Search by News & Events
Home > 
Search by News & Events
< back
Filter by
2021-6-22
Phishing Attack
Phishing Attack - Fraudulent email purportedly issued by Inland Revenue Department
​The Inland Revenue Department (IRD) today (June 22) alerted members of the public to a fraudulent email purportedly issued by the department from the email account taxenf@ird[dot]gov[dot]hk. A compressed file named "Pending Tax Credits-IRD 679346.pdf.rar" is attached to the email and may be computer malware.
2021-6-22
Phishing Attack
Phishing Attack - Fraudulent website and phishing instant message related to Hang Seng Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Hang Seng Bank, Limited relating to a fraudulent website and phishing instant message, which has been reported to the HKMA.
2021-6-22
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to Standard Chartered Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Standard Chartered Bank (Hong Kong) Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-22
Phishing Attack
Phishing Attack - Fraudulent website and phishing instant message related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website and phishing instant message, which has been reported to the HKMA.
2021-6-21
Phishing Attack
Phishing Attack - Fraudulent website and phishing instant message related to Hang Seng Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Hang Seng Bank, Limited relating to a fraudulent website and phishing instant message, which has been reported to the HKMA.
2021-6-21
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-06-13): Vulnerability in Microsoft Edge (Chromium-based)
Microsoft released a security update to address a vulnerability in Microsoft Edge (Chromium-based).
2021-6-21
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (14 Jun 2021 – 20 Jun 2021)
- Potential attack on Wi-Fi of iPhone with special SSID
- Proposed framework for securing software supply chains
2021-6-21
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-21
Phishing Attack
Phishing Attack - Fraudulent website and phishing instant message related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to a fraudulent website and phishing instant message, which has been reported to the HKMA.
2021-6-21
Phishing Attack
Phishing Attack - Fraudulent websites related to Chong Hing Bank Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites, which has been reported to the HKMA.
2021-6-19
Security Related News
The PCPD Reminds the Public to Safeguard Personal Data Privacy
When They Participate in Lucky Draw Activities
The Office of the Privacy Commissioner for Personal Data (PCPD) noted that, in order to encourage more citizens to receive COVID-19 vaccination, many organisations have launched various lucky draw activities which may involve the collection of participants’ personal data.
2021-6-18
Security Alert and Advisory
High Threat Security Alert (A21-06-12): Multiple vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in Google Chrome.
2021-6-17
Event
CSA HKM Knowledge Sharing Event – June 2021
Organised by Cloud Security Alliance Hong Kong & Macau Chapter
2021-6-17
Phishing Attack
Phishing Attack - Suspected fraudulent website
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a suspected fraudulent website with the domain name http://1stgulfb[dot]com/.
2021-6-17
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-17
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-06-11): Vulnerability in Firefox
Mozilla has published the advisory (MFSA 2021-27) to address a vulnerability in Firefox browser.
2021-6-17
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-06-10): Multiple Vulnerabilities in Cisco Products
Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.
2021-6-16
Phishing Attack
Phishing Attack - Fraudulent websites, phishing emails, and phishing instant messages related to Livi Bank Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Livi Bank Limited relating to fraudulent websites, phishing emails, and phishing instant messages, which has been reported to the HKMA.
2021-6-16
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-06-09): Multiple vulnerabilities in Microsoft Edge (Chromium-based)
Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge (Chromium-based).
2021-6-16
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-06-08): Multiple Vulnerabilities in Apple iOS and iPadOS
Apple has released iOS 12.5.4 to fix the vulnerabilities in various Apple devices.
2021-6-16
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-06-07): Multiple Vulnerabilities in Apache HTTP Server
The Apache Software Foundation released a security update to address multiple vulnerabilities in the HTTP Server and its modules.
2021-6-16
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-06-06): Vulnerability in Linux Operating Systems
A vulnerability was found in a Linux system service called polkit which is installed by default in several Linux distributions.
2021-6-15
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-14
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (7 Jun 2021 – 13 Jun 2021)
- Act fast to remediate compromised accounts
- Vulnerable financial mobile applications
2021-6-11
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-11
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-06-05): Multiple vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in Google Chrome.
2021-6-10
Phishing Attack
Phishing Attack - Phishing email related to DBS Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to a phishing email, which has been reported to the HKMA.
2021-6-10
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-9
Phishing Attack
Phishing Attack - Fraudulent website related to Bank of Singapore Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Singapore Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-6-9
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-06-04): Multiple Vulnerabilities in Android
Google has released Android Security Bulletin June 2021 to fix multiple security vulnerabilities in Android operating system.
2021-6-9
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-06-03) Multiple Vulnerabilities in Adobe Reader/Acrobat
Security updates are released for Adobe Reader and Acrobat to address multiple vulnerabilities.
2021-6-9
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-06-02): Multiple Vulnerabilities in Microsoft Products (June 2021)
Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.
