Updates
Wrong QR Code
SIKE! You scanned the wrong QR Code. QR Codes, or quick response codes, are convenient tools that allow us to share electronic information quickly. However, in the same token, they are also an easy way for cybercriminals to steal your information. It is critical to be mindful of the QR codes you choose to scan to avoid becoming a victim of the next cyber attack.
New Advisory: (Critical) FortiManager Zero-Day Exploitation
ⓘ This advisory addresses a zero-day vulnerability impacting FortiManager and FortiManagerCloud. Attention constituent: A known, successfully exploited critical zero-day vulnerability (CVE-2024-47575) has been identified in Fortinet’s FortiManager and FortiManager Cloud platforms. This vulnerability stems from missing authentication in the FortiGate to FortiManager (FGFM) daemon (fgfmsd). Exploitation of this flaw allows remote, unauthenticated attackers to execute arbitrary code or commands via specially crafted requests. CVE: CVE-2024-47575 Severity: Critical (CVSS: 9.8) Affected Platforms: FortiManager and FortiManager Cloud Versions impacted: FortiManager 7.6.0
Cybersecurity Awareness Month: The Truth About Software Updates
Those pesky updates. They’re annoying but so critical to do! While, at times, they may seem inconvenient, these updates ensure that your devices and apps remain protected from the latest threats. An Apple Example In 2019, Apple introduced a group FaceTime feature. Shortly after its release, a 14-year-old initiated a group call and discovered a major security flaw: they could eavesdrop on a call recipient
Cybersecurity Awareness Month: Now That’s a Red Flag: Watch Out for Phish!
Did you know that one of the most common cyber attacks reported at the National CIRT originate from a phishing attempt that an unlucky victim fell for? This unfortunate fact reminds us why learning to recognise and report phishing attempts is critical. Below we list five red flags to look out for as you become more sensitive to phishing attempts. A message tone that is
Join Us for the “Secure Our World” Cybersecurity Awareness Month Webinar + Q&A
Register for the CIRT-BS Cybersecurity Awareness Webinar to secure your spot. Join Us for the “Secure Our World” Cybersecurity Awareness Month Webinar + Q&A Cybersecurity is an essential part of protecting your organisation and personal data in today’s digital landscape. On Thursday, 31 October 2024 at 10 am, CIRT-BS invites you to a webinar focused on helping you understand the steps you can take to secure
PRESS RELEASE: Bahamas’ National CIRT Director Sametria McKinney Honoured for Advancing Global Cyber Security
FOR IMMEDIATE RELEASE 17 October 2024 Bahamas’ National CIRT Director Sametria McKinney Honoured for Advancing Global Cyber Security NASSAU, The Bahamas—The National Computer Incident Response Team of The Bahamas (CIRT-BS) proudly announces that its Director, Sametria McKinney, CISSP, has been recognised with the prestigious ISC2 Senior Professional Award for the Americas Region. The ISC2 (International Information System Security Certification Consortium) is the world’s leading nonprofit
Cybersecurity Awareness Month: Enable MFA; Disable the Hackers
Last week, we kicked off Cybersecurity Awareness Month, detailing strong passwords as your first line of defence against a cyber attack; this week, we cover the second: multi-factor authentication (MFA). Multi-factor Authentication adds an extra layer of security by requiring two or more methods of verification to access your accounts. Rather than relying solely on a password, MFA can come in several forms. These include
Cybersecurity Awareness Month: Use a Strong Password + a Password Manager
Cybersecurity professionals always say it, but it’s true: passwords are your first line of defence against data breaches. Because of this, it is crucial to make them strong and difficult to crack. Remember these three keys to make your passwords stronger: Make them long. The longer a password is, the more challenging to crack. CIRT-BS and other industry experts recommend passwords of 16 characters minimum.
PRESS RELEASE: CIRT-BS CELEBRATES CYBERSECURITY AWARENESS MONTH WITH “SECURE OUR WORLD” CAMPAIGN
NASSAU, The Bahamas—The National Computer Incident Response Team of The Bahamas (CIRT-BS) is proud to announce Cybersecurity Awareness Month 2024 with a focus on the theme, “Secure Our World.” The annual October recognition aims to empower individuals and organisations to prioritise cybersecurity in their daily lives to foster a safer digital environment for everyone. In an increasingly interconnected world, the need for robust cybersecurity measures
Wrong QR Code
SIKE! You scanned the wrong QR Code. QR Codes, or quick response codes, are convenient tools that allow us to share electronic information quickly. However,
New Advisory: (Critical) FortiManager Zero-Day Exploitation
ⓘ This advisory addresses a zero-day vulnerability impacting FortiManager and FortiManagerCloud. Attention constituent: A known, successfully exploited critical zero-day vulnerability (CVE-2024-47575) has been identified in
Cybersecurity Awareness Month: The Truth About Software Updates
Those pesky updates. They’re annoying but so critical to do! While, at times, they may seem inconvenient, these updates ensure that your devices and apps
Cybersecurity Awareness Month: Now That’s a Red Flag: Watch Out for Phish!
