Hack me if you can episode 2Play Slide Video

Hack me if you can episode 2【Secure your cloud service to prevent information leakage】

Security professional Chi On will share the security tips of configuring a secure cloud and how to ensure cloud security

Hack me if you can episode 1Play Slide Video

Hack me if you can episode 1【Security of Remote work and Video Conferencing】


In this episode, you can learn how to protect yourself when working remotely. It includes the benefits of data encryption and the security tips for remote working as well as the video conferencing

Hong Kong Computer Emergency Response Team Coordination Centre

Centre for coordination of computer security incident response for local enterprises and Internet Users.


Facilitate information disseminating, provide advices on preventive measures against security threats and to promote information security awareness

Learn more

What Are You Looking for

Top Search:
Ransomware
Phishing
SolarWinds
Flash Player
VPN

Highlights

Security BulletinRISK: Extremely High Risk

Microsoft Monthly Security Update (Jan 2021)

Published on 13 Jan 2021

Extremely High Risk
Security Blog

End-of-Support for Adobe Flash Player after 31 December 2020

Published on 16 Dec 2020

Security Blog

Patch FortiOS SSL VPN Vulnerability (CVE-2018-13379) Immediately

Published on 8 Dec 2020

Security Guideline

Personal VPN Security Guideline

Published on 24 Nov 2020

Security Guideline

Enterprise VPN Security Guideline

Published on 9 Nov 2020

Security Blog

HKCERT proposes 10 measures to secure Zoom Meetings

Published on 2 Apr 2020

Our Core Services

Security Alert Monitoring and Early Warning

Security Alert Monitoring and Early Warning

Monitor security vulnerability and development of viruses & worms. When necessary, we issue alerts to warn the public to mitigate the impact of these threats.

Learn More
Incident Report and Response

Incident Report and Response

Provide free 24-hour hotline services for incident reporting and give advice on incident response and recovery. All the reported incidents will be kept confidential. For cross-border incidents, we can seek assistance from overseas CERT teams.

Learn More
Publication of Security Guidelines and Information

Publication of Security Guidelines and Information

Publish security alerts, security guidelines, infosec express and news on our web site. We also publish monthly security newsletter to subscribers. The information is provided in both English and Chinese

Learn More
Promotion of Information Security Awareness

Promotion of Information Security Awareness

Organize free seminars and briefings to promote information security awareness among the general public.

Learn More

Security Bulletins

18 Jan 2021

Joomla! Multiple Vulnerabilities

Multiple vulnerabilities were identified in Joomla!. A remote attacker could exploit some of these vulnerabilities to trigger information disclosure and cross-site scripting on the targeted system.

RISK: Medium Risk

Medium Risk

18 Jan 2021

SUSE Kernel Multiple Vulnerabilities

Multiple vulnerabilities were identified in SUSE Kernel, a remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege and remote code execution on the targeted system.

RISK: Medium Risk

Medium Risk

18 Jan 2021

Juniper Junos OS Denial of Service Condition Vulnerability

A vulnerability was identified in Juniper Junos OS, a remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.

RISK: Medium Risk

Medium Risk

18 Jan 2021

NetApp Products Multiple Vulnerabilities

Multiple vulnerabilities were identified in NetApp Products, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, obtain sensitive information and data manipulation on the targeted system.

RISK: Medium Risk

Medium Risk

18 Jan 2021

F5 BIG-IP Security Restriction Bypass Vulnerability

A vulnerability was identified in F5 BIG-IP, a remote attacker could exploit this vulnerability to trigger security restriction bypass on the targeted system.

RISK: Medium Risk

Medium Risk

18 Jan 2021

GitLab Multiple Vulnerabilities

Multiple vulnerabilities were identified in GitLab, a remote attacker could exploit some of these vulnerabilities to trigger information disclosure and bypass security restriction on the targeted system.

RISK: Medium Risk

Medium Risk

15 Jan 2021

Palo Alto PAN-OS Information Disclosure Vulnerabilities

Multiple vulnerabilities was identified in Palo Alto PAN-OS, a remote user could exploit these vulnerabilities to trigger information disclosure on the targeted system.

RISK: Medium Risk

Medium Risk

15 Jan 2021

Juniper Junos OS Multiple Vulnerabilities

Multiple vulnerabilities were identified in Juniper Junos OS, a remote attacker could exploit some of these vulnerabilities to perform denial of service, remote code execution, elevation of privilege and information disclosure on the targeted system.

RISK: Medium Risk

Medium Risk

13 Jan 2021

Adobe Monthly Security Update (Jan 2021)

Adobe has released monthly security update for their products:   Vulnerable Product Risk Level Impacts Notes Details (including CVE) Adobe Photoshop Low Risk Remote Code Execution   APSB21-01 Adobe Illustrator Medium Risk Remote Code Execution   APSB21...

RISK: Medium Risk

Medium Risk

13 Jan 2021

Microsoft Monthly Security Update (Jan 2021)

Microsoft has released monthly security update for their products:   Vulnerable Product Risk Level Impacts Notes Windows Medium Risk Remote Code Execution Elevation of Privilege Information Disclosure Security Restriction Bypass Denial of Service   Microsoft Office Medium Risk ...

RISK: Extremely High Risk

Extremely High Risk

Featured Security Blog

End-of-Support for Adobe Flash Player after 31 December 202016 Dec 2020
Case Study on Bitcoin Scam Incident - A Combined Social Engineering and Privilege Escalation Attacks17 Nov 2020
Identity Theft Protection for Social Media and Instant Messaging Accounts28 Oct 2020
Ransomware: Double Extortion Attacks Continued - Intrusion via Exploiting VPN Gateway Vulnerability13 Oct 2020
HKCERT Releases New Study to Raise Security Awareness of ZigBee Devices

HKCERT Releases New Study to Raise Security Awareness of ZigBee Devices

HKCERT Releases New Study to Raise Security Awareness of Wi-Fi Devices

HKCERT Releases New Study to Raise Security Awareness of Wi-Fi Devices

Enterprise VPN Security Guideline

Enterprise VPN Security Guideline

Events / Trainings

FEATURED

Build a Secure Cyberspace “Secure Use of Mobile Devices” Webinar cum Sticker Design Contest Award Ceremony

5 Feb 2021

Time: AM Session: 09:30 - 12:45 (Online platform is ready at 09:00) ; PM Session: 14:30 - 17:30 (Online platform is ready at 14:00) Venue: Webinar (Broadcast by Zoom)

Learn More

23 Dec 2020

Cyber Security Competition 2020/21

25 Jan 2021

Cybersecurity Certification | CISSP® – Certified Information Systems Security Professional Official Training

Time: 09:00 - 18:00 Venue: Zoom

1 Feb 2021

Python "Kungfu" for Cyber Security Testing, Threat Intelligence and Automation

Time: 09:30 - 17:00 Venue: 1/F, HKPC Building, 78 Tat Chee Avenue, Kowloon, Hong Kong

5 Feb 2021

Build a Secure Cyberspace “Secure Use of Mobile Devices” Webinar cum Sticker Design Contest Award Ceremony

Time: AM Session: 09:30 - 12:45 (Online platform is ready at 09:00) ; PM Session: 14:30 - 17:30 (Online platform is ready at 14:00) Venue: Webinar (Broadcast by Zoom)

Statistics

The figure for each type of cyber attack is aggregated by the security incident reported to us. This dataset starts from Jan 2018 to current month. To learn more, please click here.

 

12859

+

Botnet

8171

+

Phishing

4581

+

Malware

143

+

Web Defacement/Intrusion

107

+

Distributed Denial-of-service

2024

+

Others

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY