Security Blog

Taking Security Best Practice During Festive Season

As the year comes to a close, many people start planning their long holidays to spend time with family and friends, purchase new items, or travel abroad. Online services have gained immense popularity during this time. However, it is important to remain vigilant about...

Release Date: 17 Dec 2024 2082 Views

HKPC Urges Enterprises to Adopt "Security by Design" to Sharpen IT Security

The Hong Kong Productivity Council (HKPC) today urged enterprises to adopt “security by design” in IT security to stem data breaches and fend off cyber attacks targeting personal and financial data. HKPC issued the advice after its Hong Kong Computer Emergency Response Team Coordination...

Release Date: 22 Jan 2019 4020 Views

Favourite Security Reads of the Fortnight (18 Jan 2019)

Favourite Security Reads of the Fortnight (18 Jan 2019) . "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected]. Below is the favourite security reads of this fortnight. Article written by HKCERT on Hong Kong Economic Times: 黑客勒索求財網民兩招自保 (2019-01-11, Chinese) Articles that we like: A photo will unlock many Android phones using facial recognition (Naked Security, 2019-01-08) Does A Board...

Release Date: 18 Jan 2019 2814 Views

Security Advisory: Online Account Security

A security researcher, Troy Hunt, found that 87GB dump of user credential data were recently posted to an underground forum. The data included 773 million unique email addresses and 21 million unique passwords, and some passwords were in plain text. There was indeed no...

Release Date: 18 Jan 2019 4547 Views

Favourite Security Reads of the Fortnight (4 Jan 2019)

Favourite Security Reads of the Fortnight (4 Jan 2019) . "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected]. Below is the favourite security reads of this fortnight. Article written by HKCERT on Hong Kong Economic Times: 網絡安全7攻略助中小企評估 (2018-12-07, Chinese) 身份監察服務無助防洩私隱 (2018-12-14, Chinese) 加強網絡保安...

Release Date: 4 Jan 2019 3511 Views

Advice to Email Administrators for Preventing Extortion Email

Recently, HKCERT received a number of reports from students and alumni of a local university who received extortion emails asking for ransom. The content of the extortion email is similar to the one we seen before. The email sender pretends to be the recipient's email...

Release Date: 21 Dec 2018 4591 Views

Favourite Security Reads of the Fortnight (21 Dec 2018)

Favourite Security Reads of the Fortnight (21 Dec 2018) . "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to hkcert@hkcert....

Release Date: 21 Dec 2018 3557 Views

Favourite Security Reads of the Fortnight (7 Dec 2018)

Favourite Security Reads of the Fortnight (7 Dec 2018) . "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected]. Below is the favourite security reads of this fortnight. Article written by HKCERT on Hong Kong Economic Times: 杜絕保安漏洞由設計程式開始 (2018-11-16, Chinese) 遠端桌面連綫 4招確保安全 (2018-11-23, Chinese) 網上漏洞多慎...

Release Date: 7 Dec 2018 3686 Views

Best Practice Guide of Remote Desktop (for corporate administrator)

Remote Desktop is a useful tool for remote control a computer, but misconfigured Remote Desktop is risky. Using weak password to protect Internet accessible remote desktop and sharing password to the technical support vendor are some of these examples. They could lead to server...

Release Date: 5 Dec 2018 3902 Views

The die was cast: Always handle customer information with caution

Again, another data leakage incident was found from a famous credit scoring company in Hong Kong. Someone might obtain your credit scoring report by abusing your personal information e.g. HKID, and pass the authentication process easily. Failed to protect customer information is a...

Release Date: 29 Nov 2018 3418 Views

Favourite Security Reads of the Fortnight (16 Nov 2018)

Favourite Security Reads of the Fortnight (16 Nov 2018) . "Favourite Security Reads of the Fortnight". Every two weeks we share news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected]. Below is the favourite security reads of this fortnight. Article written by HKCERT on Hong Kong Economic Times: 航空公司洩私隱企業借鑑減風險 (2018-11-02, Chinese) 資料外洩恐被用作網絡攻擊 (2018-11-09, Chinese) Articles that we like: ...

Release Date: 16 Nov 2018 4071 Views