Skip to main content

Special Announcement

  • 25 Jun 2024

    Announcement for Change of Chinese Name

    Please note that the Chinese name of HKCERT is changed from 「香港電腦保安事故協調中心」 to 「香港網絡安全事故協調中心」 with immediate effect.

    The English name, abbreviation, web address and email address remained unchanged.

Security Blog

Filter by:

Favourite Security Reads of the Fortnight (1 Feb 2019)

  Favourite Security Reads of the Fortnight (1 Feb 2019)   "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected].   Below is the favourite security reads of this fortnight. Article written by HKCERT on Hong Kong Economic Times: 保障智能手機 6招助減風險 (2019-01-18, Chinese) Articles that we like:  10 Steps to Creating a Secure IT Environment (Alien Vault, 2019-01-23) Information Security Manager Roles and...
Release Date: 1 Feb 2019 3758 Views

HKCERT provides open data for the count of monthly security incidents

In December 2018, over 80 government bureaux and departments released their first annual open data plan. HKCERT supports the initiative, and follows suit to release ours. The dataset contains the count of different types of security incidents reported every month. It is released monthly starting...
Release Date: 25 Jan 2019 3985 Views

Security Advisory: Securing DNS Infrastructure

In late 2018 and early 2019, Talos [1] and FireEye [2] have released alerts on emerging DNS hijacking attacks. Following the alerts, Cybersecurity and Infrastructure Security Agency (CISA) of US has issued an emergency directive [3] to US government...
Release Date: 25 Jan 2019 5347 Views

Mind your Webcam, Protect your Privacy

Among all IoT devices, webcam is one of the most popular IoT devices used in Hong Kong. However, these devices may not be installed securely in household.   In August 2016, there was a public uproar over an exhibition in the UK showing still images of...
Release Date: 24 Jan 2019 4012 Views

HKPC Urges Enterprises to Adopt "Security by Design" to Sharpen IT Security

  The Hong Kong Productivity Council (HKPC) today urged enterprises to adopt “security by design” in IT security to stem data breaches and fend off cyber attacks targeting personal and financial data.   HKPC issued the advice after its Hong Kong Computer Emergency Response Team Coordination...
Release Date: 22 Jan 2019 3866 Views

Favourite Security Reads of the Fortnight (18 Jan 2019)

 Favourite Security Reads of the Fortnight (18 Jan 2019) .  "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected].  Below is the favourite security reads of this fortnight. Article written by HKCERT on Hong Kong Economic Times: 黑客勒索求財 網民兩招自保 (2019-01-11, Chinese) Articles that we like:  A photo will unlock many Android phones using facial recognition (Naked Security, 2019-01-08) Does A Board...
Release Date: 18 Jan 2019 2693 Views

Security Advisory: Online Account Security

A security researcher, Troy Hunt, found that 87GB dump of user credential data were recently posted to an underground forum. The data included 773 million unique email addresses and 21 million unique passwords, and some passwords were in plain text. There was indeed no...
Release Date: 18 Jan 2019 4318 Views

Favourite Security Reads of the Fortnight (4 Jan 2019)

  Favourite Security Reads of the Fortnight (4 Jan 2019) .   "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected].   Below is the favourite security reads of this fortnight.   Article written by HKCERT on Hong Kong Economic Times: 網絡安全7攻略 助中小企評估 (2018-12-07, Chinese) 身份監察服務 無助防洩私隱 (2018-12-14, Chinese) 加強網絡保安...
Release Date: 4 Jan 2019 3384 Views

Advice to Email Administrators for Preventing Extortion Email

Recently, HKCERT received a number of reports from students and alumni of a local university who received extortion emails asking for ransom. The content of the extortion email is similar to the one we seen before. The email sender pretends to be the recipient's email...
Release Date: 21 Dec 2018 4398 Views

Favourite Security Reads of the Fortnight (21 Dec 2018)

  Favourite Security Reads of the Fortnight (21 Dec 2018) .   "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to hkcert@hkcert....
Release Date: 21 Dec 2018 3405 Views