Stay Sharp: Your Phishing and Smishing Survival Kit Body
Cybercriminals are getting smarter but so can you. The National Computer Incident Response Team of The Bahamas (CIRT‑BS) has launched the Phishing and Smishing Survival Kit to help you spot
CIRT‑BS Advisory: Beware of Fraudulent NIB Smart Card Renewal Text Scam
CIRT‑BS warns the public about fraudulent messages impersonating the National Insurance Board (NIB). These scams aim to deceive recipients into clicking unsafe links or sharing personal information under the guise
Smishing vs Phishing: Understanding the Dual Threat
Cyber‑criminals continue to evolve their tactics, targeting both mobile and desktop users. Smishing uses SMS or messaging apps to lure victims into clicking fraudulent links or sharing sensitive data. Phishing
Advisory: Fake Traffic Fine Payment Scam
The National Computer Incident Response Team of The Bahamas (CIRT-BS) is aware of fraudulent websites impersonating legitimate government services and attempting to collect fake traffic fine payments. These scams use
Bahamas Election Security Awareness 2026
Daily Election Checklist: Stay Informed. Stay Secure. Verifying information is everyone’s responsibility: Follow updates from official government channels and the Parliamentary Registration Department Rely on verified Bahamian news outlets for
Child Online Protection Webinar: A Conversation That Matters
On May 20, 2026, the National Computer Incident Response Team of The Bahamas (CIRT‑BS) will host the Child Online Protection Webinar, uniting international experts to explore how we can build
Stay Sharp: Your Phishing and Smishing Survival Kit Body
Cybercriminals are getting smarter but so can you. The National Computer Incident Response Team of The Bahamas (CIRT‑BS) has launched the Phishing and Smishing Survival Kit to help you spot fake messages before they trap you. Verify the URL: Official Bahamas government websites always end with .bs or .com. Spot the fakes: Beware of look‑alike domains such as .bs.com or .lbs — they’re designed to
CIRT‑BS Advisory: Beware of Fraudulent NIB Smart Card Renewal Text Scam
CIRT‑BS warns the public about fraudulent messages impersonating the National Insurance Board (NIB). These scams aim to deceive recipients into clicking unsafe links or sharing personal information under the guise of renewing their NIB Smart Card. The National Insurance Board has officially confirmed that it does not send renewal notifications via text message. Any message requesting Smart Card renewal through a link is fraudulent. How
Advisory: Fake Traffic Fine Payment Scam
The National Computer Incident Response Team of The Bahamas (CIRT-BS) is aware of fraudulent websites impersonating legitimate government services and attempting to collect fake traffic fine payments. These scams use social engineering tactics to create fear, urgency, and pressure individuals into submitting sensitive financial information online. To help protect yourself: ✔️ Verify traffic fines only through official government channels ✔️ Carefully inspect website addresses before
Actively Exploited SQL Injection in FortiClient EMS
ⓘ We are reaching out to let you know that a critical, actively exploited vulnerability has been identified in Fortinet’s FortiClient EMS platform. Attention constituent: A vulnerability has been discovered in Fortinet’s FortiClient EMS platform that allows a threat actor to run unauthorised commands on the server by sending a specially crafted web request. Active exploitation of this vulnerability has been confirmed by threat intelligence
CISCO AsyncOS Zero Day Vulnerability
ⓘ We are reaching out to let you know that there is a newly identified advanced persistent threat (APT) that has been exploiting a zero-day vulnerability in Cisco email security appliances that run AsyncOS. Attention constituent: There has been a newly identified APT, that has been exploiting a zero-day vulnerability in all Cisco email security appliances that have AsyncOS as their underlying operating system. AsyncOS
Threat Actors Hijacking Microsoft Teams Accounts
ⓘ We are reaching out to let you know there is a vulnerability in Microsoft Teams that allows threat actors to impersonate valid users. Attention constituent: A vulnerability in Microsoft Teams can allow both external & insider threat actors to spoof identities, manipulate messages and notifications, and forge caller names in calls. Teams is a trusted collaboration tool, these manipulations make social-engineering attacks (tricks that
New Advisory: Beware Fraudulent Hurricane Melissa Relief Websites
ⓘ We are reaching out to let you know that of fraudulent and malicious websites scamming victims via fake Hurricane Melissa relief donation charities/organisations. Attention constituent: We are issuing this advisory to warn the general public of The Bahamas that there is an increase of fake website domains that are soliciting donations for relief funds with reference to Hurricane Melissa and the impact that it
LockBit 5.0 Ransomware Threat Resurgence Alert
ⓘ We are reaching out to let you know that a new variant of the LockBit ransomware, known as LockBit 5.0, has recently emerged. Attention constituent: A new version of the LockBit ransomware, known as LockBit 5.0, has been observed following the disruption of the group’s operations earlier in 2024. The threat actors behind LockBit remain active and continue to refine their ransomware. The new version
Cisco IOS: SNMP Denial Of Service and Remote Code Execution Vulnerability
ⓘ We are reaching out to let you know that Cisco IOS is vulnerable and can be exploited via Remote Code Execution by attacker to gain unauthorized access to critical systems. Attention constituent: A vulnerability has been discovered in the SNMP (Simple Network Management Protocol) subsystem of Cisco IOS and IOS XE software. An attacker who has certain SNMP credentials can exploit this by sending
Data Privacy Week: The Privacy & Convenience Trade-off
Think about the last application you downloaded on your mobile phone. It could be a messaging tool, an engaging social media platform, or even a GPS navigator. Whatever the app may be, mobile applications add considerable value to our lives… but at what cost? The truth is, while these apps may provide convenience, they also infringe on your privacy by collecting extensive data on you and
Introduction to Cybersecurity
Imagine the chaos of a world where your online financial systems are compromised daily, you have difficulty accessing email accounts when you want to, and your local meteorologists cannot detect the next storm before it happens. This is a glimpse into the reality of a world without cybersecurity. CISA, the United States’ Cybersecurity & Infrastructure Security Agency, defines cybersecurity as the art of protecting networks,
Understanding Akira Ransomware and Ransomware Trends: A Comprehensive Analysis
Author: Marcus Knowles Jr. CIRT Analyst In the rapidly evolving landscape of cybersecurity, ransomware attacks have emerged as one of the most pervasive and damaging threats to businesses worldwide. Among the myriad ransomware families, one name has been making headlines – Akira. Understanding the origins, evolution, and tactics employed by Akira is crucial in the fight against this potent digital adversary. Ransomware families reported in
Cyber Steward’s Guide to Online Christmas Shopping
Cyber Steward’s Guide to Online Christmas Shopping Spot the Real Deals Learn the difference between genuine offers and too-good-to-be-true scams. Secure Your Transactions Use trusted payment methods and ensure the website’s security before entering your details. Keep Software Updated Running the latest security software is your first defence against cyber threats. Watch Out for Fake Reviews Rely on verified purchase reviews and be wary of
Safer Students — Get Safe Online
Keep Your Students Safer Students spend much time online in today’s digital world. Online is great fun, but cyberbullying, oversharing, and clickjacking may cause them harm. Get Safe Online provides valuable information to prepare students to navigate the online world. We want every student while online to say with confidence #lAmSafer. Visit getsafeonline.bs to find out how students can stay safe online. Choose Secure
Keep Your Online Identity on Lock
11 April 2023 is recognised as Identity Management Day. Below are some practical tips on keeping your online identity on lock. Protect personal information. Don’t post NIB cards, Driver’s Licences, and other identifiable info. Close old accounts. Unused accounts are easier to hack. Stay alert for scams. Beware of giveaways, quizzes and surveys soliciting banking info. Avoid app sharing. If one app is hacked, linked
World Backup Day
Did you know that 31 March has been dubbed the day to backup and better protect your data? Losing important digital files happen way more than you think! CIRT-BS is here to help you avoid being fooled with the 3-2-1 Backup Rule.
Don’t become victim to cyber attacks.
Don’t become victim to cyber attacks. Protect sensitive data and improve your digital privacy. Password-protect your devices. Keep software and apps updated. Choose incognito or private browsing. Login with two-factor authentication. Manage unique passwords with a password manager. Browse public Wi-FI with a VPN. Disable unnecessary mobile app permissions. Backup & encrypt sensitive data.
Happy Valentine’s Day
Online dating is becoming increasingly popular in our communities and while many may be searching for their Valentine via dating apps and social media platforms, unexpected dangers are always present! Be careful of the following: ‘Catfishers’ who create fake online dating profiles. Romance scammers asking for money. Scammers phishing for personal information. Fake online dating sites. Sharing private/sensitive photos online. Accepting friend requests from unknown
- RFC 2350