2021-6-9
Phishing Attack
Phishing Attack - Fraudulent website related to Hang Seng Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Hang Seng Bank, Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-6-9
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-8
Phishing Attack
Phishing Attack - Fraudulent mobile application related to The Bank of East Asia, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent mobile application (App), which has been reported to the HKMA.
2021-6-8
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-7
Security Related News
HKCERT - Security Blog: Beware of Flash Phishing Attacks
This blog aims to raise public awareness by analysing the recent phishing attack techniques and channels as observed by HKCERTr…
2021-6-7
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (31 May 2021 – 6 Jun 2021)
- Common security issues in enterprise devices
- Bypassing defense through trusted applications
2021-6-7
Phishing Attack
Phishing Attack - Phishing email related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to a phishing email, which has been reported to the HKMA.
2021-6-7
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-6-4
Phishing Attack
Phishing Attack - Fraudulent websites related to The Bank of East Asia, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites, which has been reported to the HKMA.
2021-6-3
Phishing Attack
Phishing Attack - Fraudulent website and phishing instant message related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website and phishing instant message, which has been reported to the HKMA.
2021-6-2
Phishing Attack
Phishing Attack - Phishing emails related to BNP Paribas
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by BNP Paribas relating to phishing emails, which has been reported to the HKMA.
2021-6-2
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-06-01): Multiple vulnerabilities in Firefox
Mozilla has published the advisories (MFSA 2021-23 and MFSA 2021-24) to address multiple vulnerabilities in Firefox browser.
2021-5-31
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (24 May 2021 – 30 May 2021)
- Impersonation attack made possible through flaws in bluetooth
- Tampering with security headers by Chrome extensions
2021-5-26
Security Related News
LCQ12: Cyber security risks amid the epidemic
Following is a question by the Hon Martin Liao and a written reply by the Secretary for Innovation and Technology, Mr Alfred Sit, in the Legislative Council today (May 26)…
2021-5-26
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-14): Multiple Vulnerabilities in VMware Products
VMware has published a security advisory to address multiple vulnerabilities in VMware products.
2021-5-26
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-13): Multiple vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in Google Chrome.
2021-5-26
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-12): Vulnerability in Pulse Secure Products
Pulse Secure has released a security advisory about a buffer overflow vulnerability in Pulse Connect Secure gateway.
2021-5-25
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-11): Multiple Vulnerabilities in Bluetooth devices
Multiple vulnerabilities are found in Bluetooth devices that support the Bluetooth Core and Mesh Specifications.
2021-5-25
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-10): Multiple Vulnerabilities in Apple iOS and iPadOS
Apple has released iOS 14.6 and iPadOS 14.6 to fix the vulnerabilities in various Apple devices.
2021-5-25
Phishing Attack
Phishing Attack - Fraudulent website related to The Bank of East Asia, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-5-24
Security Related News
PCPD Publishes Highlights of the Draft Personal Information Protection Law of China on a Newly Created Thematic Webpage
The PCPD launches a new thematic webpage titled “Draft Personal Information Protection Law of China”, and publishes the highlights of the second version of the Draft Personal Information Protection Law on the webpage.
2021-5-24
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (17 May 2021 – 23 May 2021)
- Detect and patch vulnerabilities without delay
- Exposure of personal data in mobile apps
2021-5-20
Event
CSA HKM Knowledge Sharing Event – May 2021
Organised by Cloud Security Alliance Hong Kong & Macau Chapter
2021-5-20
Phishing Attack
Phishing Attack - Fraudulent website related to The Bank of East Asia, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-5-18
Phishing Attack
Phishing Attack - Fraudulent website related to OCBC Wing Hang Bank Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by OCBC Wing Hang Bank Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-5-18
Phishing Attack
Phishing Attack - Fraudulent website related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-5-17
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (10 May 2021 – 16 May 2021)
- Secure critical infrastructure from cyber attacks
- Wi-Fi devices subject to FragAttacks
2021-5-14
Event
Build a Secure Cyberspace 2021 – “Be a Smart eCitizen Beware of Cyber Pitfalls” Webinar
Organised by Office of the Government Chief Information Officer (OGCIO) / Hong Kong Police Force / Hong Kong Computer Emergency Response Team Coordination Centre
2021-5-13
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-09): Multiple Vulnerabilities in Wi-Fi devices
Multiple vulnerabilities are found in Wi-Fi devices that use Wi-Fi 802.11 standard.
2021-5-13
Phishing Attack
Phishing Attack - Phishing email related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to a phishing email, which has been reported to the HKMA.
2021-5-12
Security Related News
PCPD - WhatsApp’s new Terms of Service and Privacy Policy take effect on 15 May – Users should consider the changes carefully
WhatsApp’s new Terms of Service and Privacy Policy will take effect on 15 May. According to WhatsApp, users who do not accept the new terms and policy will have less and less functionality on WhatsApp gradually.
2021-5-12
Phishing Attack
Phishing Attack - Fraudulent website and phishing email related to Far Eastern International Bank
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Far Eastern International Bank relating to a fraudulent website and phishing email, which has been reported to the HKMA.
2021-5-12
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-05-08): Multiple Vulnerabilities in Adobe Reader/Acrobat
Security updates are released for Adobe Reader and Acrobat to address multiple vulnerabilities.
2021-5-12
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-05-07): Multiple Vulnerabilities in Microsoft Products (May 2021)
Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.
2021-5-12
Security Related News
LCQ12: Rights and interests of online shoppers
Following is a question by the Hon Starry Lee and a written reply by the Secretary for Commerce and Economic Development, Mr Edward Yau, in the Legislative Council today (May 12)…
2021-5-11
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-06): Multiple Vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in Google Chrome.
2021-5-10
Security Related News
Administration's paper on update on information security
This paper briefs Members on the latest situation of information security in Hong Kong and the Government’s work on information security in the past year.
2021-5-10
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (3 May 2021 – 9 May 2021)
- AWS API key exposed in mobile apps- Bug detection through code inconsistency
2021-5-6
Phishing Attack
Phishing Attack - Suspicious Websites and Mobile Applications (Apps) related to DBS Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to suspicious websites and Apps, which has been reported to the HKMA.
2021-5-6
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-5-6
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-05): Multiple Vulnerabilities in Cisco Products
Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.
2021-5-5
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-04): Vulnerability in Dell products
Dell has released a security advisory update to fix an insufficient access control vulnerability in the Dell dbutil driver.
2021-5-4
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-03): Multiple Vulnerabilities in Android
Google has released Android Security Bulletin May 2021 to fix multiple security vulnerabilities in Android operating system.
2021-5-4
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-05-02): Multiple Vulnerabilities in Apple iOS and iPadOS
Apple has released iOS 14.5.1 and iPadOS 14.5.1 as well as iOS 12.5.3 to fix the vulnerabilities in various Apple devices.
2021-5-3 to
2021-7-26
Event
“Be Smart Online, Stay Away from Pitfalls” GIF Graphic Design Contest
Organised by Office of the Government Chief Information Officer (OGCIO) / Hong Kong Police Force / Hong Kong Computer Emergency Response Team Coordination Centre
2021-5-3
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-05-01): Vulnerability in ISC BIND
ISC has released a security update to fix a vulnerability in BIND.
2021-5-3
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (26 April 2021 – 2 May 2021)
- Secure NFC communication
- Defense against software supply chain attacks
2021-4-28
Phishing Attack
Phishing Attack - Fraudulent website related to Hang Seng Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Hang Seng Bank, Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-4-28
Security Related News
LCQ15: Handling online shopping complaints and disputes
Following is a question by the Hon Vincent Cheng and a written reply by the Secretary for Commerce and Economic Development, Mr Edward Yau, in the Legislative Council today (April 28)…
2021-4-28
Security Related News
LCQ4: Protection of online personal data privacy
Following is a question by the Hon Martin Liao and a written reply by the Secretary for Constitutional and Mainland Affairs, Mr Erick Tsang Kwok-wai, in the Legislative Council today (April 28)…
2021-4-27
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-04-12): Multiple Vulnerabilities in Cisco Products
Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.
2021-4-27
Security Related News
HKCERT - Security Blog: Protect sensitive information in the use of social media and beware of potential cyber attacks arising from data leakages
The security issue of placing personal information on social media platforms heightened once again after reports of serious data leakages at three of the world’s biggest operators in early April this year…
2021-4-27
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-04-11): Multiple Vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in Google Chrome.
2021-4-27
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-04-10): Multiple Vulnerabilities in Apple iOS and iPadOS
Apple has released iOS 14.5 and iPadOS 14.5 to fix the vulnerabilities in various Apple devices.
2021-4-26
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to Standard Chartered Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Standard Chartered Bank (Hong Kong) Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-4-26
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (19 April – 25 April 2021)
- Proper identity and access management in cloud environment
- Insufficient patch review in open-source software
2021-4-23
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-04-09): Vulnerability in Drupal
Drupal has released a security advisory to address a vulnerability of improper sanitisation of API requests in Drupal Core.
2021-4-21
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-04-08): Multiple Vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in Google Chrome.
2021-4-21
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-04-07): Multiple Vulnerabilities in SonicWall Products
SonicWall has released a security advisory about the zero-day vulnerabilities in Email Security products.
2021-4-21
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-04-06): Multiple Vulnerabilities in Oracle Java and Oracle Products (April 2021)
Oracle has released the Critical Patch Update (CPU) Advisory with collections of patches for multiple security vulnerabilities found in Java SE and various Oracle products.
