Cayman News Service published an article on April 22, 2016, about ‘Caymans candw.ky emails being hacked and warns ICTA cyber team’.
The Cyber Incident Response Team Cayman (CIRT-KY ) announced today that it had been made aware of a cybersecurity breach – commonly known as a ‘hack’ – which has affected the security of the email addresses of ‘candw.ky’ users.
CIRT-KY is the cyber-security arm of the Information and Communications Technology Authority (ICTA), and its mission is to enhance the security and resilience of the Cayman Islands’ critical infrastructure and to maintain a cyber-environment that encourages efficiency, innovation, and economic prosperity while promoting safety, security, business confidentiality, privacy and protecting the perception and reputation of the jurisdiction.
- Officials said that there had been a compromisation of ‘candw.ky’ accounts.
- Unauthorized access to the accounts by individuals seeking to divert sensitive information to other unauthorized personnel.
- It was confirmed that the hackers used a sort of filter algorithm to route the critical data to a third party. Some of the filters were ‘account’, ‘payments’, ‘password’.
- The ICTA believes it may be one of the following two options:
- via phishing emails
- or installing malicious computer program software on the individual machine
- A public announced has been made to ‘candw.ky’ account holders to log in to their accounts, and remove the filters applied, and also to change their password.
Contributed by: Daval Gregory from Jamaica. Daval is a member of the CCST Discord group from the G5 Cyber Security Foundation Ltd. Learn more about CCST (Caribbean Cyber Support Team) by visiting caribbeancst.org. CCST is a collaborative group on the Discord platform for Caribbean people in IT, from beginners to experts.