Security Blog

While the recent intrusion of an enterprise may have stolen the limelight, let us not forget about the spread of CrySIS/Dharma ransomware. HKCERT is aware of news reports that a school fell victim to infection yesterday, resulting in data being encrypted and inaccessible. In...

HKCERT noticed there were reports that an enterprise was intruded by hackers and the customer data files were locked. The enterprise was ransomed by hackers via emails as well.   HKCERT reminds enterprises that, besides financial data, personal data is also a target of attackers. Enterprises...

  Favourite Security Reads of the Week (3 Nov 2017) .   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected].   Below is the Favourite Security Reads of this Week.   黑客截劫 交易勿用公共WiFi (Written by HKCERT on Hong Kong Economic Times, 2017-10-27, Chinese) Injection Attacks: The Least Glamorous Attack Is One of the Most Threatening (SecurityIntelligence, 2017...

  Cover Story Hong Kong Security Watch Report (2017 Q3) New Ransomware "BadRabbit" Beware of IoT Botnet "Reaper" Beware of payment online using credit card Contribute to fight on cybercrime, build DNSSEC Hot Topic Hong Kong Google Play Store...

  Favourite Security Reads of the Week (27 Oct 2017) .   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected].   Below is the Favourite Security Reads of this Week.   網上交易自保 網站安全逐項數 (Written by HKCERT on Hong Kong Economic Times, 2017-10-20, Chinese) "Don't Mine Me" – Coinhive (Trustwave, 2017-10-13) Make Security...

Domain Name System (DNS) is widely used on the Internet. It provides domain name and IP address mapping, making human access to Internet become easy without the need to remember IP address. DNS was invented in 1983. At that time, security design was...

A new ransomware is widely spreading in Russia, Ukraine and several European regions. The name of the ransomware is BadRabbit, similar to NotPetya. So far, there is an identified infection scenario: Means of distribution and impactsA fake Adobe Flash installer may be downloaded to...

HKCERT is aware that a security vendor has published a research on an IoT botnet, named "Reaper" or "IoTroop", which may have compromised million of IoT devices such as router. The operation of the botnet is similar to that of the infamous Mirai botnet...

  Favourite Security Reads of the Week (20 Oct 2017) .   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected].   Below is the Favourite Security Reads of this Week.   妥善處理舊裝置 免資料外洩 (Written by HKCERT on Hong Kong Economic Times, 2017-10-13, Chinese) Phishing Emails that Invoke Fear, Urgency, Get the Most Clicks (Dark Reading, 2017-10...

HKCERT noticed that there were reports from credit card users that unauthorized credit card transactions emerged after they used their credit card online on a particular website. HKCERT reminds credit card users be careful when performing online transactions and beware of the followings: 1.    Make sure the...