2021-4-21
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-04-05): Vulnerability in Pulse Secure Products
Pulse Secure has released a security advisory about a zero-day vulnerability in Pulse Connect Secure appliances.
2021-4-20
Event
Shifting Security to the Left – Guardrails-as-Code Webinar
Organised by Professional Information Security Association / (ISC)² Hong Kong Chapter
2021-4-20
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-04-04): Multiple vulnerabilities in Firefox
Mozilla has published the advisories (MFSA 2021-15 and MFSA 2021-16) to address multiple vulnerabilities in Firefox browser.
2021-4-20
Phishing Attack
Phishing Attack - Fraudulent websites related to OCBC Wing Hang Bank Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by OCBC Wing Hang Bank Limited relating to fraudulent websites, which has been reported to the HKMA.
2021-4-19
Phishing Attack
Phishing Attack - Fraudulent website and phishing instant messages related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to a fraudulent website and phishing instant messages, which has been reported to the HKMA.
2021-4-19
Security Related News
HKCERT - Security Blog: Beware of Unauthorised Deactivation of WhatsApp Account
Recently an overseas security researcher has demonstrated how to exploit a flaw in the SMS verification and account deactivation process of WhatsApp to deactivate a person’s WhatsApp account without his or her knowledge.
2021-4-19
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (12 April – 18 April 2021)
- Trends in attacks on corporate mobile devices
- Search Engine Poisoning for Malware Distribution
2021-4-16
Phishing Attack
Phishing Attack - DH alerts public to fraudulent phone calls and emails purporting to be made by DH
The Department of Health (DH) today (April 16) appealed to members of the public to stay alert to fraudulent phone calls and emails purporting to be made by the DH.
2021-4-16
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-4-15
Event
CSA HKM Knowledge Sharing Event – April 2021
Organised by Cloud Security Alliance Hong Kong & Macau Chapter
2021-4-15
Phishing Attack
Phishing Attack - Suspicious websites and phishing instant messages related to Nanyang Commercial Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Nanyang Commercial Bank, Limited relating to suspicious websites and phishing instant messages, which has been reported to the HKMA.
2021-4-15
Phishing Attack
Phishing Attack - Fraudulent mobile application related to Bank of Singapore Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Singapore Limited relating to a fraudulent mobile application (App), which has been reported to the HKMA.
2021-4-14
Phishing Attack
Phishing Attack - Suspicious websites and phishing instant messages related to Nanyang Commercial Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Nanyang Commercial Bank, Limited relating to suspicious websites and phishing instant messages, which has been reported to the HKMA.
2021-4-14
Phishing Attack
Phishing Attack - Fraudulent mobile application related to WeLab Bank Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by WeLab Bank Limited relating to a fraudulent mobile application (App), which has been reported to the HKMA.
2021-4-14
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-04-03): Multiple Vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in Google Chrome.
2021-4-14
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-04-02): Multiple Vulnerabilities in Microsoft Products (April 2021)
Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.
2021-4-13
Security Related News
Facebook Provides Users with an Online Form for Enquiry of the Reports on Suspected Data Breach
The Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD), has commenced a compliance check on the reported data breach incident relating to the users of the social media platform Facebook.
2021-4-12
Phishing Attack
Phishing Attack - Suspicious website and phishing instant messages related to Nanyang Commercial Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Nanyang Commercial Bank, Limited relating to a suspicious website and phishing instant messages, which has been reported to the HKMA.
2021-4-12
Phishing Attack
Phishing Attack - Fraudulent website related to OCBC Wing Hang Bank Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by OCBC Wing Hang Bank Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-4-12
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (5 April – 11 April 2021)
- Security risks in third-party app stores
- Setting up defense against firmware attacks
2021-4-11
Security Related News
Privacy Commissioner Follows Up on the Suspected Data Breach Relating to Clubhouse Users
The Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD), noted overseas media reports on the suspected data breach relating to the users of the audio-based social media platform Clubhouse.
2021-4-9
Security Related News
Privacy Commissioner Follows Up on the Alleged Scraping and Selling of Data of LinkedIn Users
The Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD), noted from foreign media reports that the personal data of users of the employment-oriented social media platform LinkedIn were allegedly scraped and sold online.
2021-4-9
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-04-01): Multiple Vulnerabilities in Cisco Products
Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.
2021-4-8
Phishing Attack
Phishing Attack - Phishing instant messages related to Citibank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Citibank (Hong Kong) Limited relating to phishing instant messages, which has been reported to the HKMA.
2021-4-8
Phishing Attack
Phishing Attack - Phishing instant messages related to Citibank, N.A.
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Citibank, N.A. relating to phishing instant messages, which has been reported to the HKMA.
