer,
- the Flash player in web browsers like Mozilla Firefox and Safari.
- the Flash player in web browsers in Chromium and Opera.
are separate installs. You should install and update versions of Adobe Flash for all three browser variations if you have all three installed.

For Internet Explorer v10 and Internet Explorer v11 (for users for Windows 7 Service Pack 1 and Windows 8), these browsers have Adobe Flash Player built-in and users should update their Internet Explorer browser versions.

Google Chrome browser users has Adobe Flash Player built-in and users should update the Google Chrome browser to the latest version.
See https://support.google.com/chrome/answer/95414 on how to do so.
11 August 2015
TTCS comments on “Towards the Treatment of Over The Top (OTT) services” policy document submitted to Telecom Authority of Trinidad and Tobago

The Trinidad and Tobago Computer Society (TTCS ; https://www.ttcs.tt/) has submitted its comments on the Telecommunications Authority of Trinidad and Tobago (TATT) document “Towards the treatment of Over The Top Services”

The TTCS comments can be viewed at TTCS-comments-on-TATT-Towards-the-treatment-of-OTT-services-public-July20-2015 (PDF ; 369K)

A general comment:

“For the past two decades, TATT has presided over a telecommunications sector which has experienced significant and ongoing growth for all commercial actors. The TATT “light touch” approach is one of the main factors contributing to the success of the sector. The status quo, as facilitated by TATT, should be maintained as the market can and will continue to innovate in the provision of value added services as it has already done for the benefit of clients, consumers, service providers and the country as a whole.

The TTCS fears that any change in the status quo *at the present time* will lead to a stifling of innovation and lead to significantly reduced domestic competition overall.

The treatment of Over The Top (OTT) services is *fundamentally* a Network Neutrality (NN) issue. Once the Telecommunications Authority makes a final decision on where it stands regarding NN/zero rating of services, its way forward on topics such as OTT becomes much less complex and simple to execute. Over the top services (OTT) can be broad enough to
apply to any service provided over the Internet as a whole, or any future network. If TATT is to consider competition described by providers as “unfair,” then Zero Rated services should also be considered by the Authority in greater detail.

Attempting to make a final decision on OTT without any final decision on NN issues may needlessly complicate the country’s future regulatory landscape, and create precedents
which may limit future regulatory agility and sector innovation and growth. One of the realities of a competitive marketplace is that service providers must innovate constantly or else perish.

The TTCS believes that any regulator should have no vested interest in stifling future sources of innovation in order to preserve revenue streams for service providers. More significantly, any request by service providers that TATT *must* intervene in the regulatory environment in order to mitigate any loss or potential loss of revenue as a result of technological changes in the sector misunderstands the responsibility of a regulator for the entire sector, and not just one part of it. Increased and differentiated competition and innovation in the telecoms space is to be encouraged, not stifled.

21 July 2015
Draft comments on Telecom Authority of #Trinidad & #Tobago document “Towards the Treatment of Over-The-Top (OTT) Services”

Several members of the Trinidad and Tobago Computer Society have put together some draft comments on the Telecommunications Authority of Trinidad and Tobago document “Towards the Treatment of Over-The-Top (OTT) Services” (PDF ; 2MB) which we are posting for review.

The TTCS draft comments can be viewed at draft-TTCS-statement-on-VoIP (PDF ; 71K).

Comments and suggestions are appreciated as soon as possible via email to info@ttcsweb.org as the final deadline for formal submission to TATT is July 20 2015.

17 July 2015
Security updates available for Adobe Flash Player for Windows, MacOS X & Linux (July 14 2015) ; update ASAP or remove if not needed
Another week, another update for Adobe Flash it seems. According to the Adobe security bulletin dated July 14, 2015:

“Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of reports that exploits targeting these vulnerabilities have been published publicly.”

Many conferencing solutions (like Adobe Connect) and Flash games use the Flash plugin. So if you have Adobe Flash installed, UPDATE ASAP!

However, consider uninstalling Flash if you’re not using it. If you were only using Adobe Flash to watch YouTube videos, YouTube now defaults to HTML5 instead of Adobe Flash for playing videos in Google Chrome, IE 11, Apple Safari 8 and Mozilla Firefox. So you can uninstall Adobe Flash if you are using these browsers (and not worry about keeping Adobe Flash up to date).

The latest update bumps the latest version of Flash Player for Windows and Mac OS X to version 18.0.0.209.

To determine what version of the Adobe Flash player you have on your Windows, Macintosh or Linux system, visit
http://www.adobe.com/software/flash/about/

To download an offline version of Adobe Flash Player for Windows, Mac OS X and Linux without any adware or bundled third-party offers, visit
http://www.adobe.com/products/flashplayer/distribution3.html

Opera and Chromium browser users, you’ll have to download the flash player installer from http://www.adobe.com/go/getflash.

Windows users should take note that
- the Flash Player in Microsoft Internet Explorer v9 and earlier versions of Internet Explorer,
- the Flash player in web browsers like Mozilla Firefox and Safari.
- the Flash player in web browsers in Chromium and Opera.
are separate installs. You should install and update versions of Adobe Flash for all three browser variations if you have all three installed.

For Internet Explorer v10 and Internet Explorer v11 (for users for Windows 7 Service Pack 1 and Windows 8), these browsers have Adobe Flash Player built-in and users should update their Internet Explorer browser versions.

Google Chrome browser users has Adobe Flash Player built-in and users should update the Google Chrome browser to the latest version.
See https://support.google.com/chrome/answer/95414 on how to do so.
14 July 2015
Adobe releases critical security update for Adobe Flash Player for Windows, MacOS X & Linux (July 8 2015) ; update ASAP!
According to the Adobe security bulletin dated July 8, 2015:

“Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit targeting CVE-2015-5119 has been publicly published.”

You can read more about how the exploit was “publicly published” on Ars Technica, but update ASAP!
Many conferencing solutions (like Adobe Connect) and Flash games use the Flash plugin.

However, if you only use Adobe Flash for watching YouTube videos, YouTube now defaults to HTML5 instead of Adobe Flash for playing videos in Google Chrome, IE 11, Apple Safari 8 and Mozilla Firefox. So you can uninstall Adobe Flash if you are using these browsers (and not worry about keeping Adobe Flash up to date).

The latest update bumps the latest version of Flash Player for Windows and Mac OS X to version 18.0.0.203.

To determine what version of the Adobe Flash player you have on your Windows, Macintosh or Linux system, visit
http://www.adobe.com/software/flash/about/

To download an offline version of Adobe Flash Player for Windows, Mac OS X and Linux without any adware or bundled third-party offers, visit
http://www.adobe.com/products/flashplayer/distribution3.html

Opera and Chromium browser users, you’ll have to download the flash player installer from http://www.adobe.com/go/getflash.

Windows users should take note that
- the Flash Player in Microsoft Internet Explorer v9 and earlier versions of Internet Explorer,
- the Flash player in web browsers like Mozilla Firefox and Safari
- the Flash player in web browsers in Chromium and Opera
are separate installs. You should install and update versions of Adobe Flash for all three browser variations if you have all three installed.

For Internet Explorer v10 and Internet Explorer v11 (for users for Windows 7 Service Pack 1 and Windows 8), these browsers have Adobe Flash Player built-in and users should update their Internet Explorer browser versions.

Google Chrome browser users has Adobe Flash Player built-in and users should update the Google Chrome browser to the latest version. See https://support.google.com/chrome/answer/95414 on how to do so.
8 July 2015
Trinidad and Tobago Computer Society lime on July 8 2015 from 7 to 9pm ; please RSVP!
The Trinidad and Tobago Computer Society (TTCS ; http://cs.tt) will be having a lime on Wednesday July 8 2015 from 7pm to 9pm at Wendy’s Cafe located upstairs at Wendy’s Restaurant at the corner of Ana Street & Ariapita Avenue, Woodbrook, Port of Spain.

Come join as we eat and chat about various ICT topics including:
- the Telecommunications Authority of Trinidad and Tobago’s (TATT’s) consultation document “Towards the Treatment of Over-The-Top (OTT) Services”.
  
  This document focusing particularly on whether or not such OTT services such as VoIP services like Skype, Viber, Whatsapp should be regulated by TATT and if so, determine what regulatory measures should be adopted.
  The issues raised in the document are similar to those raised in the joint statement by the Trinidad and Tobago Computer Society, the Internet Society Trinidad and Tobago Chapter and the IEEE Trinidad and Tobago Section on Digicel’s Trinidad and Tobago’s ban on Voice over IP services in 2014.
  
  The TTCS is seeking to respond to this document before the TATT’s deadline on July 20, 2015.
- TSTT’s shutting down email hosting @tstt.net.tt by July 31 2015 (it was extended from June 30 2015)
- the launch of Apple Music
- Microsoft Windows 10 release on July 29 2015.
Anyone interested in computing and ICT are welcome to attend, however please RSVP to info@ttcsweb.org as space is limited.

Please note that for this meeting, you will be able to purchase food directly from Wendy’s at your own expense. The minimum contribution to TTCS for this meeting is $20.
6 July 2015
version 1.52 of the TTCS OSSWIN DVD, a collection of Free and Open Source Software for Windows, available for download

The Trinidad and Tobago Computer Society is pleased to announce the release of the TTCS OSSWIN DVD v1.52, a collection of the latest version of Free and Open Source Software for Microsoft Windows (XP/Vista/7/8) and available for download. The collection features a web based interface for browsing programs organised into several categories: Desktop Applications, Educational, Games, Graphics, Internet, Server, Sound and Video and Utilities.

For v1.52, many software updates including LibreOffice 4.4.4, Mozilla Firefox 38.0.5, Audacious 3.62 and Mozilla Thunderbird 38.0.1.

See the changelog for more details.

Visit the TTCS OSSWIN DVD page at http://www.ttcsweb.org/osswin-dvd/ for more details and to download the DVD as an ISO file for burning onto a DVD or extracting to your harddrive or USB storage device.

1 July 2015
Adobe releases critical security update for Adobe Flash Player for Windows, MacOS X & Linux (June 23 2015)
According to the Adobe security bulletin dated June 23, 2015:

“Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address a critical vulnerability (CVE-2015-3113) that could potentially allow an attacker to take control of the affected system.

Adobe is aware of reports that CVE-2015-3113 is being actively exploited in the wild via limited, targeted attacks. Systems running Internet Explorer for Windows 7 and below, as well as Firefox on Windows XP, are known targets.”

So update asap! Many conferencing solutions (like Adobe Connect) and Flash games use the Flash plugin.

However, if you only use Adobe Flash for watching YouTube videos, YouTube now defaults to HTML5 instead of Adobe Flash for playing videos in Google Chrome, IE 11, Apple Safari 8 and in Mozilla Firefox. So you can uninstall Adobe Flash if you are using these browsers (and not worry about keeping Flash up to date)

The latest update bumps the latest version of Flash Player for Windows and Mac OS X to version 18.0.0.194.

To determine what version of the Adobe Flash player you have on your Windows, Macintosh or Linux system, visit
http://www.adobe.com/software/flash/about/

To download an offline version of Adobe Flash Player for Windows, Mac OS X and Linux without any adware or bundled third-party offers, visit
http://www.adobe.com/products/flashplayer/distribution3.html

Opera and Chromium browser users, you’ll have to download the flash player installer from http://www.adobe.com/go/getflash.

Windows users should take note that
- the Flash Player in Microsoft Internet Explorer v9 and earlier versions of Internet Explorer,
- the Flash player in web browsers like Mozilla Firefox and Safari
- the Flash player in web browsers in Chromium and Opera
are separate installs. You should install and update versions of Adobe Flash for all three browser variations if you have all three installed.

For Internet Explorer v10 and Internet Explorer v11 (for users for Windows 7 Service Pack 1 and Windows 8), these browsers have Adobe Flash Player built-in and users should update their Internet Explorer browser versions.

Google Chrome browser users has Adobe Flash Player built-in and users should update the Google Chrome browser to the latest version. See https://support.google.com/chrome/answer/95414 on how to do so.
27 June 2015
The Trinidad and Tobago Cyber Security Agency Bill, 2015
The Trinidad and Tobago Cyber Security Agency Bill, 2015 was introduced as the same time as the Cybercrime Bill 2015 by the Minister of National Security Brigadier General Carlton Alfonso on May 1 2015.

It seeks to establish a the Trinidad and Tobago Cyber Security Agency (TTCSA) to act as a national point of contact for all cyber security related concerns and other related matters. The functions of the TTCSA are to:

(a) act as the national point of contact for all cyber security related matters;

(b) establish a national computer incident response team to be known as the “Trinidad and Tobago Cyber Security Incident Response Team” (hereinafter referred to as “TT-CSIRT”);

(c) refer matters to the police, where evidence of an offence under the Cybercrime Act, 2015 comes to its knowledge;

(d) prepare, review and update periodically and in any event at least annually, a national cyber security strategy and prepare such plans as are necessary for the successful implementation of such strategy;

(e) collaborate with the relevant public body in the collection of relevant information which would facilitate the analysis of current and emerging risks, including those risks which could produce an impact on the resilience and availability of data communications networks and on the authenticity, integrity
and confidentiality of the information accessed and transmitted through such
networks;

(f) provide advice on cyber security related matters, including situational awareness information, to the Minister, the Trinidad and Tobago Police Service or such other competent national bodies as are necessary;

(g) enhance cooperation between different actors operating in the field of cybersecurity by holding consultations with, interalia, various industries, universities, public sector bodies and private sector and civil society bodies;

(h) contribute to the awareness raising, and the availability of, current, objective and comprehensive information on cybersecurity by, inter alia, promoting exchanges of current best practices, including methods of alerting users and facilitating cooperation and collaboration between public and private sector initiatives.

(i) develop and publish standards for products and services on cyber security;

(j) establish and publish baseline cyber security requirements and standards for
various sectors including operators of critical infrastructures;
(k) conduct research and development in the area of cyber security and identify critical research and development needs, gaps and emerging trends for future research;

(l) promote the development of training and education programmes including the accreditation and certification of cyber security academic programmes;

(m) advise the Minister on research in the area of cyber security as well as on the effective use and adoption of risk preventative technologies;

(n) promote risk assessment activities, interoperable risk management solutions and studies on cyber security management solutions within public and private sector bodies;

(o) collaborate with the relevant public body in the provision of educational guidelines to the national community, as to the appropriate use of the national network infrastructure;

(p) establish internal and joint procedures between the public and private sectors to manage the incidents and mitigate the threats associated with them;

(q) provide appropriate strategic insights to policy and decision-makers and public bodies in order to strengthen the national network infrastructure;

(r) develop a National Cyber Security Contingency Plan;

(s) coordinate cyber security exercises; and

(t) express independently its own conclusions and orientations and give advice on matters within its scope and objectives.

The Bill lapsed with the end of the Parliamentary session on June 17 2015.
- Trinidad and Tobago Cyber Security Agency Bill, 2015 (PDF ; 85K)
- Trinidad and Tobago Parliament page on the Trinidad and Tobago Cyber Security Agency Bill 2015 which includes the Hansard of the Parliamentary discussions
20 June 2015
Cybercrime Bill 2015
The Cybercrime Bill 2015 and the Trinidad and Tobago Cyber Security Agency Bill 2015 were introduced in the House of Representatives by the Minister of National Security Brigadier General Carlton Alfonso on May 1 2015.

The Cybercrime Bill 2015 seeks “to provide for the creation of offences related to cybercrime and related matters” and if passed would repeal the Computer Misuse Act 2000

The key changes between the Cybercrime Bill 2014 and the Cybercrime Bill 2015 were:
- the penalties were adjusted for the various cybercrime offences
- Clause 17 in the 2014 bill re: creating the offence of child pornography through the use of ICT was removed in the Cybercrime 2015 bill
However, the Cybercrime Bill 2015 lapsed with the end of the Parliamentary session on June 17 2015.
- Cybercrime Bill 2015 (PDF ; 122K)
- Trinidad and Tobago Parliament page on the Cybercrime Bill 2015 which includes the Hansard of the Parliamentary discussions.
20 June 2015