Press Release 2021-018
CBCS network vulnerability likely due to remote working solution
WILLEMSTAD/PHILIPSBURG: According to a preliminary conclusion of the currently ongoing forensic investigation, the vulnerability that allowed hackers to gain access to the operational network of the Centrale Bank van Curaçao en Sint Maarten (CBCS) was caused by the remote working solution (VPN service). “However, it can currently be stated with a high degree of certainty that the CBCS does have access to all of its data and that the network has been secured through the mitigating measures taken—this, of course, keeping in mind that there is no such thing as 100% security,” said CBCS President Richard Doornbosch.
After receiving the warning on September 2, with the support of the expert team, the CBCS immediately initiated the incident response process, taking measures to counter the effects of the cyberattack. Current measures are aimed at restarting the CBCS’s operational network. To this end, the CBCS developed a roadmap designed in close consultation and on the recommendation of the expert team, with input from relevant stakeholders. This roadmap was designed so as to minimize the disruption to external services.
A key element of the roadmap is a comprehensive system-wide review by an external party. The goal is for this review to be completed in the first quarter of 2022. “In response to this situation, we will accelerate a number of previously planned investments that will streamline our ICT system and make it more robust to future attacks,” Doornbosch said.
Cyberattacks are on the increase worldwide. The CBCS therefore urges everyone to be alert for potential fraudulent emails, text messages and phone calls and to always take measures aimed at blocking cyberattacks.
Willemstad, September 14, 2021
CENTRALE BANK VAN CURAÇAO EN SINT MAARTEN