2021-4-8
Phishing Attack
Phishing Attack - Fraudulent website related to The Bank of East Asia, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-4-5
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (29 March 2021 – 4 April 2021)
- Evolving threats from malware
- Mitigate risks in adopting public cloud
2021-4-5
Security Related News
PCPD Issues Guidance on Protecting Personal Data Privacy in the Use of Social Media and Instant Messaging Apps
The PCPD today (5 April) issued the “Guidance on Protecting Personal Data Privacy in the Use of Social Media and Instant Messaging Apps” (Guidance), which provides the public with some practical advice to mitigate the privacy risks involved in the use of social media.
2021-4-4
Security Related News
Privacy Commissioner Commences Compliance Check on Suspected Data Breach Relating to Facebook Users
The Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD), noted the media reports on the suspected data breach incident relating to the users of the social media platform Facebook and that, among others, nearly 3 million Hong Kong users are affected.
2021-3-31
Phishing Attack
Phishing Attack - Fraudulent website related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to a fraudulent website, which has been reported to the HKMA.
2021-3-31
Phishing Attack
Phishing Attack - Phishing instant messages related to DBS Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to phishing instant messages, which has been reported to the HKMA.
2021-3-31
Phishing Attack
Phishing Attack - Phishing email related to Mega International Commercial Bank Co., Ltd.
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Mega International Commercial Bank Co., Ltd. relating to a phishing email, which has been reported to the HKMA.
2021-3-30
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to Standard Chartered Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Standard Chartered Bank (Hong Kong) Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-3-29
Phishing Attack
Phishing Attack - Fraudulent website related to EFG Bank AG
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by EFG Bank AG relating to a fraudulent website, which has been reported to the HKMA.
2021-3-29
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-03-10): Vulnerability in Apple iOS and iPadOS
Apple has released iOS 14.4.2 and iPadOS 14.4.2 as well as iOS 12.5.2 to fix a vulnerability in various Apple devices.
2021-3-29
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (22 March 2021 – 28 March 2021)
- Importance of DMARC enforcement
- Risk in open source components
2021-3-26
Security Related News
HKCERT - Security Blog: QSnatch Malware Prevention and Cleanup
A recent HKCERT review of the malware situation in Hong Kong has estimated that around 2,000 QNAP NAS devices locally had been infected with a malware called QSnatch to become part of a botnet.
2021-3-26
Phishing Attack
Phishing Attack - Fraudulent website and phishing email related to Dah Sing Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited on fraudulent website and phishing email, which has been reported to the HKMA.
2021-3-25
Event
CSA HKM Knowledge Sharing Event – March 2021
Organised by Cloud Security Alliance Hong Kong & Macau Chapter
2021-3-25
Security Related News
HKCERT Urges Local Owners of Microsoft Exchange Server to Patch up System Vulnerabilities
The Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) of the Hong Kong Productivity Council, addressing the latest development of the discovery of multiple vulnerabilities in Microsoft Exchange Server, is urging local owners of this system to promptly download and install the relevant security patch from the official website and investigate for any system compromise occurred.
2021-3-25
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-03-09): Multiple Vulnerabilities in Cisco Products
Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.
2021-3-24
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-03-08): Multiple vulnerabilities in Firefox
Mozilla has published the advisories (MFSA 2021-10 and MFSA 2021-11) to address multiple vulnerabilities in Firefox browser
2021-3-24
Phishing Attack
Phishing Attack - Unauthorised website and phishing email related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on unauthorised website and phishing email, which has been reported to the HKMA.
2021-3-24
Phishing Attack
Phishing Attack - Fraudulent website related to Industrial and Commercial Bank of China (Asia) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited on fraudulent website, which has been reported to the HKMA.
2021-3-23
Phishing Attack
Phishing Attack - Suspicious mobile application related to Livi Bank Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Livi Bank Limited on suspicious mobile application (app), which has been reported to the HKMA.
2021-3-22
Phishing Attack
Phishing Attack - Fraudulent website related to OCBC Wing Hang Bank Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by OCBC Wing Hang Bank Limited on fraudulent website, which has been reported to the HKMA.
2021-3-22
Phishing Attack
Phishing Attack - Fraudulent website related to Hang Seng Bank, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Hang Seng Bank, Limited on fraudulent website, which has been reported to the HKMA.
2021-3-22
Phishing Attack
Phishing Attack - Fraudulent website related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent website, which has been reported to the HKMA.
2021-3-22
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (15 March 2021 – 21 March 2021)
- Business email compromise attacks on the rise
- Proof-of-concept of Spectre exploit on browsers
2021-3-19
Phishing Attack
Phishing Attack - Phishing email related to DBS Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited on phishing email, which has been reported to the HKMA.
2021-3-19
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to Standard Chartered Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Standard Chartered Bank (Hong Kong) Limited on fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-3-18
Phishing Attack
Phishing Attack - Fraudulent website related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent website, which has been reported to the HKMA.
2021-3-15
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-03-07): Multiple Vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in the tab groups implementation, the WebRTC and the Blink components of the Google Chrome.
2021-3-15
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (8 March 2021 – 14 March 2021)
- Threat Landscape in 2020
- Software code signing through Sigstore
2021-3-12
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to Standard Chartered Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Standard Chartered Bank (Hong Kong) Limited on fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-3-12
Security Related News
Privacy Commissioner Calls for Greater Vigilance Beware of Phishing Emails or Messages Issued by Bogus Government Departments or Banks
The Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD), noted that there were numerous fraud cases reported recently which involved the use of phishing emails or SMS messages issued from sources pretending to be the Hongkong Post, the Centre for Health Protection, banks or other organisations in order to lure the public into revealing sensitive personal data, including names, phone numbers, bank account login information, credit card information, health and travel records, etc. Some victims had suffered monetary losses as a result.
2021-3-11
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-03-06): Multiple Vulnerabilities in F5 BIG-IP
F5 has published security advisories to address multiple vulnerabilities in F5 devices.
2021-3-11
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant message related to Standard Chartered Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Standard Chartered Bank (Hong Kong) Limited on fraudulent websites and phishing instant message, which has been reported to the HKMA.
2021-3-11
Phishing Attack
Phishing Attack - Fraudulent websites related to Standard Chartered Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Standard Chartered Bank (Hong Kong) Limited on fraudulent websites, which has been reported to the HKMA.
2021-3-10
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-03-05): Multiple Vulnerabilities in Microsoft Products (March 2021)
Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.
2021-3-10
Phishing Attack
Phishing Attack - Fraudulent website related to The Bank of East Asia, Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited on a fraudulent website, which has been reported to the HKMA.
2021-3-10
Phishing Attack
Phishing Attack - Fraudulent website related to China CITIC Bank International Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China CITIC Bank International Limited on fraudulent website, which has been reported to the HKMA.
2021-3-9 to
2021-5-18
Event
Information Security Summit 2021
Organised by Cloud Security Alliance Hong Kong & Macau Chapter / Hong Kong Computer Emergency Response Team Coordination Centre / Hong Kong Computer Society / Hong Kong Information Technology Federation / High Technology Crime Investigation Association / Information Systems Audit and Control Association, China Hong Kong Chapter / (ISC)² / Information Security and Forensics Society / ISOC Hong Kong / Professional Information Security Association
2021-3-9
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-03-04): Vulnerability in Apple iOS and iPadOS
Apple has released iOS 14.4.1 and iPadOS 14.4.1 to fix a vulnerability in various Apple devices.
2021-3-9
Phishing Attack
Phishing Attack - Phishing email related to Taiwan Cooperative Bank, Ltd.
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Taiwan Cooperative Bank, Ltd. on phishing email, which has been reported to the HKMA.
2021-3-9
Phishing Attack
Phishing Attack - Phishing email related to E.Sun Commercial Bank, Ltd.
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by E.Sun Commercial Bank, Ltd. on phishing email, which has been reported to the HKMA.
2021-3-9
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant message related to The Hongkong and Shanghai Banking Corporation Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited on fraudulent websites and phishing instant message, which has been reported to the HKMA.
2021-3-8
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (1 March 2021 – 7 March 2021)
- Patch your Microsoft Exchange server now
- Boost digital security with Zero Trust
2021-3-8
Security Related News
Hong Kong Customs special operation combats online sale of counterfeit goods
Hong Kong Customs mounted a special operation codenamed "ThunderNet" between November last year and February this year to combat the online sale of counterfeit goods, targeting those counterfeiting activities on online platforms in the name of shopping agents and by means of live webcasts.
2021-3-5
Phishing Attack
Phishing Attack - HKMA alerts public to phishing scams via hyperlinks embedded in SMS or emails
The Hong Kong Monetary Authority (HKMA) has recently received reports from banks about their customers having received phishing SMS or emails with embedded hyperlinks purportedly sent by the banks. After clicking the embedded hyperlinks, the customers were lured into entering their internet banking login IDs, passwords and SMS One-Time Password (OTP) provided by the banks. Unauthorised transactions were subsequently conducted over the accounts of the customers and they suffered financial losses.
2021-3-5
Phishing Attack
Phishing Attack - Phishing email related to China Merchants Bank Co., Ltd.
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Merchants Bank Co., Ltd. on phishing email, which has been reported to the HKMA.
2021-3-5
Phishing Attack
Phishing Attack - Fraudulent websites related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites, which has been reported to the HKMA.
2021-3-5
Phishing Attack
Phishing Attack - Fraudulent website and phishing instant message related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent website and phishing instant message, which has been reported to the HKMA.
