Advisory: Fake Traffic Fine Payment Scam

The National Computer Incident Response Team of The Bahamas (CIRT-BS) is aware of fraudulent websites impersonating legitimate government services and attempting to collect fake traffic fine payments. These scams use

Read More »
28 May 2026

Bahamas Election Security Awareness 2026

Daily Election Checklist: Stay Informed. Stay Secure. Verifying information is everyone’s responsibility: Follow updates from official government channels and the Parliamentary Registration Department Rely on verified Bahamian news outlets for

Read More »
8 May 2026
Load More

New Advisory: (Critical) Authentication Bypass Vulnerability (FortiOS, FortiProxy, and FortiSwitch Manager)

24 January 2025

ⓘ This advisory addresses a critical vulnerability impacting FortiOS, FortiProxy, and FortiSwitchManager platforms. Attention constituent:  CVE-2022-40684 is a critical authentication bypass vulnerability impacting Fortinet’s FortiOS, FortiProxy, and FortiSwitchManager platforms. This flaw enables attackers to gain unauthorised administrative access, potentially leading to system compromise, data theft, and operational disruption. A leaked list of 15,000 vulnerable IP addresses has heightened the risk of exploitation. Immediate action is

Read More »

New Advisory: (Critical) FortiOS Vulnerability

22 January 2025

ⓘ This advisory addresses a critical vulnerability impacting FortiOS systems (CVE-2024-55591). Attention constituent:  A critical vulnerability (CVE-2024-55591) has been identified in Fortinet’s FortiOS systems. This vulnerability stems from an authentication bypass flaw in the FortiOS web management interface. Exploitation of this vulnerability allows remote, unauthenticated attackers to gain unauthorised administrative access and execute arbitrary actions on affected systems. CVE: CVE-2024-55591 Severity: Critical (CVSS: 9.8) Affected Platforms: FortiOS systems

Read More »

WhatsApp Account Hijacking Scams Advisory

24 September 2024

ⓘ This advisory addresses an increase in compromised WhatsApp accounts. Attention constituent:  CIRT-BS is advising members of the public to stay alert as a sophisticated scam targeting WhatsApp users is on the rise. Cybercriminals are hacking accounts and deceiving users’ friends and family into sending money by posing as trusted contacts. How the Scam Works Scammers make contact, sometimes with a WhatsApp call, and use fake

Read More »

CrowdStrike Update (Phishing Attempts)

22 July 2024

ⓘ This advisory addresses new phishing attempts related to CrowdStrike’s Falcon sensor crash. Attention Constituents:  Since CrowdStrike deployed its international Falcon sensor fix last Friday, 19 July 2024, Crowd Strike Intelligence has identified that threat actors are leveraging this event for malicious purposes such as: Distributing a malicious zip file named “crowdstirke-hotfix.zip”; Establishing fraudulent domains to mimic CrowdStrike; Sending phishing emails posing as CrowdStrike support

Read More »

New Advisory: CrowdStrike Update Crashes Windows Systems Worldwide

19 July 2024

ⓘ This advisory addresses a recent update to CrowdStrike’s Falcon sensor which has led to widespread Blue Screen of Death errors. Attention Microsoft service users:  A recent update to CrowdStrike’s Falcon sensor has led to widespread Blue Screen of Death (BSOD) errors on Windows hosts, resulting in disruptions locally to several services, including payment processing, and global disruptions. CrowdStrike has deployed a fix for this

Read More »

“Free Money” WhatsApp Scam

18 July 2024

ⓘ This advisory addresses an uptick in “free money” scams on WhatsApp. Attention constituent:  CIRT-BS is observing an uptick in “free money” scams on WhatsApp involving threat actors impersonating the “Ministry of Labour and [Public Service]” and offering mobile device “top-ups” to solicit personally identifiable information like internet protocol (IP) addresses and telephone numbers from members of the general public. In the attacks, actors are

Read More »

Parcel Delivery Scams

24 May 2024

ⓘ This advisory addresses an uptick in parcel delivery scams. Attention constituent:  CIRT-BS is observing an uptick in parcel delivery scams involving threat actors impersonating Bahamas Postal Services’ (BPS) website to solicit payment and personally identifiable information from members of the general public. Actors are sending SMS messages from the telephone number “+0123456789” advising recipients that their “delivery” is on hold and requesting they visit

Read More »

Consumer Loan Scams

18 March 2024

Attention Constituent:  We would like to inform you about a series of consumer loan scams originating from actors posing as third-party representatives of financial institutions, including Central Bank of The Bahamas and Bank of The Bahamas Limited. Sources: https://www.centralbankbahamas.com/ and https://www.facebook.com/BOBBankofSolutions/ CIRT-BS reminds you that scammers often attempt to draw on your emotions by creating a sense of urgency and appearing to be trustworthy. Remember to do

Read More »
Change your password day.

Build Better Passwords for Online Security this “Change Your Password Day”

1 February 2024

What do your bank, social media, and email accounts share? A password! Passwords are one of the most critical lines of defence against cyber attacks. They help ensure our data is only accessed by authorised users, even in the event of device theft or loss. Many people choose passwords found in the dictionary and reuse them across multiple accounts, meaning that once a cybercriminal has

Read More »

Cyber Sharks Capture the Flag Competition 2026

15 June 2026

Cyber Sharks Capture the Flag Competition Bahamas is a groundbreaking national cybersecurity challenge for Bahamian youth ages 13–16. Hosted by the National Computer Incident Response Team of The Bahamas (CIRT‑BS), this event empowers the next generation of cyber defenders through hands‑on learning and teamwork. Why Join the Cyber Sharks Capture the Flag Competition Bahamas? Taking place on August 28–29, 2026, the Cyber Sharks Capture the

Read More »

Stay Sharp: Your Phishing and Smishing Survival Kit Body

9 June 2026

Cybercriminals are getting smarter  but so can you. The National Computer Incident Response Team of The Bahamas (CIRT‑BS) has launched the Phishing and Smishing Survival Kit to help you spot fake messages before they trap you. Verify the URL: Official Bahamas government websites always end with .bs or .com. Spot the fakes: Beware of look‑alike domains such as .bs.com or .lbs — they’re designed to

Read More »

CIRT‑BS Advisory: Beware of Fraudulent NIB Smart Card Renewal Text Scam

9 June 2026

CIRT‑BS warns the public about fraudulent messages impersonating the National Insurance Board (NIB). These scams aim to deceive recipients into clicking unsafe links or sharing personal information under the guise of renewing their NIB Smart Card. The National Insurance Board has officially confirmed that it does not send renewal notifications via text message. Any message requesting Smart Card renewal through a link is fraudulent. How

Read More »

Smishing vs Phishing: Understanding the Dual Threat

8 June 2026

Cyber‑criminals continue to evolve their tactics, targeting both mobile and desktop users. Smishing uses SMS or messaging apps to lure victims into clicking fraudulent links or sharing sensitive data. Phishing relies on deceptive emails that mimic trusted sources to install malware or steal credentials. Stay vigilant and report suspicious messages or emails to cirt.bs/report. Together, we can strengthen The Bahamas’ cyber resilience.  

Read More »

Child Online Protection Webinar: A Conversation That Matters

4 May 2026

On May 20, 2026, the National Computer Incident Response Team of The Bahamas (CIRT‑BS) will host the Child Online Protection Webinar, uniting international experts to explore how we can build safer, more resilient digital spaces for children. This timely conversation under the theme “A Conversation That Matters. SHIELDS UP!” will spotlight proactive strategies to prevent online exploitation and strengthen community awareness. Featured Speakers Fanny Rotino,

Read More »

Parents: Protect Your Kids on Roblox

16 October 2025

Roblox is one of the most popular games in the world, and chances are your child plays it. It’s fun and creative but if left unsupervised, it can expose children to very real dangers. Dangers of Unsupervised Play: Online predators who pretend to be kids and attempt grooming. Exposure to adult, violent, or inappropriate content. Strangers messaging or joining games uninvited. Cyberbullying, harassment, or peer

Read More »
CIRT-BS Cyber Monday

The Deal on Cyber Monday

2 December 2024

Cyber Monday is a great time to score on big deals; however, cyber criminals use this day to try to score big with your wallet and personal identifiable information as well. As you shop online, especially throughout the holiday season, remember these few tips: Before You Shop Enrol in payment alerts. Some card issuers offer payment alerts so you are always aware of your transactional

Read More »
Importance of Software Updates

Cybersecurity Awareness Month: The Truth About Software Updates

24 October 2024

Those pesky updates. They’re annoying but so critical to do! While, at times, they may seem inconvenient, these updates ensure that your devices and apps remain protected from the latest threats. An Apple Example In 2019, Apple introduced a group FaceTime feature. Shortly after its release, a 14-year-old initiated a group call and discovered a major security flaw: they could eavesdrop on a call recipient

Read More »

Cybersecurity Awareness Month: Now That’s a Red Flag: Watch Out for Phish!

18 October 2024

Did you know that one of the most common cyber attacks reported at the National CIRT originate from a phishing attempt that an unlucky victim fell for? This unfortunate fact reminds us why learning to recognise and report phishing attempts is critical. Below we list five red flags to look out for as you become more sensitive to phishing attempts. A message tone that is

Read More »
  • RFC 2350
Scroll to Top
Skip to content