Senior Reporter
jesse.ramdeo@cnc3.co.tt
Government is monitoring a series of cybersecurity incidents that have affected several ministries and State agency websites, with Minister of Public Administration and Artificial Intelligence Dominic Smith assuring that investigations are underway to determine the extent of the breaches.
The issue was first publicly highlighted by Trinidad and Tobago IT consultant Shivam Teelucksingh, who has been documenting a recent increase in compromised websites across the country and wider Caribbean.
Speaking with Guardian Media yesterday, Smith said authorities are aware of the recent service disruptions but stressed that preliminary findings suggest they were not sophisticated, targeted cyberattacks.
“I’m aware of the service disruptions. Some are related to maintenance issues involving third-party service providers. The cyber incidents do not appear to be targeted attacks but rather the exploitation of known vulnerabilities by malicious bots,” Smith said.
He added that the Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) and other relevant agencies are actively working with stakeholders to restore services and investigate the incidents.
“At the moment, TT-CSIRT and the relevant agencies are actively working with stakeholders to resolve the issues. More broadly, this highlights the need for a whole-of-government approach to strengthening IT services, and work in that area is already underway.”
Asked whether any sensitive or personal information may have been compromised, Smith said authorities have not yet reached a conclusion.
“There is an active assessment being undertaken by agencies,” he stated.
The minister also sought to reassure the public by noting that the affected websites were not hosted on the Government’s GovNet infrastructure.
Meanwhile, Teelucksingh said he has observed a sharp rise in cybersecurity incidents in recent months, attributing much of the trend to cybercriminals increasingly using artificial intelligence to identify weaknesses in websites.
“Over the past couple of months, I’ve noticed multiple websites being compromised, not only Government websites but websites across the islands and even from international clients,” he said.
According to Teelucksingh, hackers are increasingly exploiting outdated software, vulnerable plug-ins and poorly maintained servers to gain access to websites before redirecting users to fraudulent pages or displaying defacement messages.
He pointed to recent compromises involving the Industrial Court, the Service Commissions Department and the Housing Development Corporation’s website, noting that each appeared to have been exploited differently.
In one case, a hacker replaced the website with a defacement page, while another redirected visitors to an online gambling website.
Although there is currently no indication that citizens’ personal information has been stolen in the recent incidents, Teelucksingh warned that compromised government websites can still present significant risks.
“People trust government websites. Once they’re redirected elsewhere, they’re more likely to enter personal information or financial details without realising they’re dealing with criminals,” he explained.
He cautioned that attackers could exploit public confidence by creating convincing phishing campaigns, similar to previous scams involving fake tax refund emails purporting to come from government agencies.
Teelucksingh said many of these incidents could be prevented through routine cybersecurity practices, including regularly updating servers, patching vulnerabilities and removing outdated software.
“The fundamentals are important. If you’re updating your servers, checking for vulnerable plug-ins and maintaining your systems, you can mitigate many of these situations,” he said.
While welcoming the Government’s acknowledgement of the incidents, the cybersecurity consultant believes a broader review is necessary.
“I think they need to do a full audit of government services, whether hosted by third parties or in-house, and double and triple-check everything, from logins to plug-ins and server configurations,” he said.
He also called for stronger coordination across Government agencies, saying inconsistent cybersecurity practices could expose citizens to unnecessary risks.
Among the issues he highlighted was the reported use of generic Gmail accounts for communication in relation to some government programmes, arguing that official correspondence involving sensitive personal information should instead be conducted through verified government email domains.
Teelucksingh said the recent incidents should serve as a reminder that cybersecurity is no longer solely a technical issue but a matter of public trust.
“I’m trying to work with any entities willing to address these issues so we can mitigate the risks. At the end of the day, the objective is to protect citizens.”
Authorities have not indicated when the affected websites will be fully restored, but investigations into the incidents and any potential impact on users remain ongoing.