2021-3-4
Phishing Attack
Phishing Attack - Fraudulent website related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent website, which has been reported to the HKMA.
2021-3-4
Phishing Attack
Phishing Attack - Phishing email related to Mega International Commercial Bank Co Ltd
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Mega International Commercial Bank Co Ltd on phishing email, which has been reported to the HKMA.
2021-3-3
Phishing Attack
Phishing Attack - Public urged to stay alert to emails purported to be issued by CHP
The Department of Health (DH) today (March 3) appealed to members of the public to stay alert of a fraudulent email purported to be issued by the Centre for Health Protection (CHP) of the DH.
2021-3-3
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-3-3
Phishing Attack
Phishing Attack - Fraudulent websites related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites, which has been reported to the HKMA.
2021-3-3
Phishing Attack
Phishing Attack - Phishing instant message related to DBS Bank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited on phishing instant message, which has been reported to the HKMA.
2021-3-3
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-03-03): Multiple Vulnerabilities in Apache Tomcat
Apache Software Foundation has released a security advisory to address multiple vulnerabilities in the Apache Tomcat.
2021-3-3
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-03-02): Multiple Vulnerabilities in Google Chrome
Google released a security update to address multiple vulnerabilities in Google Chrome.
2021-3-3
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-03-01): Multiple Vulnerabilities in Microsoft Exchange Server
Microsoft has released an out-of-band security updates addressing multiple vulnerabilities in Microsoft Exchange Server.
2021-3-2
Phishing Attack
Phishing Attack - Fraudulent websites and phishing instant messages related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites and phishing instant messages, which has been reported to the HKMA.
2021-3-2
Phishing Attack
Phishing Attack - Fraudulent website related to China CITIC Bank International Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China CITIC Bank International Limited on fraudulent website, which has been reported to the HKMA.
2021-3-1
Phishing Attack
Phishing Attack - Fraudulent websites related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites, which has been reported to the HKMA.
2021-3-1
Phishing Attack
Phishing Attack - Fraudulent websites and phishing SMS messages related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites and phishing SMS messages, which has been reported to the HKMA.
2021-3-1
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (22 February 2021 – 28 February 2021)
- Consolidation and collaboration as a key to secure networks
- Staying vigilant against AppleJeus malware
2021-2-26
Security Related News
Woman jailed for engaging in wrongly accepting payment in sale of surgical masks online
A woman who sold surgical masks online was convicted today (February 26) at Kwun Tong Magistrates' Courts for engaging in wrongly accepting payment, in contravention of the Trade Descriptions Ordinance (TDO). She was sentenced to three months' imprisonment.
2021-2-26
Phishing Attack
Phishing Attack - Fraudulent websites and phishing SMS messages related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites and phishing SMS messages, which has been reported to the HKMA.
2021-2-25
Event
CSA HKM Knowledge Sharing Event – February 2021
Organised by Cloud Security Alliance Hong Kong & Macau Chapter
2021-2-25
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-02-10): Multiple Vulnerabilities in Cisco Products
Cisco released security advisories to address multiple vulnerabilities in Cisco Application Services Engine, Cisco products running NX-OS, Cisco products running FX-OS and Cisco Nexus 9000 Series.
2021-2-24
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-02-09): Multiple vulnerabilities in Firefox
Mozilla has published the advisories (MFSA 2021-07 and MFSA 2021-08) to address multiple vulnerabilities in Firefox browser.
2021-2-24
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-02-08): Multiple Vulnerabilities in VMware Products
VMware has published a security advisory to address multiple vulnerabilities in VMware products.
2021-2-23
Phishing Attack
Phishing Attack - Fraudulent website related to Union Bancaire Privée, UBP SA
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Union Bancaire Privée, UBP SA on fraudulent website, which has been reported to the HKMA.
2021-2-22
Phishing Attack
Phishing Attack - Fraudulent website related to Citibank (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Citibank (Hong Kong) Limited on fraudulent website, which has been reported to the HKMA.
2021-2-22
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (15 February 2021 – 21 February 2021)
- Unprecedentedly large number of vulnerabilities found in 2020
- Data Exfiltration using Google Apps scripts
2021-2-20
Security Related News
OGCIO firmly follows up on fraudulent "LeaveHomeSafe" websites and mobile apps
The Office of the Government Chief Information Officer (OGCIO) said today (February 20) that the situation of fraudulent "LeaveHomeSafe" mobile app is running rampant. Making or using those fraudulent apps may breach relevant laws and the OGCIO has referred all suspected fraudulent websites and mobile apps to the Police for follow up.
2021-2-19
Security Related News
“LeaveHomeSafe” Mobile App in Compliance with the Requirements of the Privacy Law
The Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD), noted that some members of the public are concerned about the protection of personal data privacy relating to the use of the “LeaveHomeSafe” mobile app (“LeaveHomeSafe”).
2021-2-19
Phishing Attack
Phishing Attack - Fraudulent websites and phishing SMS message related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites and phishing SMS message, which has been reported to the HKMA.
2021-2-18
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-02-07): Vulnerability in ISC BIND
ISC has released a security update to fix a vulnerability in BIND.
2021-2-17
Phishing Attack
Phishing Attack - Fraudulent websites and phishing SMS message related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites and phishing SMS message, which has been reported to the HKMA.
2021-2-16
Phishing Attack
Phishing Attack - Beware of fraudulent "LeaveHomeSafe" mobile app
The Office of the Government Chief Information Officer (OGCIO) today (February 16) reminded members of the public that they should beware of websites purporting to be that of the "LeaveHomeSafe" mobile app, with some even claiming to have rewritten the app for public downloading recently.
2021-2-16
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (8 February 2021 – 14 February 2021)
- Moving towards quantum-proof cryptography
- Cyber attack can be life-threatening
2021-2-11
Security Related News
HKCERT - Security Blog: Party’s over for Emotet, One of the World’s Most Feared Botnets
Emotet, one of the most notorious botnets of the past decade, has been taken down in a joint operation by Europol and Eurojust in January 2021.
2021-2-10
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-02-06): Multiple Vulnerabilities in Adobe Reader/Acrobat
Security updates are released for Adobe Reader and Acrobat to address multiple vulnerabilities
2021-2-10
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-02-05): Multiple Vulnerabilities in Microsoft Products (February 2021)
Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.
2021-2-9
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-02-04): Vulnerability in Firefox
Mozilla has published an advisory (MFSA 2021-06) to address a vulnerability in Firefox browser.
2021-2-8
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (1 February 2021 – 7 February 2021)
- Be aware of suspicious browser extension
- Exploiting Plex media servers for DDoS attacks
2021-2-8
Phishing Attack
Phishing Attack - Fraudulent websites related to Union Bancaire Privée, UBP SA
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Union Bancaire Privée, UBP SA on fraudulent websites, which has been reported to the HKMA.
2021-2-8
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-02-03): Vulnerability in Google Chrome
Google released a security update to address a heap buffer overflow vulnerability in the JavaScript and WebAssembly engine V8 of the Google Chrome.
2021-2-8
Security Alert and Advisory
GovCERT.HK - Security Alert (A21-02-02): Multiple Vulnerabilities in Cisco Products
Cisco released security advisories to address multiple vulnerabilities in Cisco product running Cisco IOS XR, NX-OS, UCS Central software, and Cisco Small Business RV series routers.
2021-2-5
Event
Build a Secure Cyberspace – “Secure Use of Mobile Devices” Webinar
Organised by Office of the Government Chief Information Officer (OGCIO) / Hong Kong Police Force / Hong Kong Computer Emergency Response Team Coordination Centre
2021-2-5
Security Related News
"Build a Secure Cyberspace" webinar raises public awareness of mobile device security (with photos)
The Office of the Government Chief Information Officer (OGCIO), the Hong Kong Police Force (HKPF) and the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) jointly held the "Build a Secure Cyberspace" webinar cum sticker design contest award presentation ceremony today (February 5).
2021-2-4
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-02-01): Multiple Vulnerabilities in SolarWinds Orion Platform software
SolarWinds has released security updates to address the vulnerability "SUNBURST" on Orion Platform software as well as the malware "SUPERNOVA" which exploits another vulnerability in SolarWinds Orion Platform software.
2021-2-4
Phishing Attack
Phishing Attack - Fraudulent website related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on a fraudulent website, which has been reported to the HKMA.
2021-2-1
Phishing Attack
Phishing Attack - Fraudulent websites related to Bank of China (Hong Kong) Limited
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites, which has been reported to the HKMA.
2021-2-1
Security Related News
GovCERT.HK - Weekly IT Security News Bulletin (25 January 2021 – 31 January 2021)
- Zero-day vulnerabilities fixed in Apple products
- Gain root privilege through vulnerability in Sudo
2021-1-29
Security Alert and Advisory
GovCERT.HK - High Threat Security Alert (A21-01-09): Multiple Vulnerabilities in SonicWall SMA 100 Series Products
SonicWall has released a security advisory about probable zero-day vulnerabilities in SMA 100 Series products.
2021-1-28
Event
CSA HKM Knowledge Sharing Event – Jan 2021
Organised by Cloud Security Alliance Hong Kong & Macau Chapter
2021-1-18 to
2021-2-1
Event
“Secure Use of Mobile Devices” Sticker Design Contest - Public voting for the “Most Favourite Online Award”
Organised by Office of the Government Chief Information Officer (OGCIO) / Hong Kong Police Force / Hong Kong Computer Emergency Response Team Coordination Centre