Security Blog

CyberSecurity Tips for Travelling

It's the summertime travel season. While you are on holiday, remember that hackers don't take time off. HKCERT has prepared the following travel tips to help you enjoy your trip and keep your network safe: 1. Protect your devices and keep...

Release Date: 11 Jul 2024 1430 Views

Weaponisation of AI: The New Frontier in Cybersecurity

The advent of artificial intelligence (AI) ushers in an era of unprecedented technological advancements, assisting various industries for further development. However, alongside these benefits, the misuse of artificial intelligence has also facilitated hackers and been "weaponised" by them to carry out cyber...

Release Date: 10 Jul 2024 2257 Views

Advices on the security concerns of the PopVote System

HKCERT is aware of the recent security issues found in the PopVote polling system deployed in early February 2017. Because of the security risks of exposure of Telegram data of the users, we advise the public not to use the system until the insecure implementation, which...

Release Date: 9 Feb 2017 5901 Views

Vulnerable ownCloud/Nextcloud based private cloud servers found in HK

HKCERT has received reports from CERT-Bund, the federal CERT of Germany, about vulnerable installations of ownCloud and Nextcloud found in Hong Kong. ownCloud and Nextcloud are both software suites for running self-hosted cloud instances for data synchronization and sharing, i.e...

Release Date: 8 Feb 2017 2752 Views

Favourite Security Reads of the Week (3 Feb 2017)

Favourite Security Reads of the Week (3 Feb 2017) . "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected]. Below is the Favourite Security Reads of this Week. 網絡威脅3大預測助趨吉避凶 (Written by HKCERT on Hong Kong Economic Times, 2017-02-03, Chinese) 手機惡意軟件狙擊Google用戶 (Written by HKCERT on Hong Kong...

Release Date: 3 Feb 2017 1333 Views

HKCERT Security Newsletter (February 2017 Issue)

Cover Story HKPC Warns of Rising Trend of Cybercrime-as-a-Service Hong Kong Security Watch Report (Q4 2016) Visbot infected HK websites notified risk of credit card data leakage, and release of Magento security guide Be aware...

Release Date: 1 Feb 2017 1411 Views

Favourite Security Reads of the Week (27 Jan 2017)

Favourite Security Reads of the Week (27 Jan 2017) . "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected]. Below is the Favourite Security Reads of this Week. 「雪崩」網絡攻擊港亦受累 (Written by HKCERT on Hong Kong Economic Times, 2017-01-25, Chinese) Innovation and exploitation fuel DDoS attack landscape (Help Net Security, 2017-01-25) Privacy Commissioner...

Release Date: 27 Jan 2017 1630 Views

Be aware of DDoS extortion

HKCERT was aware that the DD4BC (Distributed Denial of Service for Bitcoin) attacks targeting SME were back to Hong Kong in Jan 2017. To minimize the potential security risk, user should take proactive actions to protect their IT systems. What happened? Recently some...

Release Date: 26 Jan 2017 2977 Views

Be aware of ransomware targeting NoSQL Databases

Be aware of ransomware targeting NoSQL Databases HKCERT was aware that a rising trend of ransomware attack targeting publicly accessible NoSQL Databases in Jan 2017. To minimize the potential security risk, user should take proactive actions for these online Databases. What happened? Recently a cyber...

Release Date: 20 Jan 2017 3320 Views

Favourite Security Reads of the Week (20 Jan 2017)

Favourite Security Reads of the Week (20 Jan 2017) . "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected]. Below is the Favourite Security Reads of this Week. 了解來電攔截App 免私隱外洩 (Written by HKCERT on Hong Kong Economic Times, 2017-01-13, Chinese) Imminent: Non-HTTPS Sites Labeled “Not Secure” by Chrome (Wordfence, 2017-01...

Release Date: 20 Jan 2017 1477 Views

HKPC Warns of Rising Trend of Cybercrime-as-a-Service

With the growing trend of “cybercrime-as-a-service”, information security experts at the Hong Kong Productivity Council (HKPC) today (16 January 2017) urged enterprises and the public to strengthen their guard against a surge in attacks from ransomware, and...

Release Date: 16 Jan 2017 1570 Views

Visbot infected HK websites notified risk of credit card data leakage, and release of Magento security guide

In Dec 2016, a Dutch information security researcher (gwillem.gitlab.io) has released a research report on websites installed with Magento, a popular eCommerce application for online transaction, infected with ‘Visbot’ malware. The researcher warned vulnerable Magento websites injected with...

Release Date: 16 Jan 2017 2059 Views