Did you know that one of the most common cyber attacks reported at the National CIRT originate from a phishing attempt that an unlucky victim
Join Us for the “Secure Our World” Cybersecurity Awareness Month Webinar + Q&A
Register for the CIRT-BS Cybersecurity Awareness Webinar to secure your spot. Join Us for the “Secure Our World” Cybersecurity Awareness Month Webinar + Q&A Cybersecurity is
PRESS RELEASE: Bahamas’ National CIRT Director Sametria McKinney Honoured for Advancing Global Cyber Security
FOR IMMEDIATE RELEASE 17 October 2024 Bahamas’ National CIRT Director Sametria McKinney Honoured for Advancing Global Cyber Security NASSAU, The Bahamas—The National Computer Incident Response
Cybersecurity Awareness Month: Enable MFA; Disable the Hackers
Last week, we kicked off Cybersecurity Awareness Month, detailing strong passwords as your first line of defence against a cyber attack; this week, we cover
Cybersecurity Awareness Month: Use a Strong Password + a Password Manager
Cybersecurity professionals always say it, but it’s true: passwords are your first line of defence against data breaches. Because of this, it is crucial to
PRESS RELEASE: CIRT-BS CELEBRATES CYBERSECURITY AWARENESS MONTH WITH “SECURE OUR WORLD” CAMPAIGN
NASSAU, The Bahamas—The National Computer Incident Response Team of The Bahamas (CIRT-BS) is proud to announce Cybersecurity Awareness Month 2024 with a focus on the
Help Secure Our World this Cybersecurity Awareness Month
Welcome to Cybersecurity Awareness Month, an international initiative that educates everyone about online safety and empowers individuals and organisations to protect their data from cybercrime.
WhatsApp Account Hijacking Scams Advisory
ⓘ This advisory addresses an increase in compromised WhatsApp accounts. Attention constituent: CIRT-BS is advising members of the public to stay alert as a sophisticated scam
CrowdStrike Update (Phishing Attempts)
ⓘ This advisory addresses new phishing attempts related to CrowdStrike’s Falcon sensor crash. Attention Constituents: Since CrowdStrike deployed its international Falcon sensor fix last Friday,
New Advisory: CrowdStrike Update Crashes Windows Systems Worldwide
ⓘ This advisory addresses a recent update to CrowdStrike’s Falcon sensor which has led to widespread Blue Screen of Death errors. Attention Microsoft service users:
“Free Money” WhatsApp Scam
ⓘ This advisory addresses an uptick in “free money” scams on WhatsApp. Attention constituent: CIRT-BS is observing an uptick in “free money” scams on WhatsApp
Press Release: CIRT-BS Observes Uptick in Parcel Delivery “Smishing” Scams Impacting Members of the General Public
New Providence, The Bahamas—The National Computer Incident Response Team of The Bahamas (CIRT-BS) is observing an uptick in parcel delivery scams involving threat actors impersonating
Parcel Delivery Scams
ⓘ This advisory addresses an uptick in parcel delivery scams. Attention constituent: CIRT-BS is observing an uptick in parcel delivery scams involving threat actors impersonating
Request 1-on-1 Meeting (Organisations Only)
CIRT-BS is offering in-person and virtual introductory one-on-one meetings and tours with our team for government organisations and critical information infrastructure. To request a meeting
Akira Ransomware Exploits Critical Vulnerabilities in ESXi VMware and VPNs
ⓘ This advisory addresses the increase of Akira Ransomware attacks on critical information infrastructure due to VPN vulnerabilities. Attention constituent: CIRT-BS is observing an uptick
Cash or Card? 10 Tips to Outsmart Card Fraud
In its 2022 Annual Report, the Bahamian monetary regulator, Central Bank of The Bahamas, reported over $15M in fraud complaints from debit and credit card
Don’t Get Reeled In! Recognising and Reporting Phishing
Have you ever received an email from a foreigner requesting financial assistance? How about a text message claiming you’ve won a particular prize for a