Hong Kong Computer Emergency Response Team Coordination Center

Cyber Attacks Become More Complex and Diversified Phishing Attacks Reach New High HKCERT Calls on Public to Raise Awareness of Information Security

Cyber Attacks Become More Complex and Diversified Phishing Attacks Reach New High HKCERT Calls ...

The Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) of the Hong Kong Productivity Council today announced a review on the information security situation in Hong Kong in 2021 and the forecast for 2022. In the past year, the epidemic was still raging, which greatly changed how enterprises conduct their business and the living habits of individuals. Distance business, work from home, distance learning and online shopping have become the “new normal”. With the wider use of information technology, the threat of cyber attacks cannot be overlooked. Hence both enterprises and individual must raise their awareness of information security with preventative measures in place so that the community can effectively respond to the increasingly sophisticated and complex cyber attacks.

Learn more

Cyber Attacks Become More Complex and Diversified Phishing Attacks Reach New High HKCERT Calls on Public to Raise Awareness of Information Security
“Fight Ransomware” Webpage

Introducing the New “Fight Ransomware” Webpage

To keep pace with the changes in ransomware attacks, HKCERT recently consolidated the ransomware attack techniques, prevention and handling procedures to create a new dedicated “Fight Ransomware ” webpage.

Learn more

“Fight Ransomware” Webpage
Check your cyber security readiness

Introducing "Check your Cyber Security Readiness" Online Assessment Tool

• Improved user experience
• Enhanced usability
• Better reporting

Learn more

Check your cyber security readiness
All 4 episodes of the 【Hack me if you can】animation series are now available

All 4 episodes of the 【Hack me if you can】animation series are now available

Focusing on hacker Ah Keung’s repeated attempts to hack into SME owner Ah Chun’s systems, and how Chun’s friend, Chi On, helps repel the attacks, the stories are light-hearted and down-to-earth.

Learn more

All 4 episodes of the 【Hack me if you can】animation series are now available
Hong Kong Computer Emergency Response Team Coordination Centre

Centre for coordination of computer security incident response for local enterprises and Internet Users


Facilitate information disseminating, provide advices on preventive measures against security threats and to promote information security awareness

Learn more

What Are You Looking for

Top Search:
Apache Log4j
QR code
OWASP
Ransomware
Phishing

Highlights

Security BulletinRISK: Extremely High Risk

VMWare Products Multiple Vulnerabilities

Published on 7 Apr 2022

Extremely High Risk
Security Blog

Please sign them. Smart contracts?

Published on 4 Apr 2022

Security Blog

What You Know about the Cyber Security of NFT

Published on 11 Mar 2022

Security Blog

NFT Boom, How to Protect Your NFT Assets

Published on 24 Jan 2022

Security Blog

Introduction of QR code attacks and countermeasures

Published on 20 Jan 2022

Security Blog

Business as Usual under COVID-19 with Sound “Work from Home” Cyber Security

Published on 10 Jan 2022

Security Blog

Secure Use of QR Code

Published on 7 Jan 2022

Security Blog

Patch FortiOS SSL VPN Vulnerability (CVE-2018-13379) Immediately

Published on 8 Dec 2020

Security Guideline

Personal VPN Security Guideline

Published on 24 Nov 2020

Our Core Services

Security Alert Monitoring and Early Warning

Monitor security vulnerability and development of viruses & worms. When necessary, we issue alerts to warn the public to mitigate the impact of these threats.

Learn More

Incident Report and Response

Provide free 24-hour hotline services for incident reporting and give advice on incident response and recovery. All the reported incidents will be kept confidential. For cross-border incidents, we can seek assistance from overseas CERT teams.

Learn More

Publication of Security Guidelines and Information

Publish security alerts, security guidelines, infosec express and news on our web site. We also publish monthly security newsletter to subscribers. The information is provided in both English and Chinese

Learn More

Promotion of Information Security Awareness

Organize free seminars and briefings to promote information security awareness among the general public.

Learn More

Security Bulletins

23 May 2022

Mozilla Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in Mozilla products. A remote attacker could exploit some of these vulnerabilities to remote code execution and security restriction bypass on the targeted system.

RISK: Medium Risk

Medium Risk

23 May 2022

Cisco IOS XR Security Restriction Bypass Vulnerability

A vulnerability was identified in Cisco IOS XR. An attacker could exploit this vulnerability to trigger security restriction bypass on the targeted system.   Note: CVE-2022-20821 is being exploited in the wild. The vulnerability is related to the...

RISK: High Risk

High Risk

23 May 2022

F5 Products Denial of Service Vulnerability

Multiple vulnerabilities were identified in F5 Products. A remote attacker could exploit this vulnerability to trigger denial of service condition.

RISK: Medium Risk

Medium Risk

17 May 2022

Apple Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger information disclosure, remote code execution, security restriction bypass, elevation of privilege, denial of service and data manipulation on the targeted system.   Note: CVE-2022...

RISK: Extremely High Risk

Extremely High Risk

19 May 2022

ISC BIND Denial Of Service Vulnerability

A vulnerability was identified in BIND, a remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.

RISK: Medium Risk

Medium Risk

19 May 2022

VMWare Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in VMware products. An attacker could exploit some of these vulnerabilities to trigger security restriction bypass and elevation of privilege.

RISK: Medium Risk

Medium Risk

15 Mar 2022

Apache HTTP Server Multiple Vulnerabilities

Multiple vulnerabilities were identified in Apache HTTP Server. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and security restriction bypass on the targeted system.   [Updated on 2022-04-25] Added QNAP products to the "System / Technologies...

RISK: Medium Risk

Medium Risk

17 May 2022

Apache Tomcat Information Disclosure Vulnerability

A vulnerability has been identified in Apache Tomcat. A remote user can exploit this vulnerability to trigger information disclosure on the targeted system.

RISK: Medium Risk

Medium Risk

17 May 2022

SUSE Linux Kernel Multiple Vulnerabilities

Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, elevation of privilege and sensitive information disclosure on the targeted system.

RISK: Medium Risk

Medium Risk

16 May 2022

Ubuntu Linux Kernel Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Ubuntu Linux Kernal. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, denial of service, security restriction bypass and information disclosure on the targeted system.

RISK: Medium Risk

Medium Risk

Featured Security Blog

Please sign them. Smart contracts?4 Apr 2022
What You Know about the Cyber Security of NFT11 Mar 2022
NFT Boom, How to Protect Your NFT Assets24 Jan 2022
Introduction of QR code attacks and countermeasures20 Jan 2022

What You Know about the Cyber Security of NFT

HKCERT Releases New Study to Raise Security Awareness of Wi-Fi Devices

Enterprise VPN Security Guideline

Events / Trainings

FEATURED

Build a Secure Cyberspace 2022 "Fact Check After Receiving, Think Twice Before Sharing" Folder Design Contest

11 Mar 2022 - 4 Jul 2022

Learn More

11 Mar 2022

Build a Secure Cyberspace 2022 "Fact Check After Receiving, Think Twice Before Sharing" Folder Design Contest

14 Jun 2022

Python "Kungfu" for Cyber Security Testing, Threat Intelligence and Automation

Time: 09:30 - 17:00 Venue: 1/F, HKPC Building, 78 Tat Chee Avenue, Kowloon, Hong Kong

21 Jun 2022

Pentest "Kungfu" - Advanced Cyber Security Exploit Workshop

Time: 09:30 - 17:00 Venue: 1/F, HKPC Building, 78 Tat Chee Avenue, Kowloon, Hong Kong

28 Jun 2022

Cloud Security Certification | CCSP® – Certified Cloud Security Professional Official Training

Time: 09:00 – 18:00 (40 hours in total) Venue: Zoom, 1/F, HKPC Building, 78 Tat Chee Avenue, Kowloon, Hong Kong

Statistics

The figure for each type of cyber attack is aggregated by the security incident reported to us. This dataset starts from Jan 2018 to current month. To learn more, please click here.

 

17671

+

Botnet

12893

+

Phishing

4723

+

Malware

175

+

Web Defacement/Intrusion

118

+

Distributed Denial-of-service

2491

+

Others

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY