InfoSec: Search by News & Events

2025-9-1 to

2025-12-31

2025 Cybersecurity Awareness Campaign

Organised by Digital Policy Office

2025-10-9

Webinar on “Data Security and Risk Management in Schools”

Organised by Office of the Privacy Commissioner for Personal Data

2025-9-27

Phishing Attack - HD alerts public to fraudulent emails

The Housing Department (HD) today (September 27) alerted members of the public to a fraudulent email purportedly issued by the HD.

2025-9-27

Fourth Guangdong-Hong Kong-Macao Greater Bay Area Statistical Forum successfully held (with photos)

The Fourth Guangdong-Hong Kong-Macao Greater Bay Area Statistical Forum was held yesterday (September 26) via live streaming. Under the guidance of the National Bureau of Statistics (NBS), the forum was hosted by the Guangdong Provincial Bureau of Statistics (GPBS) and jointly organised by the Guangzhou Municipal Bureau of Statistics and the People's Government of Huangpu District of Guangzhou Municipality.

2025-9-26

HKCS Construction Tech Seminar: AI-Driven Urban Futures - Building Hong Kong’s Digital Twin and Securing Smart Construction

Organised by Hong Kong Computer Society

2025-9-26

Security Alert (A25-09-20): Multiple Vulnerabilities in Microsoft Edge

Microsoft has released security updates to address multiple vulnerabilities in Microsoft Edge.

2025-9-26

High Threat Security Alert (A25-09-19): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-9-26

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-26

Phishing Attack - Reminder to public about fraudulent SMS messages purporting to be issued by CA or OFCA

The Office of the Communications Authority (OFCA) today (September 26) urged members of the public to stay vigilant against fraudulent SMS messages purportedly issued by the Communications Authority (CA) or OFCA.

2025-9-25

Security Alert (A25-09-18): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-9-25

High Threat Security Alert (A25-09-17): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-9-25

Promoting AI Security and Data Security – Privacy Commissioner Publishes an Article on Hong Kong Lawyer

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, published an article titled “Getting Started with Anonymisation: A Practical Guide from the PCPD and Asia Pacific Privacy Authorities” on Hong Kong Lawyer.

2025-9-23 to

2025-9-24

CS Summit HK 2025

Organised by Hong Kong Productivity Council

2025-9-23

High Threat Security Alert (A25-09-16): Multiple Vulnerabilities in SonicWall Products

SonicWall released security advisories to address multiple vulnerabilities in SonicWall systems.

2025-9-23

Phishing Attack - CEDB alerts public to deceptive content purported to be interviews with SCED

A spokesman for the Commerce and Economic Development Bureau today (September 23) alerted members of the public to be on heightened vigilance against online deceptive advertisements purported to be interviews with the Secretary for Commerce and Economic Development promoting an investment platform with a high return.

2025-9-23

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-23

Digital Policy Office holds "Tsinghua University Course on Developments in the Contemporary China and Digital Governance" (with photos)

Since 2017, the Digital Policy Office (DPO), with the co-ordination of the Youth Affairs Department of the Liaison Office of the Central People's Government in the Hong Kong Special Administrative Region, has been collaborating with Tsinghua University to organise the "Tsinghua University Course on Developments in the Contemporary China and Digital Governance" (previously known as "Tsinghua University Course on Developments in the Contemporary China and Information Technology").

2025-9-8 to

2025-9-22

Build a Secure Cyberspace 2025 - “Let’s Secure as we Digitalise” Drone Security Seminar and Instant Messaging Apps Stickers Design Contest Award Ceremony

Organised by Digital Policy Office / Hong Kong Police Force (HKPF) / Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT)

2025-9-22

High Threat Security Alert (A25-09-15): Multiple Vulnerabilities in Microsoft Edge

Microsoft has released security updates to address multiple vulnerabilities in Microsoft Edge.

2025-9-22

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-22

Build a Secure Cyberspace 2025 seminar raises public awareness of drone security and cybersecurity (with photos)

The Digital Policy Office (DPO), the Cyber Security and Technology Crime Bureau (CSTCB) of the Hong Kong Police Force and the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) jointly organised the Build a Secure Cyberspace 2025 - "Let's Secure as we Digitalise" Drone Security Seminar and Instant Messaging Apps Stickers Design Contest Award Ceremony today (September 22). The event aims to raise public awareness of drone security while promoting cybersecurity, contributing to the building of a secure digital ecosystem in Hong Kong.

2025-9-22

創新科技及工業局局長出席立法會資訊科技及廣播委員會政策簡報會開場發言 (Chinese only)

以下是創新科技及工業局局長孫東教授今日（九月二十二日）出席立法會資訊科技及廣播事務委員會政策簡報會就《行政長官2025年施政報告》有關創新科技及工業局政策措施的開場發言。(Chinese only)

2025-9-22

Promote the Development of AI Deepen International Exchanges and Cooperation Privacy Commissioner Signs a Global Joint Statement on Privacy-protecting AI with 19 Privacy or Data Protection Authorities Worldwide

The Privacy Commissioner for Personal Data (Privacy Commissioner), Hong Kong, Ms Ada CHUNG Lai-ling, together with 19 commissioners or senior representatives of privacy or data protection authorities around the world, jointly signed a “Joint Statement on Building Trustworthy Data Governance Frameworks to Encourage Development of Innovative and Privacy-protecting AI” (AI Global Joint Statement) on 17 September on the sidelines of the 47th Global Privacy Assembly (GPA) annual conference (Conference) held in Seoul, Korea.

2025-9-8 to

2025-9-21

2025 Cybersecurity Awareness Week Prize Campaign

Organised by Digital Policy Office / Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT)

2025-9-20

創新科技及工業局局長在《行政長官2025年施政報告》有關推動創新科技發展措施記者會開場發言 (Chinese only) (with photos/videos)

以下是創新科技及工業局局長孫東教授今日（九月二十日）在《行政長官2025年施政報告》有關推動創新科技發展措施記者會的開場發言。(Chinese only)

2025-9-20

創新科技及工業局局長在《行政長官2025年施政報告》有關AI效能提升組、社會高齡化對策工作組、簡化食肆發牌制度、部門首長責任制記者會開場發言 (Chinese only) (with photos/videos)

以下是創新科技及工業局局長孫東教授今日（九月二十日）在《行政長官2025年施政報告》有關部門首長責任制、AI效能提升組、社會高齡化對策工作組、簡化食肆發牌制度記者會的開場發言。(Chinese only)

2025-9-19

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-19

2025 China Cybersecurity Week Hong Kong Sub-forum explores Hong Kong's cybersecurity trends (with photos)

The 2025 China Cybersecurity Week Hong Kong Sub-forum organised by the Digital Policy Office (DPO) and co-organised by the Cyber Security and Technology Crime Bureau of the Hong Kong Police Force, the Hong Kong Internet Registration Corporation Limited and the Hong Kong Cybersecurity Professionals Association concluded today (September 19).

2025-9-19

創新科技及工業局局長出席「2025國家網絡安全宣傳周----香港分論壇」致辭全文 (Chinese only) (with photos)

以下是創新科技及工業局局長孫東教授今日（九月十九日）在「2025國家網絡安全宣傳周——香港分論壇」的致辭全文。(Chinese only)

2025-9-19

Building National Cybersecurity – Acting Privacy Commissioner Attends 2025 China Cybersecurity Week Hong Kong and Macao Sub-forums

Acting Privacy Commissioner for Personal Data (Acting Privacy Commissioner), Ms Joyce LAI, attended the 2025 China Cybersecurity Week Macao Sub-forum (Macao Sub-forum) on 16 September as an officiating guest, and the 2025 China Cybersecurity Week Hong Kong Sub-forum (Hong Kong Sub-forum) on 19 September. At both events, she exchanged views with cybersecurity professionals from Hong Kong and Macao on topics related to cybersecurity and data security.

2025-9-18

High Threat Security Alert (A25-09-14): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-9-18

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-18

Promoting AI Safety – Acting Assistant Privacy Commissioner Speaks at the Ius Laboris APAC Conference

The Acting Assistant Privacy Commissioner for Personal Data (Legal) of the Office of the Privacy Commissioner for Personal Data (PCPD), Ms Fiona LAI, attended the Ius Laboris APAC Conference in Hong Kong on 17 September 2025 and spoke on the panel entitled “Establishing Effective AI Governance Frameworks and Deployment Strategies in the Workplace”.

2025-9-17

Security Alert (A25-09-13): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-73, MFSA2025-74 and MFSA2025-75) to address multiple vulnerabilities in Firefox.

2025-9-17

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-17

CE's speech in delivering "The Chief Executive's 2025 Policy Address" to LegCo (4)

Chapter IV Industry Development and Reform

2025-9-17

Hackers’ New Partner: Weaponized AI for Cyber Attacks! HKCERT Exposes Six Emerging AI-assisted Attacks

In recent years, artificial intelligence (AI) technology has advanced rapidly. Large language models (LLMs) and generative models have been widely applied in writing, reasoning, and generating images and videos. At the same time, the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) warns that hackers are also weaponising AI for various cyberattacks, making defence much more difficult. The latest analysis reveals six AI-assisted attack methods, urging businesses and the public to stay alert.

2025-9-16

High Threat Security Alert (A25-09-12): Multiple Vulnerabilities in Apple Products

Apple has released iOS 26, iPadOS 26, iOS 18.7, iPadOS 18.7, iOS 16.7.12, iPadOS 16.7.12, iOS 15.8.5, iPadOS 15.8.5, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26, Safari 26, tvOS 26, visionOS 26, watchOS 26 and Xcode 26 to fix the vulnerabilities in various Apple devices.

2025-9-16

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-16

Building National Cybersecurity – PCPD’s Representative Delivers Speech at 2025 China Cybersecurity Week Sub-Forum

Senior Legal Counsel of the Office of the Privacy Commissioner for Personal Data (PCPD), Ms Emily CHAN, attended the 2025 China Cybersecurity Week in Kunming, Yunnan on 15 and 16 September, and delivered a speech at the Personal Information Protection Sub-Forum (Sub-Forum).

2025-9-15

Government alerts public to fraudulent videos and articles purported to be interviews with government officials

A Government spokesman today (September 15) cautioned members of the public not to believe in videos and related articles circulating online, which purported to be interviews with officials of the Financial Secretary's Private Office and the Financial Services and the Treasury Bureau introducing the use of "e-HKD" for dividend distribution to shareholders.

2025-9-15

Hong Kong cybersecurity industry delegation attends 2025 China Cybersecurity Week (with photos)

The Commissioner for Digital Policy, Mr Tony Wong, and the Deputy Commissioner (Digital Infrastructure), Mr Daniel Cheung, today (September 15) led Hong Kong cybersecurity industry delegations to attend the 2025 China Cybersecurity Week main venue events in Kunming and the 2025 Guangdong Cybersecurity Week events in Zhuhai respectively. The delegations exchanged views with Mainland industry counterparts to jointly explore the challenges and opportunities of cybersecurity in the digital era.

2025-9-15

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-12

Promoting AI Security – Assistant Privacy Commissioner Speaks at the IAPP Hong Kong KnowledgeNet Chapter Event

The Assistant Privacy Commissioner for Personal Data (Compliance, Global Affairs and Research) of the Office of the Privacy Commissioner for Personal Data (PCPD), Ms Joanne WONG, attended the International Association of Privacy Professionals (IAPP) Hong Kong KnowledgeNet Chapter Event titled “AI Governance Approach for MNCs in Hong Kong” on 11 September 2025.

2025-9-12

Security Alert (A25-09-11): Multiple Vulnerabilities in Microsoft Edge

Microsoft has released security updates to address multiple vulnerabilities in Microsoft Edge.

2025-9-12

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-12

STDO receives report of loss of personal data of service users from Sub-district Care Team

The Sha Tin District Office (STDO) received a report of loss of personal data of service users from a Sub-district Care Team last night (September 11).

2025-9-12

Promoting AI Security – Assistant Privacy Commissioner Speaks at the IAPP Hong Kong KnowledgeNet Chapter Event

The Assistant Privacy Commissioner for Personal Data (Compliance, Global Affairs and Research) of the Office of the Privacy Commissioner for Personal Data (PCPD), Ms Joanne WONG, attended the International Association of Privacy Professionals (IAPP) Hong Kong KnowledgeNet Chapter Event titled “AI Governance Approach for MNCs in Hong Kong” on 11 September 2025.

2025-9-11

Security Alert (A25-09-10): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-9-11

Phishing Attack - Transport Department alerts public to fraudulent SMS messages and websites purported to be from Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (September 11) urged members of the public to heighten vigilance against fraudulent SMS messages purported to be issued by the Public Transport Fare Subsidy Scheme (PTFSS).

2025-9-11

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-11

DH clarifies online rumors

The Department of Health (DH) today (September 11) noted that false information is circulating online alleging that three Elderly Health Centres (EHCs) under the DH would distribute free travel-sized milk powder samples for joint health. A DH spokesman clarified that this information is completely untrue. The DH has reported the incident to the Police.

2025-9-10

Security Alert (A25-09-09): Multiple Vulnerabilities in Adobe Reader/Acrobat

Patches are released for Adobe Reader and Acrobat to address multiple vulnerabilities.

2025-9-10

Security Alert (A25-09-08): Multiple Vulnerabilities in Ivanti Products

Ivanti has released security advisories to address multiple vulnerabilities in Ivanti products.

2025-9-10

Security Alert (A25-09-07): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in several Google Chrome.

2025-9-10

High Threat Security Alert (A25-09-06): Multiple Vulnerabilities in Microsoft Products (September 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

2025-9-10

Phishing Attack - Hongkong Post alerts public to fraudulent Hongkong Post website

Hongkong Post today (September 10) appealed to members of the public to stay alert to a fraudulent Hongkong Post website address (https://maxibrant[.]com/HongKongPosthk19310529Tracking/) and beware of fraudulent SMS messages or emails purportedly to be sent by Hongkong Post which provided a hyperlink that leads to the fraudulent website above for requesting the recipient to provide personal information or payment for postage.

2025-9-10

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-10

LCQ14: Building a data trading ecosystem

Following is a question by the Hon Martin Liao and a written reply by the Secretary for Innovation, Technology and Industry, Professor Sun Dong, in the Legislative Council today (September 10).

2025-9-9

Cyber Security Exercise SWORDLIFTER held by Hong Kong Police Force in preparation for National Games (with photos)

The Cyber Security and Technology Crime Bureau (CSTCB) of the Hong Kong Police Force (HKPF) conducted the Cyber Security Seminar cum Tabletop Exercise, codenamed SWORDLIFTER, at the Police Headquarters today (September 9). The event aimed to enhance cyber resilience, incident reporting co-ordination and immediate response capabilities of relevant stakeholders in preparation for the 15th National Games (NG), the 12th National Games for Persons with Disabilities (NGD) and the 9th National Special Olympic Games (NSOG).

2025-9-9

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-9

Phishing Attack - Beware of fraudulent documents purported to be issued by HKMA

The Hong Kong Monetary Authority (HKMA) has received enquiries from members of the public regarding fraudsters who posed as HKMA staff to issue forged documents, claiming that an investment management company has been authorised to open and manage a dedicated account for an "artificial intelligence investment application", in an attempt to deceive members of the public into transferring funds to the account for investment purposes.

2025-9-8

Security Alert (A25-09-05): Multiple Vulnerabilities in Microsoft Edge

Microsoft has released security updates to address multiple vulnerabilities in Microsoft Edge.

2025-9-8

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-5

Cyberport Leading Enterprises Summit

Organised by Hong Kong Cyberport Management Company Limited

2025-9-5

Phishing Attack - DPO appeals to public to remain vigilant to fraudulent "iAM Smart" website

The Digital Policy Office (DPO) today (September 5) alerted members of the public to two fraudulent "iAM Smart" website addresses (iamsmart-services[.]icu, iamsmart-services[.]info), seeking to deceive members of the public into providing their personal information.

2025-9-5

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-5

Phishing Attack - 創新科技及工業局局長出席數碼港領航企業高峰論壇「創造商業價值：大模型和數字資產的商業變現與數字安全保障」致辭 (Chinese only) (with photos)

以下是創新科技及工業局局長孫東教授今日（九月五日）在數碼港領航企業高峰論壇「創造商業價值：大模型和數字資產的商業變現與數字安全保障」的致辭全文。(Chinese only)

2025-9-5

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (September 5) alerted members of the public to fraudulent website addresses purported to be from the Public Transport Fare Subsidy Scheme (PTFSS) (see the PTFSS website for details) and seek to deceive members of the public into providing their credit card account and personal information.

2025-9-4

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-4

Security Alert (A25-09-04): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-9-3

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-9-3

Security Alert (A25-09-03): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-9-3

High Threat Security Alert (A25-09-02): Multiple Vulnerabilities in Android

Google has released Android Security Bulletin September 2025 to fix multiple security vulnerabilities in Android operating system.

2025-9-2

Phishing Attack - The Treasury alerts public to fraudulent emails

The Treasury today (September 2) alerted members of the public to fraudulent emails purportedly issued by the Treasury.

2025-9-1

Phishing Attack - DPO appeals to public to remain vigilant to fraudulent "iAM Smart" website

The Digital Policy Office (DPO) today (September 1) alerted members of the public to a fraudulent "iAM Smart" website address (iamsmarts-service[.]info), seeking to deceive members of the public into providing their personal information.

2025-9-1

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from HKeToll

The Transport Department (TD) today (September 1) alerted members of the public to fraudulent website addresses that pretend to be the HKeToll (see the HKeToll website for details) and seek to deceive users into making payments and obtaining their credit card information.

2025-9-1

Security Alert (A25-09-01): Multiple Vulnerabilities in QNAP Product

QNAP has published security advisories to address multiple vulnerabilities in QNAP products.

2025-6-9 to

2025-8-31

BugHunting Campaign 2025

Organised by Office of the Privacy Commissioner for Personal Data / Cyber Security and Technology Crime Bureau (CSTCB) of the Hong Kong Police (HKP) / Cyberbay

2025-8-31

Tseung Kwan O Hospital staff accessing patient information without authorisation and leaking patients' information

The Tseung Kwan O Hospital (TKOH) announced a case of staff non-compliance and unlawfully accessing and leaking patients' information. Subsequent investigation conducted by the hospital revealed that there were unauthorised access to a patient's personal information (including address and phone number), and suspected that internal documents containing other patients' information were improperly leaked to a third party without authorisation.

2025-8-29

AiTLE x HKIRC x PwC-DarkLab x CSTCB :《香港學校網絡安全指南》發布會暨網絡安全研討會 (Chinese Only)

Organised by Association of I.T. Leaders in Education / Hong Kong Internet Registration Corporation Limited / PwC DarkLab / Cyber Security and Technology Crime Bureau (CSTCB) of the Hong Kong Police (HKP)

2025-8-29

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (August 29) alerted members of the public to fraudulent website addresses that pretend to be the Public Transport Fare Subsidy Scheme (PTFSS) (see the PTFSS website for details) and seek to deceive members of the public into providing their credit card account and personal information.

2025-8-29

A 67-year-old Male Arrested for Suspected Doxxing of a Former Employee Arising from Monetary Dispute

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese male aged 67 in the New Territories. The arrested person was suspected to have disclosed the personal data of a former employee without his consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-8-28

Security Alert (A25-08-25): Vulnerability in Microsoft Edge

Microsoft released a security update to address a vulnerability in Microsoft Edge.

2025-8-28

Security Alert (A25-08-24): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-8-28

Phishing Attack - Judiciary alerts public to phishing email

The Judiciary today (August 28) called on the public to stay vigilant against a phishing email sent from the email account "jeremypoonshiuchor107[@]gmail[.]com".

2025-8-28

Privacy Commissioner’s Office Organises Public Seminar on “How to Address New Privacy Challenges in the AI Era”

The Office of the Privacy Commissioner for Personal Data (PCPD) organised a public seminar on “How to Address New Privacy Challenges in the AI Era” on 27 August, attracting almost 600 participants.

2025-8-27

Public Seminar on “How to Address New Privacy Challenges in the AI Era”

Organised by Office of the Privacy Commissioner for Personal Data

2025-8-27

Commissioner for Digital Policy visits Hangzhou and Shanghai (with photos)

The Commissioner for Digital Policy, Mr Tony Wong, attended the opening ceremony of the 2025 Hong Kong Information Technology and Cybersecurity Special Training Course and events related to the Hong Kong/Shanghai Co-operation Open Data Challenge (HSODC) 2025 during his visit to Hangzhou and Shanghai from August 24 to 28.

2025-8-27

Security Alert (A25-08-23): Multiple Vulnerabilities in QNAP Products

QNAP has published security advisories to address multiple vulnerabilities in QNAP products.

2025-8-27

Security Alert (A25-08-22): Vulnerability in Google Chrome

Google released a security update to address a vulnerability in Google Chrome.

2025-8-27

High Threat Security Alert (A25-08-21): Multiple Vulnerabilities in Citrix Products

Citrix released security advisories to address multiple vulnerabilities in Citrix products.

2025-8-26

CYBER SECURITY EXPrO

Organised by Syber Couture Limited

2025-8-26

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-25

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-22

Security Alert (A25-08-20): Vulnerability in Microsoft Edge

Microsoft released a security update to address a vulnerability in Microsoft Edge.

2025-8-22

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (August 22) alerted members of the public to fraudulent website addresses that pretend to be associated with the Public Transport Fare Subsidy Scheme (PTFSS) (see the PTFSS website for details) and seek to deceive members of the public into providing their credit card account and personal information.

2025-8-21

Security Alert (A25-08-19): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-8-21

High Threat Security Alert (A25-08-18): Vulnerability in Apple Products

Apple has released iOS 18.6.2, iPadOS 17.7.10, iPadOS 18.6.2, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8 and macOS Ventura 13.7.8 to fix the vulnerability in various Apple devices.

2025-8-21

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-21

Privacy Commissioner’s Office Publishes Two Investigation Reports on the Data Breach Incidents of (1) Kwong’s Art Jewellery Trading Company Limited and My Jewelry Management Limited and (2) Adastria Asia Co., Limited

Upon completion of the investigations into the data breach incidents involving Kwong’s Art Jewellery Trading Company Limited (Kwong’s Art Jewellery) and My Jewelry Management Limited (My Jewelry), as well as Adastria Asia Co., Limited (Adastria), the Office of the Privacy Commissioner for Personal Data (PCPD) published the investigation reports today.

2025-8-20

Security Alert (A25-08-17): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-64, MFSA2025-65, MFSA2025-66 and MFSA2025-67) to address multiple vulnerabilities in Firefox.

2025-8-20

Security Alert (A25-08-16): Vulnerability in Google Chrome

Google released a security update to address a vulnerability in Google Chrome.

2025-8-20

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-19

Phishing Attack - WSD urges public to be alert to fraudulent SMS messages

The Water Supplies Department (WSD) today (August 19) alerted the public to fraudulent SMS messages purportedly issued by the department.

2025-8-18

High Threat Security Alert (A25-08-15): Vulnerability in Fortinet FortiWeb

Fortinet released security advisories to address a vulnerability in Fortinet FortiWeb.

2025-8-18

Security Alert (A25-08-14): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-8-18

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-18

Promoting AI Security — Privacy Commissioner Speaks at an Internal Training Session of the Legislative Council Secretariat

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, attended an internal training session on “AI Development Trends and Applications” of the Legislative Council Secretariat on 18 August 2025 and delivered a speech titled “How Public Organisations Can Protect Personal Data Privacy in Using AI”.

2025-5-6 to

2025-8-15

Cyber Security Staff Awareness Recognition Scheme

Organised by Hong Kong Internet Registration Corporation Limited / Information Systems Audit and Control Association

2025-8-15

Security Alert (A25-08-13): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-8-15

Security Alert (A25-08-12): Multiple Vulnerabilities in F5 Products

F5 has published security advisories to address multiple vulnerabilities in F5 products.

2025-8-15

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (August 15) alerted members of the public to fraudulent website addresses that pretend to be the Public Transport Fare Subsidy Scheme (PTFSS) (see the PTFSS website for details) and seek to deceive members of the public into providing their credit card account and personal information.

2025-8-15

Phishing Attack - Fraudulent websites related to Alipay Financial Services (HK) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Alipay Financial Services (HK) Limited relating to a fraudulent website. The relevant stored value facility (SVF) licensee has reported the case to the HKMA.

2025-8-14

Security Alert (A25-08-11): Vulnerability in Apache Tomcat

The Apache Software Foundation released security updates to address a vulnerability in the Apache Tomcat.

2025-8-14

High Threat Security Alert (A25-08-10): Vulnerability in FortiSIEM Products

Fortinet released security advisories to address the vulnerability in FortiSIEM.

2025-8-14

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-13

Security Alert (A25-08-09): Multiple Vulnerabilities in Ivanti Products

Ivanti has released security advisory to address multiple vulnerabilities in Ivanti products.

2025-8-13

Security Alert (A25-08-08): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-8-13

High Threat Security Alert (A25-08-07): Multiple Vulnerabilities in Microsoft Products (August 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

2025-8-13

REO and DPO host drill for Electronic Poll Register System (with photos)

The Registration and Electoral Office (REO) and the Digital Policy Office (DPO) hosted a drill on technical support for regular and contingency arrangements of the Electronic Poll Register (EPR) System today (August 13) for comprehensive preparation and detailed planning for the Election Committee Subsector (ECSS) By-elections to be held on September 7 and the Legislative Council General Election to be held on December 7.

2025-8-13

Phishing Attack - WSD urges public to be alert to fraudulent SMS messages

The Water Supplies Department (WSD) today (August 13) alerted the public to fraudulent SMS messages purportedly issued by the department.

2025-8-13

Privacy Commissioner’s Office Launches a Series of Anti-Fraud Promotional and Educational Activities as the New Academic Year Approaches to Enhance Tertiary Students’ Awareness of Fraud Prevention

With the approach of the new academic year, the Office of the Privacy Commissioner for Personal Data (PCPD) has launched a series of anti-fraud promotional and educational activities targeting tertiary students. The activities include producing an animated video and organising a school tour featuring anti-fraud educational talks and exhibitions, with a view to raising the awareness of preventing fraud and protecting personal data privacy among tertiary students.

2025-8-12

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-12

DPO completes developing IT systems for 15th National Games and fully supports events to operate safely and smoothly (with photos)

The Digital Policy Office (DPO) yesterday (August 11), on the occasion of 90 days before the opening of the 15th National Games (NG), reported to the Secretary for Innovation, Technology and Industry, Professor Sun Dong, on the preparatory work for the IT infrastructure of the Hong Kong competition region for the 15th NG, the 12th National Games for Persons with Disabilities and the 9th National Special Olympic Games. The DPO will fully support the secure and stable operation of the relevant information systems, ensuring the smooth operation of the Games with the result-oriented goal of achieving "zero cybersecurity risk and zero interruption to the operation of events".

2025-8-8

Security Alert (A25-08-06): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-8-8

Phishing Attack - Beware of fraudulent documents purported to be issued by HKMA

The Hong Kong Monetary Authority (HKMA) would like to alert members of the public to forged HKMA documents.

2025-8-8

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-8

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (August 8) alerted members of the public to fraudulent website addresses that pretend to be the Public Transport Fare Subsidy Scheme (PTFSS) (see the PTFSS website for details) and seek to deceive members of the public into providing their credit card account and personal information.

2025-8-8

Promoting Cyber Security — Assistant Privacy Commissioner Speaks at the “CUHK LAW – Tencent Research Institute Cyberlaw Forum”

The Assistant Privacy Commissioner for Personal Data (Compliance, Global Affairs and Research) of the Office of the Privacy Commissioner for Personal Data (PCPD), Ms Joanne WONG, attended the “CUHK LAW – Tencent Research Institute Cyberlaw Forum” (Forum) on 6 August 2025 and delivered a keynote speech titled “Exploring the Legal Liabilities and Compliance Requirements of Cyber Activities from the Perspective of the Personal Data (Privacy) Ordinance”.

2025-8-7

High Threat Security Alert (A25-08-05): Security Threat affecting SonicWall Gen 7 Firewalls

SonicWall released a security advisory to address the recent threat activity affecting SonicWall Gen 7 Firewalls.

2025-8-7

Security Alert (A25-08-04): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-8-7

Security Alert (A25-08-03): Multiple Vulnerabilities in Android

Google has released Android Security Bulletin August 2025 to fix multiple security vulnerabilities in Android operating system.

2025-8-7

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-7

A 57-year-old Male Arrested for Suspected Doxxing of a Taxi Driver Arising from Others’ Monetary Disputes

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese male aged 57 in the New Territories. The arrested person was suspected to have disclosed the personal data of the data subject without his consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-8-6

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-5

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-4

High Threat Security Alert (A25-08-02): Multiple Vulnerabilities in SonicWall Products

SonicWall released security advisories to address multiple vulnerabilities in SonicWall systems.

2025-8-4

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-8-4

SITI attends APEC Digital and AI Ministerial Meeting in Incheon, Korea (with photos)

The Secretary for Innovation, Technology and Industry, Professor Sun Dong, attended the Asia-Pacific Economic Cooperation (APEC) Digital and AI Ministerial Meeting (DMM) in Incheon, Korea, today (August 4). Under this year's theme "Digital and AI Transformation toward Prosperity and Sustainable Growth for All", Professor Sun called for international collaboration to advocate for the safe and responsible adoption of digital and AI technologies, and foster innovation across the region.

2025-8-4

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be for Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (August 4) alerted members of the public to fraudulent website addresses (https[:]//ptfss[.]top/hk, https[:]//ptfss[.]cc/hk) that pretend to be for the Public Transport Fare Subsidy Scheme (PTFSS) and seek to deceive members of the public into providing their personal information including their name, Hong Kong identity card number, mobile phone number and credit card account.

2025-8-4

Privacy Commissioner’s Office Offers 10 Tips to Users to Ensure Safe Use of AI Chatbots

2025-8-4

Promoting AI Security – Privacy Commissioner Delivers Speech at Hong Kong News-Expo Seminar

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, delivered a speech on 2 August at the seminar entitled “AI Safety Matters: Addressing New Privacy Challenges in the AI Era” organised by the Hong Kong News-Expo. The seminar attracted approximately 90 participants, both on-site and online.

2025-8-1

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from HKeToll

The Transport Department (TD) today (August 1) alerted members of the public to fraudulent website addresses that pretend to be the HKeToll (see the HKeToll website for details) and seek to deceive users into making payments and obtaining their credit card information.

2025-8-1

Security Alert (A25-08-01): Vulnerability in Microsoft Edge

Microsoft released a security update to address a vulnerability in Microsoft Edge.

2025-7-31

Enhancing AI Security and Data Security – Office of the Privacy Commissioner for Personal Data, Hong Kong, and Personal Data Protection Bureau, Macao, Together with Seven Privacy Protection Authorities in the Asia-Pacific Region, Release “Guide to Getting Started with Anonymisation”

The Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD) and the Personal Data Protection Bureau, Macao (PDPB), together with seven privacy or data protection authorities from Australia (Victoria), Canada (Federal and British Columbia), Japan, Korea, New Zealand and Singapore, unanimously approved the release of the “Guide to Getting Started with Anonymisation” (Anonymisation Guide) at the 63rd Asia Pacific Privacy Authorities (APPA) Forum held recently.

2025-7-31

Phishing Attack - Transport Department alerts public to fraudulent website purported to be from Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (July 31) alerted members of the public to a fraudulent website address (https[:]//ptfss[.]top/hk) that pretends to be the Public Transport Fare Subsidy Scheme (PTFSS) and seeks to deceive members of the public into providing their personal information including name, mobile phone number and credit card account.

2025-7-31

Digital Policy Office introduces initiatives to promote cybersecurity in second half 2025 (with photos)

The Digital Policy Office (DPO) held the Cybersecurity Initiatives Briefing for the Second Half of 2025 today (July 31) to introduce the key initiatives in the second half of the year, as well as to review the work on cybersecurity in the first half of the year.

2025-7-31

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA.

2025-7-30

Security Alert (A25-07-23): Vulnerability in Google Chrome

Google released a security update to address a vulnerability in Google Chrome.

2025-7-30

High Threat Security Alert (A25-07-22): Multiple Vulnerabilities in Apple Products

Apple has released iOS 18.6, iPadOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7 and macOS Ventura 13.7.7 to fix the multiple vulnerabilities in various Apple devices.

2025-7-29

APCERT Cyber Drill 2025 “When Ransomware Meets Generative AI”

The Asia Pacific Computer Emergency Response Team (APCERT) today has successfully completed its annual drill to test the response capabilities of leading Computer Security Incident Response Teams (CSIRT) among Asia Pacific economies.

2025-7-29

Digital Policy Office convenes special meeting with Internet infrastructure and cybersecurity industry (with photo)

The Digital Policy Office (DPO) is highly concerned about recent cybersecurity incidents affecting public and private organisations in Hong Kong, and held a special meeting with the Internet Infrastructure Liaison Group today (July 29) to discuss strategies for addressing increasingly severe cybersecurity challenges.

2025-7-28

Security Alert (A25-07-21): Multiple Vulnerabilities in SonicWall SMA100 Series Products

SonicWall released a security advisory to address multiple vulnerabilities in SonicWall SMA100 Series products.

2025-7-28

Security Alert (A25-07-20): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-7-25

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-25

The Hidden Dangers of Third-Party Risk: Lessons from the Recent Data Breaches

As organizations increasingly rely on external vendors, the unseen risks lurking in third-party relationships have become a prime target for cybercriminals. Recent breaches at major firms like Marks & Spencer and Qantas reveal just how devastating these risks can be.

2025-7-24

Security Alert (A25-07-19): Vulnerability in Apache HTTP Server

The Apache Software Foundation released a security update to address a vulnerability in the HTTP Server and its modules.

2025-7-24

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-24

Phishing Attack - Inland Revenue Department alerts public to fraudulent emails

The Inland Revenue Department (IRD) today (July 24) alerted members of the public to fraudulent emails purportedly issued by the IRD, which seek to obtain the recipients' personal particulars and credit card information by inviting them to claim tax refunds via a hyperlink provided.

2025-7-24

Hongkong Post updates on the information security incident

Hongkong Post issued press releases on July 21 and July 22 respectively concerning the information security incident involving the cyberattacks on the address book function of EC-Ship system. Hongkong Post sent emails or SMS messages to all affected account holders on July 22 reminding them to remain vigilant, and to immediately inform all persons of their address books that their information was accessed and retrieved, and remind the concerned persons to be vigilant.

2025-7-23

Security Alert (A25-07-18): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-56, MFSA2025-57, MFSA2025-58 and MFSA2025-59) to address multiple vulnerabilities in Firefox browser.

2025-7-23

Security Alert (A25-07-17): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-7-23

Phishing Attack - WSD urges public to be alert to fraudulent SMS message

The Water Supplies Department (WSD) today (July 23) alerted the public to a fraudulent SMS message purportedly issued by the department.

2025-7-23

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-22

High Threat Security Alert (A25-07-16): Multiple Vulnerabilities in Microsoft SharePoint Server

Microsoft released a security update to address vulnerabilities in Microsoft SharePoint Server.

2025-7-22

Hongkong Post updates on the information security incident

Hongkong Post announced today (July 22) on the investigation result so far of the information security incident identified on July 21. According to the investigation, the unauthorised party had cyberattacked the system by making countless attempts at the mid-night of July 20 and the following day to access and retrieve information through the address book function of EC-Ship system.

2025-7-22

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-22

A 32-year-old Male Arrested for Suspected Doxxing of Estranged Wife and Baby Girl Arising from Family Dispute

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese male aged 32 in Kowloon. The arrested person was suspected to have disclosed the personal data of his estranged wife and her daughter without the wife’s consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-7-21

Hongkong Post reports information security incident

Hongkong Post announced today (July 21) that an information security incident involving its EC-Ship account holders was identified today. The incident involved a robotic access to information of the address books of account holders of EC-Ship.

2025-7-21

Phishing Attack - TLB alerts public to fraudulent website

The Transport and Logistics Bureau (TLB) today (July 21) alerts members of the public to a fraudulent website (https://bhsb588[.]online/) that pretends to be the website of the TLB.

2025-7-21

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-18

Members of Hong Kong Customs Computer Forensic Laboratory win championship at 2nd International Digital Forensics Challenge (with photos)

Two members from the Hong Kong Customs Computer Forensic Laboratory yesterday (July 17) won championship in the "2nd International Digital Forensics Challenge" which attracted 22 expert teams from 15 regions worldwide. The competition aimed to strengthen professional collaboration and further enhance global digital forensics technology standards.

2025-7-17

Security Alert (A25-07-15): Multiple Vulnerabilities in Oracle Java and Oracle Products (July 2025)

Oracle has released the Critical Patch Update (CPU) Advisory with collections of patches for multiple security vulnerabilities found in Java SE and various Oracle products.

2025-7-17

Security Alert (A25-07-14): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-7-17

High Threat Security Alert (A25-07-13): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-7-16

High Threat Security Alert (A25-07-12): Multiple Vulnerabilities in VMware Products

VMware has published a security advisory to address multiple vulnerabilities in VMware products.

2025-7-16

High Threat Security Alert (A25-07-11): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-7-16

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-15

Remarks by CE at media session before ExCo (with video)

Following are the remarks by the Chief Executive, Mr John Lee, at a media session before the Executive Council meeting today (July 15).

2025-7-14

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-14

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from HKeToll

The Transport Department (TD) today (July 14) alerted members of the public to fraudulent website addresses that pretend to be the HKeToll (see the HKeToll website for details) and seek to deceive users into making payments and obtaining their credit card information.

2025-7-11

Security Alert (A25-07-10): Multiple Vulnerabilities in Apache HTTP Server

The Apache Software Foundation released a security update to address multiple vulnerabilities in the HTTP Server and its modules.

2025-7-11

Security Alert (A25-07-09): Multiple Vulnerabilities in Apache Tomcat

The Apache Software Foundation released security updates to address multiple vulnerabilities in the Apache Tomcat.

2025-7-11

High Threat Security Alert (A25-07-08): Multiple Vulnerabilities in Palo Alto Products

Palo Alto has published a security advisory to address the vulnerabilities in PAN-OS.

2025-7-11

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-10

Security Alert (A25-07-07): Multiple Vulnerabilities in Juniper Networks Products

Juniper Networks has published security advisories to address multiple vulnerabilities in Apstra, CTPView, Junos OS, Junos OS Evolved and Security Director.

2025-7-10

Security Alert (A25-07-06): Multiple Vulnerabilities in Fortinet Products

Fortinet has published security advisories to address multiple vulnerabilities in Fortinet systems.

2025-7-10

Digital Policy Office wins Outstanding Gold Award in Privacy-Friendly Awards 2025 (with photo)

The Digital Policy Office (DPO) has won the Outstanding Gold Award in the Privacy-Friendly Awards 2025 organised by the Office of the Privacy Commissioner for Personal Data, Hong Kong. This prestigious recognition fully affirms the DPO's outstanding achievements in personal data privacy protection and safeguarding data security.

2025-7-10

Promoting AI Security – Privacy Commissioner Publishes an Article titled “Strengthening AI Governance” in The Bulletin

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, published an article titled “Strengthening AI Governance” in The Bulletin, the magazine of the Hong Kong General Chamber of Commerce.

2025-7-9

Security Alert (A25-07-05): Multiple Vulnerabilities in Microsoft Products (July 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

2025-7-9

立法會：保安局局長就「研究訂立網絡安全法，建構完善的反網絡詐騙體系」議員議案總結發言 (Chinese only)

以下是保安局局長鄧炳強今日（七月九日）在立法會會議就「研究訂立網絡安全法，建構完善的反網絡詐騙體系」議員議案的總結發言。(Chinese only)

2025-7-9

Phishing Attack - HKMA issues alert regarding specific website

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong that Chong Sing Heritage Trust Bank as referred to on the website (https[:]//cshtb[.]com) does not have the authorization of the Monetary Authority (MA) under the Banking Ordinance (the Ordinance) to carry on banking business, or the business of taking deposits, in Hong Kong; and Chong Sing Heritage Trust Bank does not have the approval of the MA to establish a local representative office in Hong Kong under the Ordinance.

2025-7-9

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-9

Phishing Attack - 立法會：保安局局長就「研究訂立網絡安全法，建構完善的反網絡詐騙體系」議員議案開場發言 (Chinese only)

以下是保安局局長鄧炳強今日（七月九日）在立法會會議就「研究訂立網絡安全法，建構完善的反網絡詐騙體系」議員議案的總結發言。(Chinese only)

2025-7-9

Anti-Scam Consumer Protection Charter 3.0 (with photos)

The Hong Kong Monetary Authority (HKMA), the Securities and Futures Commission (SFC), the Insurance Authority (IA) and the Mandatory Provident Fund Schemes Authority (MPFA) today (July 9) announced the launch of the Anti-Scam Consumer Protection Charter 3.0 (the Charter 3.0). This joint effort is fully supported by the Consumer Council, the Hong Kong Association of Banks, the Hong Kong Police Force, and the Office of the Communications Authority.

2025-7-9

LCQ17: Combating online investment scams

Following is a question by Professor the Hon Priscilla Leung and a written reply by the Secretary for Financial Services and the Treasury, Mr Christopher Hui, in the Legislative Council today (July 9).

2025-7-8

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-8

Promoting Anti-fraud Messages – Privacy Commissioner Attends the First Anniversary Ceremony of the Anti-Deception Alliance (Education)

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, attended the first anniversary ceremony of the Anti-Deception Alliance (Education) on 5 July and spoke as a panellist at the panel discussion.

2025-7-7

Phishing Attack - Hongkong Post alerts public to fraudulent emails purportedly from "Hong Kong Post"

Hongkong Post appealed to members of the public to stay alert to fraudulent emails purportedly to be sent by Hongkong Post.

2025-7-7

Security Alert (A25-07-04): Multiple Vulnerabilities in Apache Tomcat

The Apache Software Foundation released security updates to address multiple vulnerabilities in the Apache Tomcat.

2025-7-7

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-7

Privacy Commissioner’s Office Intervenes in Eight Personal Data Security Incidents and Advocates Strengthening the Protection of Personal Data Privacy on All Fronts

The Office of the Privacy Commissioner for Personal Data (PCPD) earlier intervened in eight incidents relating to the disclosure and security of personal data involving organisations in various sectors. Owing to the deficiencies of the organisations in different aspects which resulted in the improper disclosure or unauthorised or accidental access, processing or use of personal data, the organisations in question were found to have contravened the relevant requirements of the Personal Data (Privacy) Ordinance (PDPO).

2025-7-5

OFNAA commends primary and secondary students for assisting in promoting healthy Internet use through creative works (with photos)

The Office for Film, Newspaper and Article Administration (OFNAA) held a prize presentation ceremony today (July 5) for the "Healthy Student Video Contest 2025", the "'Control of Obscene and Indecent Articles Ordinance' Slogan and Colouring Competition 2024-25" and the "Healthy Mobile App Sticker Design Competition" in commendation of the winning students and teams for assisting in promoting the message of staying away from obscene and indecent articles online through creative works.

2025-7-3

Security Alert (A25-07-03): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-7-3

High Threat Security Alert (A25-07-02): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-7-3

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-7-2

High Threat Security Alert (A25-07-01): Vulnerability in Google Chrome

Google released a security update to address a vulnerability in Google Chrome.

2025-7-2

立法會：政制及內地事務局局長就「制訂個人資料保障制度框架，應對人工智能時代挑戰」議員議案開場發言 (Chinese only)

以下是政制及內地事務局局長曾國衞今日（七月二日）在立法會會議上就江玉歡議員動議的「制訂個人資料保障制度框架，應對人工智能時代挑戰」議案的開場發言。 (Chinese only)

2025-6-30

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-30

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from HKeToll

The Transport Department (TD) today (June 30) alerted members of the public to fraudulent website addresses that pretend to be the HKeToll (see the HKeToll website for details) and seek to deceive users into making payments and obtaining their credit card information.

2025-6-30

A 36-year-old Female Arrested for Suspected Doxxing of a Couple Arising from Monetary Disputes

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese female aged 36 in the New Territories. The arrested person was suspected to have disclosed the personal data of a couple without their consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-6-27

Security Alert (A25-06-20): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-6-27

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-27

Protection of Critical Infrastructures (Computer Systems) Ordinance to come into effect on January 1, 2026

The Government today (June 27) published the Protection of Critical Infrastructures (Computer Systems) Ordinance (Commencement) Notice in the Gazette, appointing January 1, 2026, as the date on which the Protection of Critical Infrastructures (Computer Systems) Ordinance (Cap. 653) will come into operation.

2025-6-26

HKCNSA Symposium 2025

Organised by Hong Kong China Network Security Association

2025-6-26

Speech by Mr Daniel Cheung, JP, Deputy Commissioner (Digital Infrastructure), at the “Hong Kong China Network Security Association Symposium 2025” (with photos)

Mr Daniel Cheung, Deputy Commissioner (Digital Infrastructure), delivered a speech at the “Hong Kong China Network Security Association Symposium 2025”.

2025-6-26

Security Alert (A25-06-19): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-6-25

Cybersecurity Service Provider Connect Programme - Recruitment Briefing Webinar for Cybersecurity Service Providers

Organised by Digital Policy Office / Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT)

2025-6-25

Security Alert (A25-06-18): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-6-25

Security Alert (A25-06-17): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-51, MFSA2025-52, and MFSA2025-53) to address multiple vulnerabilities in Firefox browser.

2025-6-25

Cybersecurity Service Providers Connect Programme briefing webinar for service providers held today

The Digital Policy Office (DPO) worked with the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) to launch the Cybersecurity Service Providers Connect Programme to support local enterprises in enhancing their cybersecurity.

2025-6-24

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-23

Speech by Ms Candy Chan, Assistant Commissioner (Project Governance and Cybersecurity), at the “PolyU x NuttyShell Cybersecurity CTF 2025 Prize Presentation Ceremony” (with photos)

Ms Candy Chan, Assistant Commissioner (Project Governance and Cybersecurity), delivered a speech at “PolyU x NuttyShell Cybersecurity CTF 2025 Prize Presentation Ceremony”.

2025-6-23

Security Alert (A25-06-16): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-6-23

Home Affairs Department issues statement on impersonation incident

The Home Affairs Department (HAD) today (June 23) noted an unidentified individual impersonating "Tai Po District Officer" posting a statement under the name of the "Tai Po District Care Teams Alliance" in a Facebook group named "Tai Po".

2025-6-22

16 Billion Account Passwords Leaked Worldwide – HKCERT Urges Users to Review Account Security and Stay Vigilant

The Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) has issued an alert regarding a large-scale data leak recently reported internationally. More than 16 billion sets of account password data have been made public online, covering many commonly used online service platforms such as Facebook, Google, Apple, GitHub, Telegram, and other mainstream services. According to available information, the data did not originate from recent large-scale intrusions, but rather from databases compiled from account passwords previously stolen by infostealer malware.

2025-6-21

PISA Jam 2025

Organised by Professional Information Security Association / ISC2 Hong Kong Chapter

2025-6-20

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-20

Enhancing Cyber Security – Privacy Commissioner Publishes an Article on Hong Kong Lawyer

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, published an article titled “Staying Ahead of Cyber Threats in the Digital Age” on Hong Kong Lawyer.

2025-6-19

Security Alert (A25-06-15): Vulnerability in Cisco Products

Cisco released security advisory to address the vulnerability in Cisco devices and software.

2025-6-19

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-19

Promoting AI Security – Privacy Commissioner Speaks at Seminar on Media and Information Literacy

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, spoke at the “Media and Information Literacy (MIL) Series: Seminar on MIL for Smart Cities” jointly organised by the Education Bureau and Journalism Education Foundation on 18 June 2025.

2025-6-18

Security Alert (A25-06-14): Multiple Vulnerabilities in Veeam Backup and Replication Products

Veeam has published security advisory to address multiple vulnerabilities in Veeam Backup and Replication products.

2025-6-18

Security Alert (A25-06-13): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-6-18

Security Alert (A25-06-12): Multiple Vulnerabilities in Apache Tomcat

The Apache Software Foundation released security updates to address multiple vulnerabilities in the Apache Tomcat.

2025-6-18

Phishing Attack - HKMC alerts public of fraudulent website

The Hong Kong Mortgage Corporation Limited (HKMC) has recently received public inquiries about a fraudulent website at https://www.noblewincapitallimited[.]com which largely replicates the official website of the HKMC.

2025-6-18

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-17

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-16

Security Alert (A25-06-11): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge

2025-6-16

Phishing Attack - CEDB alerts public to deceptive content purported to be interviews with SCED

The Commerce and Economic Development Bureau (CEDB) today (June 16) alerted members of the public to be on heightened vigilance against online deceptive advertisements purported to be interviews with the Secretary for Commerce and Economic Development, and urged them not to visit any suspicious transaction platforms via those websites or provide personal information.

2025-6-16

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-16

HKCERT Annual Report 2024

Please refer to the link.

2025-6-13

PCPD + HKPC Data Security Training Series for SMEs - Seminar on “Understanding Data Security and Privacy Risks Related to AI for SMEs”

Organised by Office of the Privacy Commissioner for Personal Data / Hong Kong Productivity Council

2025-6-13

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from HKeToll

The Transport Department (TD) today (June 13) alerted members of the public to fraudulent website addresses that pretend to be the HKeToll (see the HKeToll website for details) and seek to deceive users into making payments and obtaining their credit card information.

2025-6-13

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-12

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-11

Security Alert (A25-06-10): Multiple Vulnerabilities in Fortinet Products

Fortinet released security advisories to address multiple vulnerabilities in Fortinet systems.

2025-6-11

Security Alert (A25-06-09): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-6-11

Security Alert (A25-06-08): Multiple Vulnerabilities in Firefox

Mozilla has published the advisory (MFSA2025-47) to address multiple vulnerabilities in Firefox browser.

2025-6-11

Security Alert (A25-06-07): Multiple Vulnerabilities in Adobe Reader/Acrobat

Patches are released for Adobe Reader and Acrobat to address multiple vulnerabilities.

2025-6-11

High Threat Security Alert (A25-06-06): Multiple Vulnerabilities in Microsoft Products (June 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

2025-6-11

Phishing Attack - Government urges public to be wary of fraudulent advertisements on Voluntary Health Insurance Scheme

The Voluntary Health Insurance Scheme (VHIS) Office of the Health Bureau today (June 11) reminds the public to stay vigilant against fraudulent VHIS advertisements to safeguard their personal interests.

2025-6-11

LCQ17: Combat fraudulent calls and SMS messages

Following is a question by the Hon Kingsley Wong and a written reply by the Secretary for Security, Mr Tang Ping-keung, in the Legislative Council today (June 11).

2025-6-11

A Debt Collection Agency Convicted of Direct Marketing Offences Privacy Commissioner Welcomes the Court’s Ruling

The West Kowloon Magistrates’ Court today convicted Credit Base (HK) Limited (the Company) of two charges of direct marketing offences under the Personal Data (Privacy) Ordinance (PDPO).

2025-6-10

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-9

Security Alert (A25-06-05): Multiple Vulnerabilities in QNAP Products

QNAP has published security advisories to address multiple vulnerabilities in QNAP products.

2025-6-9

Phishing Attack - Inland Revenue Department alerts public to fraudulent SMS messages

The Inland Revenue Department (IRD) today (June 9) alerted members of the public to fraudulent SMS messages purportedly issued by the IRD, which invite recipients to claim profits tax subsidy via a hyperlink provided.

2025-6-9

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-9

BugHunting Campaign 2025 opens for applications (with photo)

Jointly organised by the Hong Kong Police Force, the Office of the Privacy Commissioner for Personal Data, and Cyberbay, a local crowdsourced cybersecurity company, the BugHunting Campaign 2025 is officially open for registration for small and medium-sized enterprises (SMEs) starting today (June 9).

2025-6-9

“AI Security Matters for All” Privacy Commissioner’s Office Launches a Series of Promotional and Educational Activities to Promote AI Security in Privacy Awareness Week 2025

To enhance the awareness of the public and organisations to artificial intelligence (AI) security, the PCPD will launch a series of promotional and educational activities under the theme of “AI Security Matters for All”. These activities include the running of thematic trams for roving promotion, a newly launched “AI Security” thematic website, and a series of thematic seminars, all aimed at reminding all sectors of the society to safeguard personal data privacy when using AI.

2025-6-9

Promoting AI Security — Privacy Commissioner Publishes “Hong Kong Letter”

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, published a “Hong Kong Letter” on RTHK Radio 1 on 7 June 2025 to elaborate on the importance of organisations formulating internal policies or guidelines on artificial intelligence (AI).

2025-6-8

HKPF holds "The Little Grape's 5th Anti-Scam Birthday Party" to promote scam prevention messages (with photos)

The Hong Kong Police Force held "The Little Grape's 5th Anti-Scam Birthday Party" today (June 8) at Harcourt Garden in Admiralty to celebrate the 5th anniversary of the anti-scam mascot, "The Little Grape". Through interactive games and fun challenges, the event aimed to boost public awareness of scam prevention.

2025-6-7

Embracing the e+ Internet Generation Parent Seminar (5): Unlocking e-Book Treasures × Navigating Online Friendships with Caution

Organised by Hong Kong Education City Limited / Education Bureau / Committee on Home-School Co-operation

2025-6-6

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-5

Security Alert (A25-06-04): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-6-5

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-5

Phishing Attack - Beware of counterfeit mobile apps purporting to be made by Guangdong-Hong Kong-Macao Greater Bay Area Development Office

The Guangdong-Hong Kong-Macao Greater Bay Area Development Office of the Constitutional and Mainland Affairs Bureau today (June 5) again appealed to members of the public for heightened vigilance against counterfeit mobile apps purporting to be made by the Office.

2025-6-4

High Threat Security Alert (A25-06-03): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-6-4

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-3

Security Alert (A25-06-02): Multiple Vulnerabilities in Android

Google has released Android Security Bulletin June 2025 to fix multiple security vulnerabilities in Android operating system

2025-6-3

High Threat Security Alert (A25-06-01): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-6-3

Phishing Attack - Scam alert related to banks

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press releases issued by the banks listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which have been reported to the HKMA.

2025-6-3

A 23-year-old Female Arrested for Suspected Doxxing of Ex-boyfriend Arising from Relationship Entanglements

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese female aged 23 in the New Territories. The arrested person was suspected to have disclosed the personal data of her ex-boyfriend without his consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-6-2

Promoting AI Security – Privacy Commissioner Speaks at the Hong Kong AI Governance Conference

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, attended the Hong Kong AI Governance Conference themed “Shaping the Future of Responsible GenAI in Hong Kong” on 30 May 2025 and delivered a keynote speech titled “New Horizons of Privacy Protection in the Era of GenAI”.

2025-5-30

HKCS x ISACA Seminar: Beyond Compliance – Opportunities ahead with the new Critical Infrastructure Protection Ordinance

Organised by Hong Kong Computer Society / Information Systems Audit and Control Association, China Hong Kong Chapter

2025-5-30

Security Alert (A25-05-21): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-5-30

Security Alert (A25-05-20): Vulnerability in Apache Tomcat

The Apache Software Foundation released security updates to address the vulnerability in the Apache Tomcat.

2025-5-30

HKMA warns public of fraudulent social media accounts impersonating HKMA Chief Executive

The Hong Kong Monetary Authority (HKMA) today (May 30) urged members of the public to be vigilant against fraudulent social media accounts impersonating the Chief Executive of the HKMA, Mr Eddie Yue.

2025-5-29

Hong Kong Security Watch Report (Q1 2025)

The Hong Kong Security Watch Report aims to raise public awareness of the problem of compromised systems in Hong Kong, enabling them to make better decision in information security. The data in this quarterly report focuses on the activities of compromised systems in Hong Kong which suﬀer from, or have participated in various types of cyber-attacks, including web defacement, phishing and botnets. “Computers in Hong Kong” refer to those whose network geolocation is Hong Kong, or the top-level domain of their host name is “.hk”. Also, this report will review major security incidents and explore hot security topics with easy-to-adopt security advice with an aim to improve public’s information security posture and enhance their security resilience capabilities.

2025-5-29

HKMA and HKUST sign MoU to advance cybersecurity innovation for Hong Kong's financial sector (with photo)

The Hong Kong Monetary Authority (HKMA) and the School of Business and Management of the Hong Kong University of Science and Technology (HKUST Business School) today (May 29) announced the signing of a Memorandum of Understanding (MoU) to strengthen collaboration in applied cybersecurity research tailored to the needs of Hong Kong's financial sector.

2025-5-28

Security Alert (A25-05-19): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-5-28

Security Alert (A25-05-18): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-42, MFSA2025-43, and MFSA2025-44) to address multiple vulnerabilities in Firefox browser

2025-5-28

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-28

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-28

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-28

Phishing Attack - Fraudulent website and internet banking login screen related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-27

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-27

Phishing Attack - Fraudulent social media account related to Bank of Singapore Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Singapore Limited relating to a fraudulent social media account, which has been reported to the HKMA.

2025-5-27

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-27

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-26

HKPF and DPO jointly organise 9th Inter-departmental Cyber Security Drill to enhance ability of government departments to counter cyber attacks (with photos)

The Cyber Security and Technology Crime Bureau of the Hong Kong Police Force (HKPF) and the Government Computer Emergency Response Team Hong Kong (GovCERT.HK) under the Digital Policy Office (DPO) jointly held the 9th Inter-departmental Cyber Security Drill today (May 26) to further enhance the overall defensive capabilities of government departments against cyber attacks.

2025-5-26

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-26

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-26

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-26

Phishing Attack - Fraudulent website and internet banking login screen related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-26

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-26

Phishing Attack - Fraudulent websites and internet banking login screens related to Standard Chartered Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Standard Chartered Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-23

HKCNSA 2025 HONG KONG CIO LUNCHEON 2.0

Organised by Hong Kong China Network Security Association

2025-5-23

Build a Secure Cyberspace 2025 - “Let's Secure as we Digitalise” Webinar

Organised by Digital Policy Office / Hong Kong Police Force (HKPF) / Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT)

2025-5-23

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from HKeToll

The Transport Department (TD) today (May 23) alerted members of the public to fraudulent website addresses that pretend to be the HKeToll (see the HKeToll website for details) and seek to deceive users into making payments and obtaining their credit card information.

2025-5-22

Presentation by Mr Brian Sun, Assistant Commissioner (Data Applications), at the “12th CIO Innovation Forum Hong Kong 2025” (with photos)

Mr Brian Sun, Assistant Commissioner (Data Applications), delivered a presentation at the “12th CIO Innovation Forum Hong Kong 2025”.

2025-5-22

Security Alert (A25-05-17): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-5-22

Security Alert (A25-05-16): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-5-22

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-22

Promoting AI Security – Privacy Commissioner Publishes an Article entitled “Companies must take the initiative on safe AI practices” and Interviewed by Media

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, published an article entitled “Companies must take the initiative on safe AI practices”.

2025-5-20

Phishing Attack - Fraudulent website and internet banking login screen related to Fubon Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Fubon Bank (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-20

Phishing Attack - Fraudulent websites and internet banking login screens related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-20

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-20

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-20

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-20

A 46-year-old Female Arrested for Suspected Doxxing Arising from Monetary Disputes

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese female aged 46 in Kowloon.

2025-5-19

Security Alert (A25-05-15): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-36, MFSA2025-37 and MFSA2025-38) to address multiple vulnerabilities in Firefox browser.

2025-5-19

財經事務及庫務局副局長在立法會Web3及虛擬資產發展事宜小組委員會會議就對虛擬資產投資者及使用者的保障開場發言全文 (Chinese only)

以下是財經事務及庫務局副局長陳浩濂今日（五月十九日）在立法會Web3及虛擬資產發展事宜小組委員會會議就對虛擬資產投資者及使用者的保障的開場發言全文。 (Chinese only)

2025-5-19

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-19

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-19

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-19

Privacy Commissioner’s Office Urges Caution against Fake Neighbour Scams

The Office of the Privacy Commissioner for Personal Data (PCPD) has noted the emergence of a new type of fraudulent trick. Residents in different housing estates across Hong Kong have received SMS messages purporting to be from their neighbours, complaining about issues such as water seepage or noise, and asking the residents to contact them via instant messaging applications. Subsequent verifications by estate management offices confirmed these messages to be fraudulent.

2025-3-19 to

2025-5-18

Build a Secure Cyberspace 2025 - “Let's Secure as we Digitalise” Instant Messaging Apps Stickers Design Contest

Organised by Digital Policy Office / Hong Kong Police Force (HKPF) / Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT)

2025-5-17

香港人工智能發展大棋盤 (Chinese Only)

人工智能不只是引領新一輪科技革命和產業變革的戰略性技術，更將成為國力的重要體現。 (Chinese Only)

2025-5-16

Cybersecurity & Diverse Innovation Symposium 2025

Organised by Digital Policy Office / Cyber Security and Technology Crime Bureau (CSTCB) of the Hong Kong Police (HKP)

2025-5-16

Security Alert (A25-05-14): Vulnerability in SonicWall SMA1000 Series Products

SonicWall released a security advisory to address vulnerability in SonicWall SMA1000 Series products.

2025-5-16

High Threat Security Alert (A25-05-13): Multiple Vulnerabilities in Ivanti Endpoint Manager Mobile

Ivanti has released security advisory to address multiple vulnerabilities in Ivanti Endpoint Manager Mobile.

2025-5-16

High Threat Security Alert (A25-05-12): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-5-16

Cybersecurity & Diverse Innovation Symposium 2025 successfully concludes (with photos)

Jointly organised by the Cyber Security and Technology Crime Bureau of the Hong Kong Police Force (HKPF) and the Digital Policy Office (DPO), the Cybersecurity & Diverse Innovation Symposium 2025 was held today (May 16) at the Hong Kong Convention and Exhibition Centre. The Symposium explored various topics, including the latest cybersecurity challenges, cross-sector collaboration, and innovation-driven defense strategies.

2025-5-16

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-16

Phishing Attack - The Treasury alerts public to fraudulent SMS messages

The Treasury today (May 16) alerted members of the public to fraudulent SMS messages purportedly issued by the Treasury, which ask recipients to pay a fixed penalty offence via a hyperlink provided.

2025-5-16

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-16

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-15

High Threat Security Alert (A25-05-11): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-5-15

Phishing Attack - Fraudulent social media account related to Bank of Singapore Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Singapore Limited relating to a fraudulent social media account, which has been reported to the HKMA.

2025-5-15

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-15

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-14

Speech by Ir Tony Wong, JP, Commissioner for Digital Policy, at the “AI x Cybersecurity Forum” (with photos) (Chinese only)

Only Chinese version is available for this speech / presentation.

2025-5-14

Promoting AI Security – Privacy Commissioner Publishes an Article on Hong Kong Lawyer

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, published an article titled “Fostering AI Security: The New Checklist on Guidelines for the Use of Generative AI by Employees” on Hong Kong Lawyer.

2025-5-14

High Threat Security Alert (A25-05-10): Multiple Vulnerabilities in Fortinet Products

Fortinet released security advisories to address multiple vulnerabilities in Fortinet systems.

2025-5-14

High Threat Security Alert (A25-05-09): Multiple Vulnerabilities in Microsoft Products (May 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

2025-5-13

Security Alert (A25-05-08): Multiple Vulnerabilities in Apple Products

Apple has released iOS 18.5, iPadOS 18.5, macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6 and Safari 18.5 to fix the multiple vulnerabilities in various Apple devices.

2025-5-13

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-12

Investigation results of suspected intrusion into outsourced network system of operator of Kwai Tsing District Health Centre announced

The Primary Healthcare Commission (PHC Commission) under the Health Bureau announced today (May 12) that, upon the investigation conducted by an independent cybersecurity expert commissioned by the Kwai Tsing Safe Community and Healthy City Association (KTSCHCA), the operator of the Kwai Tsing District Health Centre (Kwai Tsing DHC), it has been confirmed that there was no leakage of members' data in the suspected intrusion incident involving the outsourced network system of the KTSCHCA on April 27.

2025-5-9

CSA HKM Knowledge Sharing Event – May 2025

Organised by Cloud Security Alliance

2025-5-9

Security Alert (A25-05-07): Vulnerability in Microsoft Edge

Microsoft released a security update to address a vulnerability in Microsoft Edge.

2025-5-9

Security Alert (A25-05-06): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-5-9

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-9

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-9

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-9

Phishing Attack - Fraudulent website and internet banking login screen related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-8

Security Alert (A25-05-05): Multiple Vulnerabilities in SonicWall SMA100 Series Products

SonicWall released a security advisory to address multiple vulnerabilities in SonicWall SMA100 Series products.

2025-5-8

Phishing Attack - Fraudulent website and internet banking login screen related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-8

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-8

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and an internet banking login screens, which have been reported to the HKMA.

2025-5-8

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-8

The Privacy Commissioner’s Office has Completed Compliance Checks on 60 Organisations to Ensure AI Security

To understand the usage of AI in Hong Kong and its impact on personal data privacy, the Office of the Privacy Commissioner for Personal Data (PCPD) carried out compliance checks on 28 local organisations from August 2023 to February 2024 and provided practical recommendations to organisations which developed or used AI.

2025-5-7

Security Alert (A25-05-04): Vulnerability in Google Chrome

Google released a security update to address a vulnerability in Google Chrome.

2025-5-7

Phishing Attack - Fraudulent websites related to Octopus Cards Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Octopus Cards Limited relating to fraudulent websites. The relevant stored value facility (SVF) licensee has reported the case to the HKMA.

2025-5-7

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-7

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-7

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-5-7

LCQ7: Combating phishing

Following is a question by the Hon Chan Kin-por and a written reply by the Secretary for Security, Mr Tang Ping-keung, in the Legislative Council today (May 7).

2025-5-6

Security Alert (A25-05-03): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge

2025-5-6

Security Alert (A25-05-02): Multiple Vulnerabilities in Android

Google has released Android Security Bulletin May 2025 to fix multiple security vulnerabilities in Android operating system.

2025-5-6

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-5-6

保安局局長在立法會保安事務委員會就設立落實《保障關鍵基礎設施（電腦系統）條例》專責辦公室首長級職位的建議開場發言 (Chinese only)

以下是保安局局長鄧炳強今日（五月六日）出席立法會保安事務委員會就設立落實《保障關鍵基礎設施（電腦系統）條例》專責辦公室首長級職位的建議的開場發言。 (Chinese only)

2025-5-2

Security Alert (A25-05-01): Vulnerability in SonicWall SMA1000 Series Products

SonicWall released a security advisory to address vulnerability in SonicWall SMA1000 Series products.

2025-5-2

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from HKeToll

The Transport Department (TD) today (May 2) alerted members of the public to fraudulent website addresses that pretend to be the HKeToll (see the HKeToll website for details) and seek to deceive users into making payments and obtaining their credit card information.

2025-5-2

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-2

Phishing Attack - Fraudulent websites and internet banking login screens related to Bank of China (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-2

Phishing Attack - Fraudulent website related to Bank Julius Baer & Co. Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank Julius Baer & Co. Ltd. relating to a fraudulent website, which has been reported to the HKMA.

2025-5-2

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-2

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-5-2

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-30

Security Alert (A25-04-26): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-28, MFSA2025-29, and MFSA2025-30) to address multiple vulnerabilities in Firefox browser.

2025-4-30

Security Alert (A25-04-25): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-4-30

Phishing Attack - Fraudulent websites and internet banking login screens related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-30

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-4-29

Security Alert (A25-04-24): Multiple Vulnerabilities in Apache Tomcat

The Apache Software Foundation released security updates to address the vulnerabilities in the Apache Tomcat.

2025-4-29

Primary Healthcare Commission announces suspected intrusion into outsourced network system of operator of Kwai Tsing District Health Centre

The Primary Healthcare Commission (PHC Commission) under the Health Bureau announced yesterday (April 29) that the PHC Commission received notification from the Kwai Tsing Safe Community and Healthy City Association (KTSCHCA), the operator of the Kwai Tsing District Health Centre (Kwai Tsing DHC), on April 28 on suspected hacking of its outsourced service provider's network system, resulting in possible leakage of members' data.

2025-4-29

Phishing Attack - Fraudulent websites and internet banking login screens related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-28

Presentation by Mr Donald Mak, Deputy Commissioner (Data Governance), at the “iAM Smart and Digital Corporation Identity Summit – Future-Proof Your Business: Seamless Security in the Age of Digital Trust” (with photo)

Mr Donald Mak, Deputy Commissioner (Data Governance), delivered a keynote address at the “iAM Smart and Digital Corporation Identity Summit – Future-Proof Your Business: Seamless Security in the Age of Digital Trust”.

2025-4-28

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-28

Phishing Attack - Fraudulent website and phishing instant messages related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to a fraudulent website and phishing instant messages, which have been reported to the HKMA.

2025-4-28

Phishing Attack - Fraudulent website and internet banking login screen related to Fubon Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Fubon Bank (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-28

Promoting AI Safety – Privacy Commissioner’s Office Organises a Seminar on “Good Practices in Privacy Protection in the Use of AI”

The Office of the Privacy Commissioner for Personal Data (PCPD) organised a seminar on “Good Practices in Privacy Protection in the Use of AI” in hybrid mode on 24 April, which attracted about 300 participants.

2025-4-9 to

2025-4-26

The Road to CSA Summit

Organised by Cloud Security Alliance

2025-4-25

Phishing Attack - Phishing emails related to Tai Sang Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Tai Sang Bank Limited relating to phishing emails, which have been reported to the HKMA.

2025-4-25

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-25

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-24

Security Alert (A25-04-23): Vulnerability in SonicWall Products

SonicWall released a security advisory to address a vulnerability in SonicWall systems.

2025-4-24

Man involved in fraudulent online money changer page convicted of money laundering

A man was sentenced to respective nine-month and 54-month imprisonment terms today (April 24) at the District Court after two earlier convictions for providing his personal bank account details and log-in credentials to unknown individuals in exchange for a monetary reward, laundering a total of about $10 million, in contravention of "dealing with property known or believed to represent proceeds of indictable offence" (commonly known as money laundering) under the Organized and Serious Crimes Ordinance (OSCO). The sentences will be run concurrently.

2025-4-24

Phishing Attack - Fraudulent websites and internet banking login screens related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-24

Phishing Attack - Fraudulent websites related to Alipay Financial Services (HK) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Alipay Financial Services (HK) Limited relating to fraudulent websites.

2025-4-24

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-23

High Threat Security Alert (A25-04-22): Vulnerability in Erlang/OTP

Erlang has released a security advisory to address a vulnerability in Erlang/OTP.

2025-4-23

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from AlipayHK about Public Transport Fare Subsidy Scheme

The Transport Department (TD) today (April 23) alerted members of the public to fraudulent website addresses (http[:]//alipaiyhk[.]online/hk/Login.html, https[:]//fet-woxx[.]online/hk) that pretend to be the Public Transport Fare Subsidy Scheme (PTFSS) and seek to deceive users of AlipayHK under the PTFSS into providing their personal information including mobile phone number and credit card account.

2025-4-23

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-23

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-23

Phishing Attack - Fraudulent website and social media account related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to a fraudulent website and a social media account, which have been reported to the HKMA.

2025-4-22

Security Alert (A25-04-21): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-4-22

Security Alert (A25-04-20): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-4-22

High Threat Security Alert (A25-04-19): Vulnerability in SonicWall SMA 100 Series Products

SonicWall released a security advisory to address vulnerability in SMA 100 series products.

2025-4-22

Security Alert (A25-04-18): Vulnerability in SonicWall Connect Tunnel Windows Client

SonicWall released a security advisory to address a vulnerability in Connect Tunnel Windows Client.

2025-4-22

Security Alert (A25-04-17): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-4-22

High Threat Security Alert (A25-04-16): Multiple Vulnerabilities in Apple Products

Apple has released iOS 18.4.1, iPadOS 18.4.1, macOS Sequoia 15.4.1, tvOS 18.4.1 and visionOS 2.4.1 to fix the multiple vulnerabilities in various Apple devices.

2025-4-22

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-22

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-22

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-19 to

2025-4-21

PolyU x NuttyShell Cybersecurity CTF 2025

Organised by Hong Kong Polytechnic University / NuttyShell

2025-4-17

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-16

Security Alert (A25-04-15): Multiple Vulnerabilities in Oracle Java and Oracle Products (April 2025)

Oracle has released the Critical Patch Update (CPU) Advisory with collections of patches for multiple security vulnerabilities found in Java SE and various Oracle products.

2025-4-16

Security Alert (A25-04-14): Vulnerability in Firefox

Mozilla has published an advisory (MFSA2025-25) to address a vulnerability in Firefox browser.

2025-4-16

Enhancing Data Security – Privacy Commissioner Publishes an Article on Hong Kong Lawyer

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, published an article titled “Safeguarding Personal Data Privacy in the Digital Age with PCPD’s Guidance on Cloud Computing” on Hong Kong Lawyer.

2025-4-15

Security Alert (A25-04-13): Vulnerability in Microsoft Edge

Microsoft released a security update to address a vulnerability in Microsoft Edge

2025-4-15

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-15

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-15

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-15

Digital Policy Office releases Hong Kong Generative Artificial Intelligence Technical and Application Guideline

The Guideline aims to provide practical operational guidance for technology developers, service providers, and users in the application of generative artificial intelligence (AI) technology. The Guideline covers the scope and limitations of applications, potential risks and governance principles of generative AI technology, including technical risks such as data leakage, model bias, and errors that need to be addressed.

2025-4-15

Phishing Attack - Police and HKMA remind public to remain vigilant against phishing messages

Police and the Hong Kong Monetary Authority (HKMA) today (April 16) remind members of the public to remain vigilant against phishing SMS messages purporting to be from Anti-Deception Coordination Centre (ADCC) and the HKMA.

2025-4-15

Speech by Mr Daniel Cheung, JP, Deputy Commissioner (Digital Infrastructure), at the “World Internet Conference Asia-Pacific Summit - Cybersecurity Workshop” (with photos)

Mr Daniel Cheung, Deputy Commissioner (Digital Infrastructure), delivered a speech at the “World Internet Conference Asia-Pacific Summit - Cybersecurity Workshop”.

2025-4-14

World Internet Conference Asia-Pacific Summit explores future of AI and digital technologies (with photos)

Hosted by the World Internet Conference (WIC), organised by the Hong Kong Special Administrative Region (HKSAR) Government and co-organised by the Innovation, Technology and Industry Bureau (ITIB), the World Internet Conference Asia-Pacific Summit kicked off today (April 14) at the Hong Kong Convention and Exhibition Centre.

2025-4-14

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-14

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-14

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-12

Embracing the e+ Internet Generation Parent Seminar (4): Identifying Fake News & Vision Management Tips

Organised by Hong Kong Education City Limited / Education Bureau / Committee on Home-School Co-operation

2025-4-11

Security Alert (A25-04-12): Multiple Vulnerabilities in SonicWall NetExtender

SonicWall released a security advisory to address multiple vulnerabilities in NetExtender.

2025-4-11

Security Alert (A25-04-11): Multiple Vulnerabilities in Juniper Networks Products

Juniper Networks has published security advisories to address multiple vulnerabilities in Junos OS, Junos OS Evolved and Junos Space.

2025-4-11

Phishing Attack - Transport Department alerts public to fraudulent websites purported to be from HKeToll

The Transport Department (TD) today (April 11) alerted members of the public to fraudulent website addresses that pretend to be the HKeToll (see the HKeToll website for details) and seek to deceive users into making payments and obtaining their credit card information.

2025-4-11

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-11

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-11

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-10

Phishing Attack - Phishing instant messages related to Mox Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Mox Bank Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-4-10

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-10

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-10

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-9

Phishing Attack - Government cautions public against online video about investment plan purported to be recommended by CE

A Government spokesman today (April 9) cautioned the public not to believe in a forged video created by artificial intelligence circulating online, which claimed that the Chief Executive urged the public to participate in an investment plan with high returns.

2025-4-9

Security Alert (A25-04-10): Multiple Vulnerabilities in Fortinet Products

Fortinet released security advisories to address multiple vulnerabilities in Fortinet systems.

2025-4-9

Security Alert (A25-04-09): Vulnerability in Google Chrome

Google released a security update to address vulnerability in Google Chrome.

2025-4-9

High Threat Security Alert (A25-04-08): Multiple Vulnerabilities in Microsoft Products (April 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

2025-4-9

Reporting to Legislative Council – Secretary for Constitutional and Mainland Affairs and Privacy Commissioner Attend Special Meeting of the Legislative Council Finance Committee

During the meeting, the Privacy Commissioner pointed out that the PCPD has introduced various “Data Security” tools to support different industries.

2025-4-8

Security Alert (A25-04-07): Multiple Vulnerabilities in Android

Google has released Android Security Bulletin April 2025 to fix multiple security vulnerabilities in Android operating system.

2025-4-8

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-8

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-8

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-8

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-7

Understanding CTI Implementation to Strengthen Cyber Defence

Organised by Professional Information Security Association / ISC2 Hong Kong Chapter

2025-4-7

Security Alert (A25-04-06): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-4-7

High Threat Security Alert (A25-04-05): Vulnerability in Ivanti Products

Ivanti has released security advisories to address the vulnerability in Ivanti products.

2025-4-7

A Male Arrested for Suspected Doxxing Arising from Repair Works Dispute

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese male aged 61 in the New Territories. The arrested person was suspected to have disclosed the personal data of a customer without her consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-4-7

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-7

Phishing Attack - Phishing emails related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to phishing emails, which have been reported to the HKMA.

2025-4-7

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-7

Phishing Attack - Fraudulent website related to Bank Julius Baer & Co. Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank Julius Baer & Co. Ltd. relating to a fraudulent website, which has been reported to the HKMA.

2025-4-7

Phishing Attack - Phishing messages and fraudulent websites related to Octopus Cards Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Octopus Cards Limited relating to phishing messages and fraudulent websites.

2025-4-7

Phishing Attack - Fraudulent website purporting to be HKMA's official website

The Hong Kong Monetary Authority (HKMA) would like to alert members of the public to a fraudulent website with the domain name survey-hkma[.]com.

2025-4-3

Security Alert (A25-04-04): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-4-3

Phishing Attack - Fraudulent website and internet banking login screen related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-3

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-3

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-3

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-3

Phishing Attack - Fraudulent website and internet banking login screen related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-2

Security Alert (A25-04-02): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-20, MFSA2025-21, MFSA2025-22, MFSA2025-23 and MFSA2025-24) to address multiple vulnerabilities in Firefox browser.

2025-4-2

Security Alert (A25-04-03): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome

2025-4-2

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-2

Phishing Attack - Fraudulent website related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website, which has been reported to the HKMA.

2025-4-2

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-2

Phishing Attack - Fraudulent websites and internet banking login screens related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-2

LCQ6: Regulation of use of electronic screen products by children and adolescents

Following is a question by the Hon Luk Chung-hung and a reply by the Secretary for Health, Professor Lo Chung-mau, in the Legislative Council today (April 2).

2025-4-2

Government cautions public on fake information about so-called "Government Investment Platform"

A Government spokesman today (April 2) cautioned the public not to believe in a video circulating online, which appears to be artificially generated and falsely presents the Financial Secretary promoting a so-called "Government Investment Platform".

2025-4-1

High Threat Security Alert (A25-04-01): Multiple Vulnerabilities in Apple Products

Apple has released iOS 15.8.4, iPadOS 15.8.4, iOS 18.3.2, iOS 16.7.11, iPadOS 16.7.11, iPadOS 17.7.6, iOS 18.4, iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, Safari 18.4, visionOS 2.4, tvOS 18.4 and Xcode 16.3 to fix the multiple vulnerabilities in various Apple devices.

2025-4-1

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-1

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-4-1

Phishing Attack - Fraudulent mobile application related to Bank of Singapore Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Singapore Limited relating to a fraudulent mobile application (App), which has been reported to the HKMA.

2025-4-1

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-4-1

Promoting AI Security – Assistant Privacy Commissioner Speaks at the 3rd AI Rule of Law Forum

The Assistant Privacy Commissioner for Personal Data (Compliance, Global Affairs and Research) of the Office of the Privacy Commissioner for Personal Data (PCPD), Ms Joanne WONG, attended the 3rd Artificial Intelligence Rule of Law Forum (Forum) on 29 March 2025 in Guangzhou and delivered a keynote speech titled “Protecting Personal Data Privacy in the AI Era: Hong Kong’s Perspective”.

2025-3-31

Phishing Attack - Fraudulent website related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website, which has been reported to the HKMA.

2025-3-31

Phishing Attack - Suspicious website related to Tai Sang Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Tai Sang Bank Limited relating to a suspicious website, which has been reported to the HKMA.

2025-3-31

The Office of the Privacy Commissioner for Personal Data (PCPD) today published (1) the Checklist on Guidelines for the Use of Generative AI by Employees and (2) the investigation findings of the data breach incident of ImagineX Management Company Limited.

Privacy Commissioner’s Office Publishes (1) Checklist on Guidelines for the Use of Generative AI by Employees and (2) Investigation Findings on the Data Breach Incident of ImagineX Management Company Limited

2025-3-28

Security Alert (A25-03-25): Vulnerability in Firefox

Mozilla has published an advisory (MFSA2025-19) to address a vulnerability in Firefox browser.

2025-3-28

Phishing Attack - Fraudulent website and social media accounts related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to a fraudulent website and social media accounts, which have been reported to the HKMA.

2025-3-27

Seminar on Teacher CPD Series: Hong Kong K12 Cybersecurity 2025 — Best Practices and Compliance Strategies 'Protecting Data and Ensuring Security'

Organised by Hong Kong Education City Limited

2025-3-27

High Threat Security Alert (A25-03-24): Vulnerability in Microsoft Edge

Microsoft released a security update to address a vulnerability in Microsoft Edge.

2025-3-27

Digital Policy Office introduces initiatives to promote cybersecurity in 2025 (with photos)

The Digital Policy Office (DPO) introduced the key initiatives for promoting cybersecurity this year at the 2025 Cybersecurity Initiatives Briefing today (March 27).

2025-3-26

Security Alert (A25-03-23): Vulnerability in VMware Tools

VMware has published a security advisory to address a vulnerability in VMware Tools.

2025-3-26

High Threat Security Alert (A25-03-22): Vulnerability in Google Chrome

Google released a security update to address a vulnerability in Google Chrome

2025-3-26

LCQ7: Information security of government departments and public organisations

Following is a question by the Hon Jeffrey Lam and a written reply by the Secretary for Innovation, Technology and Industry, Professor Sun Dong, in the Legislative Council today (March 26).

2025-3-26

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-26

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-25

Presentation by Mr Brian Sun, Chief Systems Manager (Data Applications)2, at the “‘Balancing Artificial Intelligent (AI) Safety with AI Innovation’ Seminar” (with photos) (Chinese only)

Only Chinese version is available for this speech / presentation.

2025-3-25

Phishing Attack - Fraudulent websites, internet banking login screens and phishing emails related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to fraudulent websites, internet banking login screens and phishing emails, which have been reported to the HKMA.

2025-3-25

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-25

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-3-25

Phishing Attack - Fraudulent website and internet banking login screen related to OCBC Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by OCBC Bank (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-24

Security Alert (A25-03-21): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-3-24

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-24

Phishing Attack - Fraudulent website and internet banking login screen related to Bank of China (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-24

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-24

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-24

A Male Arrested for Suspected Doxxing Arising from a Friend’s Monetary Disputes

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese male aged 73 on Hong Kong Island. The arrested person was suspected to have disclosed the personal data of a data subject without the latter’s consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-3-21

Security Alert (A25-03-20): Vulnerability in Veeam Backup and Replication Products

Veeam has published security advisory to address vulnerability in Veeam Backup and Replication products.

2025-3-21

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-21

Phishing Attack - Fraudulent website and internet banking login screen related to OCBC Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by OCBC Bank (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-21

Phishing Attack - Fraudulent websites and internet banking login screens related to China CITIC Bank International Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China CITIC Bank International Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-21

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-21

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-21

Enhancing Data Security for SMEs – Privacy Commissioner’s Office and HKPC Jointly Organise a Seminar on “Prevention of Cyber Attacks for SMEs”

To assist small and medium-sized enterprises (SMEs) in enhancing data security, the Office of the Privacy Commissioner for Personal Data (PCPD) and the Hong Kong Productivity Council (HKPC) have collaborated to launch the “Data Security Training Series for SMEs”.

2025-3-20

HKIB Cybersecurity Solutions Day 2025

Organised by The Hong Kong Institute of Bankers

2025-3-20

Speech by Mr Daniel Cheung, JP, Deputy Commissioner (Digital Infrastructure), at the “Hong Kong Institute of Bankers Cybersecurity Solutions Day 2025” (with photo)

Mr Daniel Cheung, Deputy Commissioner (Digital Infrastructure), delivered a speech at the “Hong Kong Institute of Bankers Cybersecurity Solutions Day 2025”.

2025-3-20

Security Alert (A25-03-19): Vulnerability in Google Chrome

Google released a security update to address a vulnerability in Google Chrome.

2025-3-20

Phishing Attack - Fraudulent website and internet banking login screen related to Fubon Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Fubon Bank (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-20

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-20

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-20

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-19

Security Alert (A25-03-18): Multiple Vulnerabilities in PHP

PHP has released security advisories to address multiple vulnerabilities in PHP

2025-3-19

立法會：保安局局長就《保護關鍵基礎設施（電腦系統）條例草案》全體委員會審議階段動議修正案發言全文 (Chinese only)

以下是保安局局長鄧炳強今日（三月十九日）在立法會會議全體委員會審議階段就《保護關鍵基礎設施（電腦系統）條例草案》動議修正案發言全文。(Chinese only)

2025-3-19

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-19

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-3-19

Phishing Attack - Fraudulent websites and social media pages related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and social media pages, which have been reported to the HKMA.

2025-3-19

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-18

Phishing Attack - Fraudulent websites and internet banking login screens related to Bank of China (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-18

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-18

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-17

LegCo to consider Protection of Critical Infrastructures (Computer Systems) Bill

The Legislative Council (LegCo) will hold a meeting on Wednesday (March 19) at 11am in the Chamber of the LegCo Complex. During the meeting, the Second Reading debate on the Protection of Critical Infrastructures (Computer Systems) Bill will resume.

2025-3-17

SITI attends press conference of World Internet Conference Asia-Pacific Summit in Beijing (with photos)

The Secretary for Innovation, Technology and Industry, Professor Sun Dong, attended a press conference for the World Internet Conference (WIC) Asia-Pacific Summit in Beijing this morning (March 17) together with the Secretary General of the WIC, Mr Ren Xianliang, to announce the launch of the Asia-Pacific Summit 2025 in Hong Kong.

2025-3-17

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-17

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-17

Phishing Attack - Fraudulent website related to Bank Julius Baer & Co. Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank Julius Baer & Co. Ltd. relating to a fraudulent website, which has been reported to the HKMA.

2025-3-17

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-17

SITI attends press conference of World Internet Conference Asia-Pacific Summit in Beijing (Chinese only) (with photo)

The Secretary for Innovation, Technology and Industry, Professor Sun Dong, spoke at the press conference of World Internet Conference Asia-Pacific Summit in Beijing today (March 17). (Chinese only) (with photo)

2025-3-14

Phishing Attack - Fraudulent mobile application related to Bank of Communications (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Communications (Hong Kong) Limited relating to a fraudulent mobile application (App), which has been reported to the HKMA.

2025-3-14

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-3-14

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-14

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-14

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-13

Causal Talk on Security and AI

Organised by Professional Information Security Association / ISC2 Hong Kong Chapter

2025-3-13

CSA HKM Knowledge Sharing Event – March 2025

Organised by Cloud Security Alliance

2025-3-13

Seminar on Teacher CPD Series: Enhancing Information Literacy for AI Teaching Challenges

Organised by Hong Kong Education City Limited

2025-3-13

Administrative Appeals Board Dismisses EC Healthcare’s Appeal

The Administrative Appeals Board (AAB) earlier dismissed the appeal lodged by EC Healthcare against the decision of the Privacy Commissioner for Personal Data (Privacy Commissioner) to serve an enforcement notice.

2025-3-13

Security Alert (A25-03-17): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-3-13

Security Alert (A25-03-16): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-3-13

Security Alert (A25-03-15): Vulnerability in Juniper Networks Junos OS

Juniper Networks has published security advisory to address vulnerability in Junos OS.

2025-3-13

Phishing Attack - Fraudulent website and internet banking login screen related to China Minsheng Banking Corp., Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Minsheng Banking Corp., Ltd. relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-13

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-13

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-13

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-13

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-12

Security Alert (A25-03-14): Multiple Vulnerabilities in Fortinet FortiWeb

Fortinet released security advisories to address multiple vulnerabilities in Fortinet systems.

2025-3-12

Security Alert (A25-03-13): Multiple Vulnerabilities in Adobe Reader/Acrobat

Patches are released for Adobe Reader and Acrobat to address multiple vulnerabilities.

2025-3-12

High Threat Security Alert (A25-03-12): Multiple Vulnerabilities in Microsoft Products (March 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

2025-3-12

High Threat Security Alert (A25-03-11): Vulnerability in Apple Products

Apple has released iOS 18.3.2, iPadOS 18.3.2, macOS Sequoia 15.3.2, Safari 18.3.1 and visionOS 2.3.2 to fix the vulnerability in various Apple devices.

2025-3-12

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-12

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-12

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-12

Raising Public’s Awareness to Combat Fraud – Privacy Commissioner’s Office Organises a Seminar on “Protecting Personal Data to Prevent Fraud”

At the seminar, the Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, shared with the participants some practical tips on protecting personal data when they use instant messaging applications, social media and smartphones. Mr Andy LAU, Senior Inspector of Police, Anti-Deception Coordination Centre (ADCC) (Publicity) of the Commercial Crime Bureau of the Hong Kong Police Force, also spoke as a guest speaker on the latest trends of scams, using real cases as examples.

2025-3-12

Privacy Commissioner’s Office Publishes Investigation Findings on the Data Breach Incident of the Companies Registry and Commenced Compliance Check regarding Deliveroo’s Cessation of Operations in Hong Kong

On completion of its investigation into the data breach incident of the Companies Registry (the Registry), the Office of the Privacy Commissioner for Personal Data (PCPD) published the investigation findings today. The investigation arose from a data breach notification submitted by the Registry to the PCPD on 19 April 2024, reporting the risk of personal data leakage identified in the e-Search Services of the e-Services Portal (the Incident).

2025-3-11

The 17th InfoSecurity Summit 2025

Organised by Market Intelligence Group Limited

2025-3-11

Security Alert (A25-03-10): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-3-11

Security Alert (A25-03-09): Vulnerability in Apache Tomcat

The Apache Software Foundation released security updates to address the vulnerability in the Apache Tomcat.

2025-3-11

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-11

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-11

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-11

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-10

Security Alert (A25-03-08): Multiple Vulnerabilities in QNAP Products

QNAP has published security advisories to address multiple vulnerabilities in QNAP products.

2025-3-10

Security Alert (A25-03-07): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-3-10

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-10

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-10

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-10

Phishing Attack - Fraudulent websites and internet banking login screens related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-10

A Female Arrested for Suspected Doxxing Arising from Online Shopping Dispute

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese female aged 31 in the New Territories. The arrested person was suspected to have disclosed the personal data of a customer without her consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-1-13 to

2025-3-7

“Privacy-Friendly Awards 2025”

Organised by Office of the Privacy Commissioner for Personal Data

2025-3-7

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-7

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-7

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-7

When Cybersecurity Meets 'Her Power': Unlocking the Potential of Women in Cybersecurity

The cybersecurity field lacks diversity and female talent, with the gender gap most evident in high-level cybersecurity positions. According to statistics, women hold only 17% of Chief Information Security Officer (CISO) positions in Fortune 500 companies. HKCERT is honoured to invite three female practitioners at different stages of their careers to share their experiences and insights. We hope to inspire more women to join the cybersecurity industry by showcasing female representatives in the field.

2025-3-7

Phishing Attack - Fraudulent websites and internet banking login screens related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-6

Security Alert (A25-03-06): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-3-6

Security Alert (A25-03-05): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-3-6

Security Alert (A25-03-04): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-14, MFSA2025-15, MFSA2025-16, MFSA2025-17 and MFSA2025-18) to address multiple vulnerabilities in Firefox browser.

2025-3-6

High Threat Security Alert (A25-03-03): Multiple Vulnerabilities in VMware Products

VMware has published a security advisory to address multiple vulnerabilities in VMware products.

2025-3-6

HKPF holds 2025 Bank Staff Recognition Ceremony to commend banking industry for combatting deception (with photos)

The Hong Kong Police Force held the 2025 Bank Staff Recognition Ceremony today (March 6) to commend the banking industry for their exceptional contributions to combatting deception cases. Eighteen banks and nine bank staff received corporate awards and the Spotlight Award respectively.

2025-3-6

Phishing Attack - Fraudulent websites, internet banking login screens and social media accounts related to Nanyang Commercial Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Nanyang Commercial Bank, Limited relating to fraudulent websites, internet banking login screens and social media accounts, which have been reported to the HKMA.

2025-3-6

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-6

Phishing Attack - Fraudulent websites related to OCBC Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by OCBC Bank (Hong Kong) Limited relating to fraudulent websites, which have been reported to the HKMA.

2025-3-6

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-6

Phishing Attack - Fraudulent websites and internet banking login screens related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-6

Phishing Attack - Fraudulent website related to Bank Julius Baer & Co. Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank Julius Baer & Co. Ltd. relating to a fraudulent website, which has been reported to the HKMA.

2025-3-6

Phishing Attack - Phishing emails related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to phishing emails, which have been reported to the HKMA.

2025-3-6

Phishing Attack - Fraudulent website and internet banking login screen related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-6

Government cautions public on fake information online about launch of "Hong Kong Coin" purported to be announced by CE

A Government spokesman today (March 6) cautioned the public not to believe in the fake information being circulated online about the "launch of National Hong Kong Coin" on blockchain purported to be announced by the Chief Executive.

2025-3-5

Phishing Attack - Fraudulent website and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website and phishing instant messages, which have been reported to the HKMA.

2025-3-5

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-5

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-3-5

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-5

Phishing Attack - Fraudulent website related to Bank Julius Baer & Co. Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank Julius Baer & Co. Ltd. relating to a fraudulent website, which has been reported to the HKMA.

2025-3-5

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-5

CSB clarifies online rumors

Regarding a false message circulating on the Internet that "the Government has announced that the Clerical Assistant grade will be fully integrated into the Assistant Clerical Officer grade by 2027", a spokesman for the Civil Service Bureau clarified today (March 5) that no such announcement had been made, and a report had been made to the Police.

2025-3-4

Security Alert (A25-03-02): Multiple Vulnerabilities in Android

Google has released Android Security Bulletin March 2025 to fix multiple security vulnerabilities in Android operating system.

2025-3-4

Video - Zero tolerance for cyberbullying. Be a smart netizen. (Chinese version only)

The cyber world of the Internet is not a virtual space not bound by law, most of the ordinances targeting crime prevention in the real world apply also in the cyber world of the Internet. We must refuse to initiate or participate in cyberbullying.

2025-3-4

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-4

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-3

Security Alert (A25-03-01): Vulnerability in Synology DiskStation Manager

Synology has published a security advisory to address a vulnerability in various versions of DiskStation Manager (DSM).

2025-3-3

Privacy Commissioner’s Office and HKPC Collaborate in Launching the “Data Security Training Series for SMEs” to Assist SMEs in Enhancing Data Security

The Training Series consists of three seminars on different topics relating to data security, including strategies to prevent cyber attacks for SMEs, ways and means to handle a data breach incident and how to address the data security and privacy risks associated with artificial intelligence.

2025-3-3

Invest Hong Kong provides updates on information security incident

Invest Hong Kong (InvestHK) provided an update today (March 3) on the information security incident identified on February 22 which involved a malicious ransomware attack to part of InvestHK's computer systems. According to InvestHK's investigation findings, there was no evidence indicating leakage of personal information. No further suspicious activities have been identified.

2025-3-3

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-3-3

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-3-3

Phishing Attack - Fraudulent website related to Bank of Communications (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Communications (Hong Kong) Limited relating to a fraudulent website, which has been reported to the HKMA.

2025-3-3

Phishing Attack - Fraudulent websites, internet banking login screens and social media accounts related to Nanyang Commercial Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Nanyang Commercial Bank, Limited relating to fraudulent websites, internet banking login screens and social media accounts, which have been reported to the HKMA.

2025-2-28

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-28

Phishing Attack - Fraudulent websites and internet banking login screens related to Chiyu Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chiyu Banking Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-28

Phishing Attack - Fraudulent website and internet banking login screen related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-28

Promoting AI Security – Assistant Privacy Commissioner Joins Panel Discussion at AI STR (Safety, Trust, Responsibility) Forum

The Assistant Privacy Commissioner for Personal Data (Compliance, Global Affairs and Research) of the Office of the Privacy Commissioner for Personal Data (PCPD), Ms Joanne WONG, attended Artificial Intelligence Safety, Trust, and Responsibility Forum (AI STR Forum) on 27 February 2025.

2025-2-28

Raising Public Awareness of Fraud Prevention – Privacy Commissioner’s Office Launches a New Anti-fraud Promotional Poster

Starting from 2023, the Office of the Privacy Commissioner for Personal Data (PCPD) has launched a series of anti-fraud publicity activities under the theme of “Don’t Hand Over Your Personal Data – Beware of Fraudsters”, which included broadcasting promotional videos, distributing promotional posters, organising thematic seminars, etc., with a view to raising public awareness of fraud prevention.

2025-2-27

Security Alert (A25-02-19): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-2-27

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-27

Phishing Attack - Fraudulent website related to Bank of Communications (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Communications (Hong Kong) Limited relating to a fraudulent website, which has been reported to the HKMA.

2025-2-27

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-27

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-26

Phishing Attack - Fraudulent website and internet banking login screen related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-26

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-26

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-26

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-2-25

Phishing Attack - Fraudulent websites and internet banking login screens related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-25

Phishing Attack - Fraudulent websites and internet banking login screens related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-25

Phishing Attack - Fraudulent social media account related to Airstar Bank Limited

Fraudulent social media account related to Airstar Bank Limited

2025-2-25

Phishing Attack - Fraudulent websites and internet banking login screens related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-24

Mastering China's Cyber Defenses

Organised by Professional Information Security Association

2025-2-24

Security Alert (A25-02-18): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-2-24

A 43-year-old Male Arrested for Suspected Doxxing Arising from Monetary Dispute

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese male aged 43 in Kowloon. The arrested person was suspected to have disclosed the personal data of his former friend and her daughter without the former friend’s consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-2-24

Phishing Attack - Suspicious website related to Tai Sang Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Tai Sang Bank Limited relating to a suspicious website, which has been reported to the HKMA.

2025-2-24

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-2-23

Invest Hong Kong reports information security incident

Invest Hong Kong (InvestHK) announced today (February 23) that an information security incident was identified yesterday (February 22). The incident involved a malicious ransomware attack to part of InvestHK's computer systems.

2025-2-21

Embracing the e+ Internet Generation Parent Seminar (3): Together in Spine Health Awareness of Online Pitfalls

Organised by Hong Kong Education City Limited / Education Bureau / Committee on Home-School Co-operation

2025-2-21

Education Bureau alerts public to website of organisation falsely claiming to have support from "Hong Kong Education Bureau"

The Education Bureau (EDB) today (February 21) called on the public to stay vigilant against an organisation calling itself "Kyiv State University of Economics and Business (Hong Kong Campus)". Its website falsely claims to have the support from the "Hong Kong Education Bureau" and contains a hyperlink to the EDB website.

2025-2-21

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-2-20

Security Alert (A25-02-17): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-2-20

Phishing Attack - Phishing message and fraudulent website related to Alipay Financial Services (HK) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Alipay Financial Services (HK) Limited relating to a phishing message and a fraudulent website.

2025-2-20

Phishing Attack - Phishing emails related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to phishing emails, which have been reported to the HKMA.

2025-2-20

Phishing Attack - Phishing instant messages related to Ant Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Ant Bank (Hong Kong) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-2-19

Security Alert (A25-02-16): Multiple Vulnerabilities in OpenSSH

OpenSSH has released a new version to address multiple vulnerabilities in various versions of OpenSSH.

2025-2-19

Security Alert (A25-02-15): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome

2025-2-19

Security Alert (A25-02-14): Vulnerability in Firefox

Mozilla has published an advisory (MFSA2025-12) to address a vulnerability in Firefox browser.

2025-2-19

Phishing Attack - Suspicious website related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to a suspicious website, which has been reported to the HKMA.

2025-2-19

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-19

Phishing Attack - Fraudulent websites, internet banking login screens and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites, internet banking login screens and phishing instant messages, which have been reported to the HKMA.

2025-2-19

LCQ17: Cracking down on online defamation and cyber-bullying

Following is a question by Prof the Hon Chow Man-kong and a written reply by the Secretary for Security, Mr Tang Ping-keung, in the Legislative Council today (February 19).

2025-2-18

Phishing Attack - Fraudulent website and internet banking login screen related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-18

Phishing Attack - Fraudulent website related to Bank of Communications (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Communications (Hong Kong) Limited relating to a fraudulent website, which has been reported to the HKMA.

2025-2-18

Phishing Attack - Phishing emails related to Bank of China (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to phishing emails, which have been reported to the HKMA.

2025-2-18

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-2-17

Security Alert (A25-02-13): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-2-17

Reporting to Legislative Council – Privacy Commissioner Attends Meeting of Legislative Council Panel on Constitutional Affairs to Brief Members on PCPD’s Work in 2024

The Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, attended the Legislative Council Panel on Constitutional Affairs on 17 February to brief Members on the work of her Office (PCPD) in 2024 and its strategic focus this year.

2025-2-13

Security Alert (A25-02-12): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome

2025-2-13

Phishing Attack - Transport Department alerts public to fraudulent SMS messages purported to be from HKeToll

The Transport Department (TD) today (February 13) alerted members of the public to fraudulent SMS messages purported to be issued by the HKeToll and provided a hyperlink with the domain name (http[:]//hketoll.taobaocainiao.top[/]ZA17vEtuG6) that lead to a fake HKeToll website, which seeks to deceive recipients into making payments and obtain their credit card information.

2025-2-13

Phishing Attack - Fraudulent websites and internet banking login screens related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-13

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-13

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-2-12

High Threat Security Alert (A25-02-11): Multiple Vulnerabilities in Ivanti Products

Ivanti has released a security advisory to address multiple vulnerabilities in Ivanti products.

2025-2-12

Security Alert (A25-02-10): Vulnerability in Fortinet FortiOS

Fortinet released a security advisory to address a vulnerability in Fortinet FortiOS.

2025-2-12

High Threat Security Alert (A25-02-09): Multiple Vulnerabilities in Microsoft Products (February 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components

2025-2-12

Phishing Attack - Fraudulent websites and social media accounts related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to fraudulent websites and social media accounts, which have been reported to the HKMA.

2025-2-11

Security Alert (A25-02-08): Vulnerability in Apple iOS and iPadOS

Apple has released iOS 18.3.1, iPadOS 17.7.5 and iPadOS 18.3.1 to fix the vulnerability in various Apple devices.

2025-2-11

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-11

Phishing Attack - Fraudulent website related to Bank Julius Baer & Co. Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank Julius Baer & Co. Ltd. relating to a fraudulent website, which has been reported to the HKMA.

2025-2-11

Enhancing Data Security – Privacy Commissioner’s Office Collaborates with HKIRC to Launch the Third Episode of Promotional Video

To assist organisations in raising employees’ awareness of cyber security and personal data protection, the Office of the Privacy Commissioner for Personal Data (PCPD) and the Hong Kong Internet Registration Corporation Limited (HKIRC) have jointly launched a series of promotional videos to provide relevant guidance and tips in a lively manner to organisations.

2025-2-11

A Debt Collector Arrested for Suspected Doxxing

The Office of the Privacy Commissioner for Personal Data (PCPD) today arrested a Chinese male aged 40 in Kowloon. The arrested person was suspected to have disclosed the personal data of the data subject without his consent, in contravention of section 64(3A) of the Personal Data (Privacy) Ordinance (PDPO).

2025-2-7

Security Alert (A25-02-07): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address vulnerabilities in Microsoft Edge.

2025-2-7

Phishing Attack - Fraudulent websites and internet banking login screens related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-7

Phishing Attack - Fraudulent websites and internet banking login screens related to Fubon Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Fubon Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-2-6

Security Alert (A25-02-06): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-2-5

Security Alert (A25-02-05): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-2-5

Security Alert (A25-02-04): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-07, MFSA2025-08 and MFSA2025-09) to address multiple vulnerabilities in Firefox browser

2025-2-5

Phishing Attack - Fraudulent websites, internet banking login screens and mobile applications (Apps) related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to fraudulent websites, internet banking login screens and Apps, which have been reported to the HKMA.

2025-2-4

Security Alert (A25-02-03): Multiple Vulnerabilities in Android

Google has released Android Security Bulletin February 2025 to fix multiple security vulnerabilities in Android operating system.

2025-2-4

Phishing Attack - Fraudulent websites and phishing emails related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and phishing emails, which have been reported to the HKMA.

2025-2-3

Security Alert (A25-02-02): Vulnerability in Microsoft Edge

Microsoft released a security update to address a vulnerability in Microsoft Edge.

2025-2-3

Security Alert (A25-02-01): Vulnerability in Google Chrome

Google released a security update to address a vulnerability in Google Chrome.

2025-2-3

InfoSec Tours - Protect yourself in the Cyberworld (Chinese version only)

Please refer to the Chinese version.

2025-1-28

High Threat Security Alert (A25-01-18): Multiple Vulnerabilities in Apple Products

Apple has released iOS 18.3, iPadOS 17.7.4, iPadOS 18.3, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3 and Safari 18.3 to fix the vulnerabilities in various Apple devices.

2025-1-27

Security Alert (A25-01-17): Vulnerability in Microsoft Edge

Microsoft released a security update to address a vulnerability in Microsoft Edge.

2025-1-27

ORO reports incident involving loss of backup tapes

A spokesman for the Official Receiver's Office (ORO) said today (January 27) that the department attaches the utmost importance to an incident involving the loss of magnetic backup tapes and expresses sincere apologies.

2025-1-24

Security Alert (A25-01-16): Multiple Vulnerabilities in QNAP Products

QNAP has published security advisories to address multiple vulnerabilities in QNAP products.

2025-1-24

High Threat Security Alert (A25-01-15): Vulnerability in SonicWall SMA1000 Series Products

SonicWall released a security advisory to address a vulnerability in SMA1000 series products.

2025-1-24

Phishing Attack - Beware of fake news and project claimed to be related to HKMA

The Hong Kong Monetary Authority (HKMA) has received enquiries from the public regarding fake news related to the HKMA, claiming an individual in charge of a poverty alleviation project met with the Chief Executive of the HKMA, Mr Eddie Yue, and discussed poverty relief funds.

2025-1-24

Phishing Attack - Phishing instant messages related to Bank of Communications Co., Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Communications Co., Ltd. relating to phishing instant messages, which have been reported to the HKMA.

2025-1-24

Phishing Attack - Phishing instant messages related to Industrial and Commercial Bank of China (Asia) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Industrial and Commercial Bank of China (Asia) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-1-24

Phishing Attack - Phishing instant messages related to Bank of Communications (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Communications (Hong Kong) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-1-24

Resource Centre - Infographics on "Digital Signage Security Best Practices"

Infographics on "Digital Signage Security Best Practices" is now available at the Resource Centre

2025-1-23

Security Alert (A25-01-14): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-1-23

High Threat Security Alert (A25-01-13): Multiple Vulnerabilities in Cisco Products

Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

2025-1-23

Privacy Commissioner’s Office Reports on its Work in 2024 and Publishes Investigation Findings on the Data Breach Incident of Oxfam Hong Kong

The Office of the Privacy Commissioner for Personal Data (PCPD) today reported on its work in 2024 and published the investigation findings of the data breach incident of Oxfam Hong Kong (Oxfam).

2025-1-22

Security Alert (A25-01-12): Multiple Vulnerabilities in Oracle Java and Oracle Products (January 2025)

Oracle has released the Critical Patch Update (CPU) Advisory with collections of patches for multiple vulnerabilities found in Java SE and various Oracle products.

2025-1-22

LCQ2: Prevention of personal data breaches and financial crimes

Following is a question by the Hon Carmen Kan and a reply by the Secretary for Constitutional and Mainland Affairs, Mr Erick Tsang Kwok-wai, in the Legislative Council today (January 22).

2025-1-22

“HKCERT Capture The Flag 2024” Concludes Successfully with Record Participation Gathering Top Global Teams in Hong Kong, Nurturing Future Cyber Security Talent

Hong Kong Productivity Council (HKPC) in collaboration with the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT), and Digital Policy Office of the HKSAR Government, successfully hosted the “HKCERT Capture the Flag Challenge 2024” (CTF Challenge) on 20-21 January. The event attracted over record-making 1,300 participants from renowned teams across the Chinese Mainland, other parts of Asia, Europe, and the United States, setting.

2025-1-21

"HKCERT Capture the Flag Challenge 2024" - Seminar and Award Presentation Ceremony

Organised by Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) / Hong Kong Productivity Council / Digital Policy Office

2025-1-21

Phishing Attack - Fraudulent websites and internet banking login screens related to Chiyu Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chiyu Banking Corporation Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-1-20

Security Alert (A25-01-11): Multiple Vulnerabilities in Microsoft Edge

Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge.

2025-1-20

Phishing Attack - Fraudulent websites and internet banking login screens related to China CITIC Bank International Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China CITIC Bank International Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-1-20

Phishing Attack - Fraudulent website and internet banking login screen related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-20

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-20

HKCERT Unveils "Hong Kong Cyber Security Outlook 2025" Phishing Hits Five-year High Vulnerabilities in Supply Chain and AI Content Hijacking Emerge as Key Risks Over Half of Enterprises Fear Cyber Attacks on IoT Digital Signages

The Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) held a media briefing today to present the "Hong Kong Cyber Security Outlook 2025 cum IoT Security Study Report on Digital Signage". The briefing summarised Hong Kong's cyber security landscape in 2024 and released security forecast for 2025, highlighting supply chain security and AI content hijacking will become the primary cyber security risks in Hong Kong.

2025-1-20

Enhancing Digital Signage Security: Security Findings and Recommendations from the Latest Study

In today's digital age, digital signage has become a popular tool for industries to promote products and display information to customers. However, as an IoT device that is commonly placed in public areas, digital signage is susceptible to cyber attacks. Therefore, HKCERT conducted a comprehensive security study on digital signages.

2025-1-17

High Threat Security Alert (A25-01-10): Multiple Vulnerabilities in Ivanti Products

Ivanti has released security advisories to address multiple vulnerabilities in Ivanti products.

2025-1-17

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-17

Phishing Attack - Fraudulent website and internet banking login screen related to Fubon Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Fubon Bank (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-16

Phishing Attack - Fraudulent website related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website, which has been reported to the HKMA.

2025-1-16

Phishing Attack - Fraudulent website and internet banking login screen related to Fubon Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Fubon Bank (Hong Kong) Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-16

Fraud Enquiries Soar by Over 40% Privacy Commissioner’s Office Offers Six Tips to Prevent Fraud

As the Year of the Dragon draws to a close, the Privacy Commissioner for Personal Data (Privacy Commissioner), Ms Ada CHUNG Lai-ling, appeals to members of the public and organisations to be aware of various forms of fraudulent tricks, particularly those involving fraudulent recruitment advertisements and AI deepfake technology, and offers six tips to safeguard personal data privacy.

2025-1-15

Phishing Attack - Fraudulent websites and internet banking login screens related to Fubon Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Fubon Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-1-15

Phishing Attack - Phishing instant messages related to Bank of China (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-1-15

Phishing Attack - Fraudulent website and internet banking login screen related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-15

Phishing Attack - Phishing messages and fraudulent websites related to Octopus Cards Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Octopus Cards Limited relating to phishing messages and fraudulent websites.

2025-1-15

LCQ7: Cracking down on phishing scams

Following is a question by Prof the Hon Chow Man-kong and a written reply by the Secretary for Security, Mr Tang Ping-keung, in the Legislative Council today (January 15).

2025-1-15

Security Alert (A25-01-09): Multiple Vulnerabilities in Google Chrome

Google released a security update to address multiple vulnerabilities in Google Chrome.

2025-1-15

High Threat Security Alert (A25-01-08): Multiple Vulnerabilities in Fortinet Products

Fortinet released security advisories to address multiple vulnerabilities in Fortinet systems.

2025-1-15

High Threat Security Alert (A25-01-07): Multiple Vulnerabilities in Microsoft Products (January 2025)

Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components

2025-1-14

Phishing Attack - Fraudulent website related to Bank Julius Baer & Co. Ltd.

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank Julius Baer & Co. Ltd. relating to a fraudulent website, which has been reported to the HKMA.

2025-1-14

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-14

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-14

Phishing Attack - Fraudulent website and internet banking login screen related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-14

Phishing Attack - Fraudulent websites and internet banking login screens related to DBS Bank (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by DBS Bank (Hong Kong) Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-1-14

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-13

Remarks by S for S after Fight Crime Committee meeting (with video)

Following is the remarks by the Secretary for Security, Mr Tang Ping-keung, at a media session after the Fight Crime Committee meeting at the Central Government Offices today (January 13).

2025-1-13

Phishing Attack - Fraudulent website and internet banking login screen related to The Bank of East Asia, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Bank of East Asia, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-13

Phishing Attack - Fraudulent website and internet banking login screen related to Nanyang Commercial Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Nanyang Commercial Bank, Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-13

Phishing Attack - Fraudulent website related to Bank of Communications (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of Communications (Hong Kong) Limited relating to a fraudulent website, which has been reported to the HKMA.

2025-1-13

Phishing Attack - Fraudulent website and internet banking login screen related to Chong Hing Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Chong Hing Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-10

Phishing Attack - Fraudulent website and internet banking login screen related to Shanghai Commercial Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Shanghai Commercial Bank Limited relating to a fraudulent website and an internet banking login screen, which have been reported to the HKMA.

2025-1-9

Security Alert (A25-01-06): Multiple Vulnerabilities in Juniper Networks Products

Juniper Networks has published security advisories to address multiple vulnerabilities in Junos OS, Junos OS Evolved and Junos Space.

2025-1-9

High Threat Security Alert (A25-01-05): Multiple Vulnerabilities in SonicWall Products

SonicWall released security advisories to address multiple vulnerabilities in SonicWall systems.

2025-1-9

High Threat Security Alert (A25-01-04): Multiple Vulnerabilities in Ivanti Products

Ivanti has released a security advisory to address multiple vulnerabilities in Ivanti products.

2025-1-9

New Zealand-based information technology solutions provider opens regional office in Hong Kong (with photo)

Invest Hong Kong announced today (January 8) that New Zealand-based information technology (IT) solutions provider, OptimaTech, has officially opened its regional office in Hong Kong, leveraging the city's strategic location as the base to expand in the region.

2025-1-9

Phishing Attack - Fraudulent websites and internet banking login screens related to Nanyang Commercial Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Nanyang Commercial Bank, Limited relating to fraudulent websites and internet banking login screens, which have been reported to the HKMA.

2025-1-9

Privacy Commissioner’s Office Publishes Investigation Findings on the Data Breach Incident of the Urban Renewal Authority and a Guidance on Cloud Computing

On completion of its investigations into the data breach incident of the Urban Renewal Authority, the Office of the Privacy Commissioner for Personal Data (PCPD) published the investigation findings today. The PCPD also published a “Guidance on Cloud Computing” in parallel.

2025-1-8

Security Alert (A25-01-03): Multiple Vulnerabilities in Firefox

Mozilla has published the advisories (MFSA2025-01, MFSA2025-02 and MFSA2025-03) to address multiple vulnerabilities in Firefox browser.

2025-1-8

Security Alert (A25-01-02): Vulnerability in Google Chrome

Google released a security update to address vulnerability in Google Chrome.

2025-1-8

Phishing Attack - Fraudulent website related to Dah Sing Bank, Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Dah Sing Bank, Limited relating to a fraudulent website, which has been reported to the HKMA.

2025-1-7

Security Alert (A25-01-01): Multiple Vulnerabilities in Android

Google has released Android Security Bulletin January 2025 to fix multiple security vulnerabilities in Android operating system.

2025-1-7

Phishing Attack - Phishing instant messages related to China CITIC Bank International Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China CITIC Bank International Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-1-7

Phishing Attack - Phishing instant messages related to Bank of China (Hong Kong) Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited relating to phishing instant messages, which have been reported to the HKMA.

2025-1-7

DPO and HKIIT sign Memorandum of Understanding (with photos)

The Digital Policy Office and the Hong Kong Institute of Information Technology (HKIIT), a member institution of the Vocational Training Council, signed a Memorandum of Understanding today (January 7) to jointly promote information technology (IT) professional training in government departments and public organisations.

2025-1-6

Phishing Attack - Fraudulent website and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website and phishing instant messages, which have been reported to the HKMA.

2025-1-2

Phishing Attack - Phishing instant messages related to Welab Bank Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Welab Bank Limited relating to phishing instant messages, which have been reported to the HKMA.