Hong Kong Computer Emergency Response Team Coordination Center

HKCERT Releases Annual Information Security Outlook and Forecast Next Level Phishing Attacks Difficult to Distinguish Hackers Exploit AI for Crimes Could Become a New Normal

HKCERT Releases Annual Information Security Outlook and Forecast Next Level Phishing Attacks Difficult to Distinguish Hackers Exploit AI for Crimes Could Become a New Normal

The Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) held a briefing, and summarised the information security situation in Hong Kong in 2023 as well as released a security outlook for 2024. Emerging technologies, such as artificial intelligence (AI), can bring additional benefits to businesses. However, with the development of these technologies, cyber attacks come one after another, and cyber threats become more complicated. Organisations and citizens must not underestimate them. It is important for organisations and citizens to have a better understanding of cyber security and to enhance their ability to respond to cyber security risks.

Learn more

HKCERT Releases Annual Information Security Outlook and Forecast Next Level Phishing Attacks Difficult to Distinguish Hackers Exploit AI for Crimes Could Become a New Normal
Protect your Personal Digital Keys, Beware of Fraudulent Links!

Protect your Personal Digital Keys, Beware of Fraudulent Links!

Internet banking login ID and passwords are as important as the keys to your house. Don’t give them to others recklessly!

Learn more

Protect your Personal Digital Keys, Beware of Fraudulent Links!
Download Incident Response Guideline for SMEs for Cyber Security Incidents

Download "Incident Response Guideline for SMEs" for Cyber Security Incidents

Cyber attacks evolve rapidly as the costs and efforts required for hackers to launch attacks are decreasing due to the development of automation and computing powers. This leads to increased cyber attacks targeting different organisations (including public or private, multinational or local organisations). As most small and medium enterprises (SMEs) lack the resources to build a wider scope of cyber defence to prevent or block cyber attacks, this makes them an easy target.
To address the above-mentioned issues, HKCERT has developed the “Incident Response Guideline for SMEs” to help SMEs and other organisations

Learn more

Download Incident Response Guideline for SMEs for Cyber Security Incidents
“Fight Ransomware” Webpage

Introducing the New “Fight Ransomware” Webpage

To keep pace with the changes in ransomware attacks, HKCERT recently consolidated the ransomware attack techniques, prevention and handling procedures to create a new dedicated “Fight Ransomware ” webpage.

Learn more

“Fight Ransomware” Webpage
Check your cyber security readiness

Introducing "Check your Cyber Security Readiness" Online Assessment Tool

• Improved user experience
• Enhanced usability
• Better reporting

Learn more

Check your cyber security readiness
All 4 episodes of the 【Hack me if you can】animation series are now available

All 4 episodes of the 【Hack me if you can】animation series are now available

Focusing on hacker Ah Keung’s repeated attempts to hack into SME owner Ah Chun’s systems, and how Chun’s friend, Chi On, helps repel the attacks, the stories are light-hearted and down-to-earth.

Learn more

All 4 episodes of the 【Hack me if you can】animation series are now available
Hong Kong Computer Emergency Response Team Coordination Centre

Centre for coordination of computer security incident response for local enterprises and Internet Users


Facilitate information disseminating, provide advices on preventive measures against security threats and to promote information security awareness

Learn more

What Are You Looking for

Top Search:
Incident Response
Capture the Flag
Phishing
QR code
Ransomware

Highlights

Security BulletinRISK: Extremely High Risk

Apple Products Multiple Vulnerabilities

Published on 20 Nov 2024

Extremely High Risk
Security BulletinRISK: Medium Risk

Adobe Monthly Security Update (November 2024)

Published on 13 Nov 2024

Medium Risk
Security BulletinRISK: Medium Risk

Microsoft Monthly Security Update (November 2024)

Published on 13 Nov 2024

Medium Risk
Security Watch Report

Hong Kong Security Watch Report (Q3 2024)

Published on 29 Oct 2024

Security Blog

Massive "911 S5" Botnet Affecting Nearly 19 Million IP Addresses Worldwide was Dismantled

Published on 28 Oct 2024

Security BulletinRISK: Extremely High Risk

VMWare Products Multiple Vulnerabilities

Published on 19 Sep 2024

Extremely High Risk

Our Core Services

Security Alert Monitoring and Early Warning

Monitor security vulnerability and development of viruses & worms. When necessary, we issue alerts to warn the public to mitigate the impact of these threats.

Learn More

Incident Report and Response

Provide free 24-hour hotline services for incident reporting and give advice on incident response and recovery. All the reported incidents will be kept confidential. For cross-border incidents, we can seek assistance from overseas CERT teams.

Learn More

Publication of Security Guidelines and Information

Publish security alerts, security guidelines, infosec express and news on our web site. We also publish monthly security newsletter to subscribers. The information is provided in both English and Chinese

Learn More

Promotion of Information Security Awareness

Organize free seminars and briefings to promote information security awareness among the general public.

Learn More

Security Bulletins

20 Nov 2024

Apple Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution and cross-site scripting on the targeted system.   Note: CVE-2024-44308 and CVE-2024-44309 are actively exploited...

RISK: Extremely High Risk

Extremely High Risk

20 Nov 2024

Google Chrome Denial of Service Vulnerability

A vulnerability was identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.

RISK: Medium Risk

Medium Risk

1 Nov 2024

SUSE Linux Kernel Multiple Vulnerabilities

Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure, remote code execution and security restriction bypass on the targeted system.   [Updated on 2024-11-05] Updated...

RISK: Medium Risk

Medium Risk

19 Nov 2024

Apache Tomcat Multiple Vulnerabilities

Multiple vulnerabilities were identified in Apache Tomcat, a remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, cross-site scripting and information disclosure on the targeted system.

RISK: Medium Risk

Medium Risk

19 Nov 2024

Palo Alto PAN-OS Multiple vulnerabilities

Multiple vulnerabilities were identified in Palo Alto PAN-OS. A remote user could exploit these vulnerabilities to trigger elevation of privilege and security restriction bypass on the targeted system.   Note: CVE-2024-0012 and CVE-2024-9474 are actively exploited in...

RISK: High Risk

High Risk

19 Sep 2024

VMWare Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in VMware products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege and remote code execution on the targeted system.   [Updated on 2024-11-19] Updated Description and Risk level changed to extremely high. ...

RISK: Extremely High Risk

Extremely High Risk

18 Nov 2024

Ruckus Products Remote Code Execution Vulnerability

A vulnerability was identified in Ruckus Products. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.  

RISK: Medium Risk

Medium Risk

4 Nov 2024

Ubuntu Linux Kernel Multiple Vulnerabilities

Multiple vulnerabilities were identified in Ubuntu Linux Kernel. An attacker could exploit some of these vulnerabilities to trigger denial of service condition and remote code execution on the targeted system.   [Updated on 2024-11-05] Updated Solutions and Related Links.   [Updated...

RISK: Medium Risk

Medium Risk

15 Nov 2024

Citrix Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in Citrix Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege and remote code execution on the targeted system.   Note: Proof of concept exploit for CVE-2024-8068 and...

RISK: Medium Risk

Medium Risk

15 Nov 2024

Fortinet Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in Fortinet Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure, security restriction bypass, data manipulation, and elevation of privilege on the targeted system.  

RISK: Medium Risk

Medium Risk

Featured Security Blog

Massive "911 S5" Botnet Affecting Nearly 19 Million IP Addresses Worldwide was Dismantled28 Oct 2024

Incident Response Guideline for SMEs

Ransomware Trends Q2 2023: Surge in Attacks Across Asia-Pacific, Persistent Multiple Extortion, and Evolving Threat Landscape

Adopt Good Cyber Security Practices to Make AI Your Friends not Foes

Events / Trainings

HKCERT Capture the Flag Challenge 2024

13 Sep 2024 - 10 Nov 2024

Learn More

Statistics

The figure for each type of cyber attack is aggregated by the security incident reported to us. This dataset starts from Jan 2018 to current month. To learn more, please click here.

26550

+

Botnet

24841

+

Phishing

5691

+

Malware

223

+

Web Defacement/Intrusion

122

+

Distributed Denial-of-service

4348

+

Others

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY