Updates
Dropbox discloses breach after hacker stole 130 GitHub repositories
Dropbox disclosed a security breach after threat actors stole 130 code repositories after gaining access to one of its GitHub accounts using employee credentials stolen in a phishing attack. The company discovered the attackers breached the account on October 14 when GitHub notified it of suspicious activity that started one day before the alert was sent. “To date, our investigation has found that the code
ABOUT “BLUEBLEED”SERVICE AND THE VULNERABILITY OF MICROSOFT AWS SERVERS
Attack info First seen 2022-09-24 • Last seen 2022-10-19 On October 19, 2022, Socradar announced a vulnerability they discovered in several misconfigured Microsoft AWS servers. They also announced the launch of the BlueBleed service, which contains data downloaded from several misconfigured Microsoft AWS servers. Link to the Socradar announcement – hxxps://socradar[.]io/sensitive-data-of-65000-entities-in-111- countries-leaked-due-to-a-single-misconfigured-data-bucket/ The exposed files in the misconfigured bucket include; POE documents, SOW documents, Invoices, Product
New PHP information-stealing malware targets Facebook accounts
A new Ducktail phishing campaign is spreading a never-before-seen Windows information-stealing malware written in PHP used to steal Facebook accounts, browser data, and cryptocurrency wallets. Ducktail phishing campaigns were first revealed by researchers from WithSecure in July 2022, who linked the attacks to Vietnamese hackers. Those campaigns relied on social engineering attacks through LinkedIn, pushing .NET Core malware masquerading as a PDF document supposedly containing details about a marketing
Magniber ransomware now infects Windows users via JavaScript files
A recent malicious campaign delivering Magniber ransomware has been targeting Windows home users with fake security updates. Threat actors created in September websites that promoted fake antivirus and security updates for Windows 10. The downloaded malicious files (ZIP archives) contained JavaScript that initiated an intricate infection with the file-encrypting malware. A report from HP’s threat intelligence team notes that Magniber ransomware operators demanded payment of up to $2,500
CVE-2022-41352: Remote Code Execution Vulnerability in Zimbra Collaboration Suite CVSS 3.0: 9.8 (Critical)
Vulnerability Description An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavisd via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also, pax is in the prerequisites of Zimbra on Ubuntu; however, pax is no longer part of a default Red Hat

Keep Your Online Identity on Lock
11 April 2023 is recognised as Identity Management Day. Below are some practical tips on keeping your online identity on lock. Protect personal information. Don’t post NIB cards, Driver’s Licences, and other identifiable info. Close old accounts. Unused accounts are easier to hack. Stay alert for scams. Beware of giveaways, quizzes and surveys soliciting banking info. Avoid app sharing. If one app is hacked, linked

World Backup Day
Did you know that 31 March has been dubbed the day to backup and better protect your data? Losing important digital files happen way more than you think! CIRT-BS is here to help you avoid being fooled with the 3-2-1 Backup Rule.

Don’t become victim to cyber attacks.
Don’t become victim to cyber attacks. Protect sensitive data and improve your digital privacy. Password-protect your devices. Keep software and apps updated. Choose incognito or private browsing. Login with two-factor authentication. Manage unique passwords with a password manager. Browse public Wi-FI with a VPN. Disable unnecessary mobile app permissions. Backup & encrypt sensitive data.

Happy Valentine’s Day
Online dating is becoming increasingly popular in our communities and while many may be searching for their Valentine via dating apps and social media platforms, unexpected dangers are always present! Be careful of the following: ‘Catfishers’ who create fake online dating profiles. Romance scammers asking for money. Scammers phishing for personal information. Fake online dating sites. Sharing private/sensitive photos online. Accepting friend requests from unknown


Building Cyber Resilience: Join the CIRT‑BS Cybersecurity Professional Meetup
CIRT‑BS invites cybersecurity professionals, IT practitioners, and digital defenders to connect at the Cybersecurity Professional Meetup, a gathering designed to strengthen collaboration and national cyber

Advisory: FortiBleed Credential Leak Exposes Thousands of Fortinet VPN Devices Worldwide
Recent reports from cybersecurity researchers have identified a large-scale credential exposure event, known as FortiBleed, involving credentials associated with Fortinet VPN and firewall devices worldwide.

Save The Date: Cyber Sharks Capture the Flag Competition 2026
Cyber Sharks Capture the Flag Competition Bahamas is a groundbreaking national cybersecurity challenge for Bahamian youth ages 13–16. Hosted by the National Computer Incident Response

Stay Sharp: Your Phishing and Smishing Survival Kit Body
Cybercriminals are getting smarter but so can you. The National Computer Incident Response Team of The Bahamas (CIRT‑BS) has launched the Phishing and Smishing Survival

Advisory: Beware of Fraudulent NIB Smart Card Renewal Text Scam
CIRT‑BS warns the public about fraudulent messages impersonating the National Insurance Board (NIB). These scams aim to deceive recipients into clicking unsafe links or sharing

Smishing vs Phishing: Understanding the Dual Threat
Cyber‑criminals continue to evolve their tactics, targeting both mobile and desktop users. Smishing uses SMS or messaging apps to lure victims into clicking fraudulent links

Advisory: Fake Traffic Fine Payment Scam
The National Computer Incident Response Team of The Bahamas (CIRT-BS) is aware of fraudulent websites impersonating legitimate government services and attempting to collect fake traffic

Bahamas Election Security Awareness 2026
Daily Election Checklist: Stay Informed. Stay Secure. Verifying information is everyone’s responsibility: Follow updates from official government channels and the Parliamentary Registration Department Rely on

Child Online Protection Webinar: A Conversation That Matters
On May 20, 2026, the National Computer Incident Response Team of The Bahamas (CIRT‑BS) will host the Child Online Protection Webinar, uniting international experts to

CyberWizards Camp 2026: Represent The Bahamas in Estonia
CIRT-BS is proud to introduce CyberWizards Camp 2026, an international initiative aimed at strengthening cybersecurity capacity and inspiring the next generation of women in technology. We

Strengthening The Bahamas’ Digital Future: CIRT-BS Cybersecurity Professionals Meetup
Building Connections in Cybersecurity The Bahamas is taking bold steps toward digital resilience, and the upcoming CIRT-BS Cybersecurity Professionals Meetup is a key milestone in

CIRT-BS to Participate in ISBET Tech Expo 2026
ISBET’s Tech Expo 2026 is a high-impact event that brings together industry experts, innovators, and students for a series of forward-looking panel discussions and hands-on

Mark Your Calendar: Child Online Protection Webinar
CIRT-BS invites the public to join our upcoming Child Online Protection Webinar, a timely and important conversation focused on safeguarding children in today’s digital environment.

Child Protection Month: Building Safe Digital Spaces for Our Children
Child Protection Month: Building Safe Digital Spaces for Our Children As The Bahamas observes Child Protection Month, it is an important time to reflect on

Take Control of Your Digital Security
How prepared do you feel to face today’s cyberthreats? Would you like to explore these from a gender lens?👩🏽💻🔒👾 This is exactly the conversation we will
Actively Exploited SQL Injection in FortiClient EMS
ⓘ We are reaching out to let you know that a critical, actively exploited vulnerability has been identified in Fortinet’s FortiClient EMS platform. Attention constituent:
CIRT-BS March Week Recap
Last week, our team participated in a series of engagements. We began at the University of The Bahamas Business Week, delivering a session on “Understanding
CISCO AsyncOS Zero Day Vulnerability
ⓘ We are reaching out to let you know that there is a newly identified advanced persistent threat (APT) that has been exploiting a zero-day

Cybersecurity Workshop: Online Safety – Protecting Your Digital Identity
CIRT-BS is proud to continue our School Tour with a stop at The Bahamas Technical and Vocational Institute (BTVI), where we’ll engage staff, students, and

