Hong Kong Computer Emergency Response Team Coordination Center

“Fight Ransomware” Webpage

Introducing the New “Fight Ransomware” Webpage

To keep pace with the changes in ransomware attacks, HKCERT recently consolidated the ransomware attack techniques, prevention and handling procedures to create a new dedicated “Fight Ransomware ” webpage.

Learn more

“Fight Ransomware” Webpage
Check your cyber security readiness

Introducing "Check your Cyber Security Readiness" Online Assessment Tool

• Improved user experience
• Enhanced usability
• Better reporting

Learn more

Check your cyber security readiness
All 4 episodes of the 【Hack me if you can】animation series are now available

All 4 episodes of the 【Hack me if you can】animation series are now available

Focusing on hacker Ah Keung’s repeated attempts to hack into SME owner Ah Chun’s systems, and how Chun’s friend, Chi On, helps repel the attacks, the stories are light-hearted and down-to-earth.

Learn more

All 4 episodes of the 【Hack me if you can】animation series are now available
HKPC Urges Enterprises for Cyber Security Strategy for the New Normal and New Technologies

HKPC Urges Enterprises for Cyber Security Strategy for the New Normal and New Technologies

The Hong Kong Productivity Council (HKPC) today urged enterprises to quickly put in place cyber security strategy for the new normal and new technologies, in order to combat an anticipated surge in cyber attacks in 2021 arising from accelerated digital transformation amid the COVID-19 pandemic and the use of emerging technologies such as 5G communications, Internet of Things (IoT) and AI.

Learn more

HKPC Urges Enterprises for Cyber Security Strategy for the New Normal and New Technologies
Hong Kong Computer Emergency Response Team Coordination Centre

Centre for coordination of computer security incident response for local enterprises and Internet Users


Facilitate information disseminating, provide advices on preventive measures against security threats and to promote information security awareness

Learn more

What Are You Looking for

Top Search:
Capture the Flag
Ransomware
Phishing
Kaseya
VPN

Highlights

Security Blog

Introducing the New “Fight Ransomware” Webpage

Published on 19 Nov 2021

Security Blog

OWASP Top 10-2021 is Now Released

Published on 4 Oct 2021

Security Blog

“HKT Hong Kong Enterprise Cyber Security Readiness Index 2021” Up 2.7 Points to 49.6 Both Enterprises and Employees Are Urged to Strengthen Cyber Security Awareness to Defend Against Cyber Attacks Amid Rampant Phishing Emails

Published on 29 Sep 2021

Security Blog

HKCERT Urges Microsoft Windows Users to be Vigilant Against Malicious Exploit of Critical Vulnerability

Published on 15 Sep 2021

Security Blog

Introducing “Check Your Cyber Security Readiness” Online Self-Assessment Tools

Published on 7 Sep 2021

Security Blog

Patch Vulnerabilities in Remote Access and Remote Storage Now

Published on 1 Sep 2021

Security Blog

Patch FortiOS SSL VPN Vulnerability (CVE-2018-13379) Immediately

Published on 8 Dec 2020

Security Guideline

Personal VPN Security Guideline

Published on 24 Nov 2020

Security Guideline

Enterprise VPN Security Guideline

Published on 9 Nov 2020

Our Core Services

Security Alert Monitoring and Early Warning

Monitor security vulnerability and development of viruses & worms. When necessary, we issue alerts to warn the public to mitigate the impact of these threats.

Learn More

Incident Report and Response

Provide free 24-hour hotline services for incident reporting and give advice on incident response and recovery. All the reported incidents will be kept confidential. For cross-border incidents, we can seek assistance from overseas CERT teams.

Learn More

Publication of Security Guidelines and Information

Publish security alerts, security guidelines, infosec express and news on our web site. We also publish monthly security newsletter to subscribers. The information is provided in both English and Chinese

Learn More

Promotion of Information Security Awareness

Organize free seminars and briefings to promote information security awareness among the general public.

Learn More

Security Bulletins

26 Nov 2021

NetApp Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in NetApp Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure and data manipulation on the targeted system.

RISK: Medium Risk

Medium Risk

15 Nov 2021

Linux Kernel Multiple Vulnerabilities

Multiple vulnerabilities were identified in Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure and data manipulation on the targeted system.   [Updated on 2021-11-25...

RISK: Medium Risk

Medium Risk

10 Nov 2021

Adobe Monthly Security Update (November 2021)

Adobe has released monthly security update for their products:   [Updated on 2021-11-25] Updated the impacts of Adobe Creative Cloud Desktop Application   Vulnerable Product Risk Level Impacts Notes Details (including CVE) Adobe RoboHelp Server Medium Risk...

RISK: Medium Risk

Medium Risk

10 Nov 2021

Microsoft Monthly Security Update (November 2021)

Microsoft has released monthly security update for their products:   Vulnerable Product Risk Level Impacts Notes Windows High Risk Elevation of Privilege Information Disclosure Remote Code Execution Denial of Service Security Restriction Bypass [Updated on 2021-11-...

RISK: High Risk

High Risk

23 Nov 2021

Microsoft Edge Multiple Vulnerabilities

Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, spoofing and security restriction bypass on the targeted system.

RISK: Medium Risk

Medium Risk

17 Nov 2021

Fortinet Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in Fortinet Products, a remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure, security restriction bypass, denial of service condition, elevation of privilege and cross-site scripting on the targeted system.

RISK: Medium Risk

Medium Risk

17 Nov 2021

Zoom Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in Zoom Products, a remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure, security restriction bypass and denial of service condition on the targeted system.

RISK: Medium Risk

Medium Risk

16 Nov 2021

Google Chrome Multiple Vulnerabilities

Multiple vulnerabilities were identified in Google Chrome, a remote attacker could exploit some of these vulnerabilities to trigger remote code execution and security restriction bypass on the targeted system.

RISK: Medium Risk

Medium Risk

15 Nov 2021

NetApp Products Denial of Service Vulnerability

A vulnerability has been identified in NetApp Products. A remote user can exploit this vulnerability to trigger denial of service condition, sensitive information disclosure and data manipulation on the targeted system.

RISK: Medium Risk

Medium Risk

15 Nov 2021

Palo Alto PAN-OS Remote Code Execution Vulnerability

A vulnerability has been identified in Palo Alto PAN-OS. A remote user can exploit this vulnerability to trigger remote code execution on the targeted system.

RISK: Medium Risk

Medium Risk

Featured Security Blog

Introducing the New “Fight Ransomware” Webpage19 Nov 2021
OWASP Top 10-2021 is Now Released4 Oct 2021
“HKT Hong Kong Enterprise Cyber Security Readiness Index 2021” Up 2.7 Points to 49.6 Both Enterprises and Employees Are Urged to Strengthen Cyber Security Awareness to Defend Against Cyber Attacks Amid Rampant Phishing Emails 29 Sep 2021
Introducing “Check Your Cyber Security Readiness” Online Self-Assessment Tools7 Sep 2021

HKCERT Releases New Study to Raise Security Awareness of ZigBee Devices

HKCERT Releases New Study to Raise Security Awareness of Wi-Fi Devices

Enterprise VPN Security Guideline

Events / Trainings

FEATURED

Hong Kong Cyber Security New Generation Capture-The-Flag Challenge 2021 Webinar cum Presentation Ceremony

10 Dec 2021

Time: 09:30 - 17:00 Venue: Webinar – Participant shall prepare his/her own electronic device (e.g. Desktop, Notebook or Mobile, etc.) with Internet access.

Learn More

25 Nov 2021

Security Big Data & A.I. Analytic (SBDA) Training

Venue: Online Broadcast (HKPC Live)

2 Dec 2021

Red / Blue Team Pentest Kungfu Series Training

Time: 09:30 - 17:00 Venue: 1/F, HKPC Building, 78 Tat Chee Avenue, Kowloon, Hong Kong

10 Dec 2021

Hong Kong Cyber Security New Generation Capture-The-Flag Challenge 2021 Webinar cum Presentation Ceremony

Time: 09:30 - 17:00 Venue: Webinar – Participant shall prepare his/her own electronic device (e.g. Desktop, Notebook or Mobile, etc.) with Internet access.

Statistics

The figure for each type of cyber attack is aggregated by the security incident reported to us. This dataset starts from Jan 2018 to current month. To learn more, please click here.

 

15763

+

Botnet

11343

+

Phishing

4671

+

Malware

149

+

Web Defacement/Intrusion

114

+

Distributed Denial-of-service

2302

+

Others

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY