InfoSec: Search by News & Events

2013-12-12

Meeting Your New Cyber Enemies from Within – A Discussion of Nation States Sponsored Malware and Emerging Threats of the Net

Organised by ISOC Hong Kong

2013-12-7

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" - Proper use of online resources and social networking Protect personal data while making new friends

Organised by Office of the Privacy Commissioner for Personal Data / Internet Professional Association - OSP Alliance / Information Systems Audit and Control Association, China Hong Kong Chapter / Hong Kong Public Libraries of LCSD

2013-12-2

Seminar: Protecting from Targeted Attacks - Build a Secure Cyberspace 2013

Organised by Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) / Office of the Government Chief Information Officer (OGCIO) / Hong Kong Police Force (HKPF)

2013-11-30

Safe and Smart Social Networking

Organised by Hong Kong Public Libraries of LCSD / Internet Professional Association - OSP Alliance

2013-11-30

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" - 3 steps for avoiding 5 Internet privacy traps

2013-11-29

Phishing Attack - Fraudulent website: http://www.kdbaonline.com

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "www.kdbaonline.com". The website looks similar to the official website of Korea Development Bank (KDB) which maintains a local representative office in Hong Kong and wholly owns KDB Asia Limited (KDBA), a restricted licence bank in Hong Kong. KDB and KDBA have clarified that they have no connection with the fraudulent website.

2013-11-28

SecureHongKong 2013 – Know What You Don't Know

Organised by ISC2 / ISOC Hong Kong / Professional Information Security Association / Cloud Security Alliance

2013-11-27

Phishing Attack - Fraudulent website: http://www.rbsfx.co.uk

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "http://www.rbsfx.co.uk". The website looks similar to the official website of The Royal Bank of Scotland public limited company (RBS). RBS has clarified that it has no connection with the fraudulent website.

2013-11-20

Phishing Attack - Fraudulent website: http://xzxtys.com/zl/secure.anz.com.htm

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "http://xzxtys.com/zl/secure.anz.com.htm". The website looks similar to the official website of Australia and New Zealand Banking Group Limited (ANZ). ANZ has clarified that it has no connection with the fraudulent website.

2013-11-20

Phishing Attack - Fraudulent emails purporting to be issued by the Treasury

The Treasury wishes to alert members of the public to fraudulent emails purporting to be issued from the email account "ra@try.gov.hk". The emails have a document containing computer viruses attached. The Treasury has no connection with the fraudulent emails and has reported the case to the Police for further investigation. Members of the public are reminded not to open any suspicious emails.

2013-10-10 to

2013-11-18

Talk Series (1-7) on Information Technology Education

Organised by Committee on Home-School Co-operation

2013-11-8

HKCERT Cyber Incident Response Drill Strengthens Local Readiness against Targeted Attacks

With a surge in targeted attacks, the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) conducted a territory-wide drill on 8 November 2013, to raise the readiness of local critical Internet infrastructure providers and mobile network operators against such attacks. Some government departments also participated in the drill to test the effectiveness of their incident handling procedures.

2013-11-2

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" - Privacy traps in smartphones

2013-10-29

Phishing Attack - Fraudulent website: http://ebank-hangseng.com

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "http://ebank-hangseng.com". The website looks similar to the official website of Hang Seng Bank, Limited (HSB). HSB has clarified that it has no connection with the fraudulent website.

2013-10-25

Enterprise Information Security Summit

Organised by LinuxPilot / ISC2 / Professional Information Security Association / Cloud Security Alliance

2013-10-21 to

2013-10-25

Information Security Summit 2013

Organised by Cloud Security Alliance / High Technology Crime Investigation Association / Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) / Hong Kong Computer Society / Hong Kong Productivity Council / Information Security and Forensics Society / Information Systems Audit and Control Association / Professional Information Security Association

2013-10-24

Use of Foxy culminated in Data Leakage which got Out of Control

An investigation conducted by the Office of the Privacy Commissioner for Personal Data ("PCPD") concluded that two data breach incidents caused by Foxy were attributed to human error and did not constitute a contravention of the Personal Data (Privacy) Ordinance ("Ordinance") on the part of the data user, namely, the Hong Kong Police Force ("HKPF").

2013-10-23

HKPC Urges for Enhanced Security on Mobile and Cloud Technologies

With the growing use of cloud services on mobile devices, Mrs Agnes Mak, Executive Director of the Hong Kong Productivity Council (HKPC) urges Internet users, information security professionals and policy makers to step up efforts to tackle accompanying cyber threats.

2013-10-10

Phishing Attack - Fraudulent email purporting to be related to the Inland Revenue Department

The Inland Revenue Department today (October 10) alerted members of the public to fraudulent emails purportedly issued by the department from email accounts similar to xxx@ird.gov.hk. The emails include attached documents under the titles "Form_ird.gov.hk.zip", "File_2183065.zip", "File_4730881.zip", etc, which contain a computer virus. The department has no connection with the fraudulent emails and has reported the case to the Police for further investigation. Members of the public are reminded not to open any suspicious emails.

2013-10-8

Phishing Attack - Fraudulent email purporting to be related to the Treasury

The Treasury wishes to alert members of the public to fraudulent emails purporting to be issued by the department from the email account tabpay@try.gov.hk. The emails are attached with a document containing computer virus. The Treasury has no connection with the fraudulent emails and has reported the case to the Police for further investigation. Members of the public are reminded not to open any suspicious emails. LegCo to debate a motion on following up the matter on Mr Snowden's disclosure of the United States Government's hacking into the computer systems in Hong Kong.

2013-10-4

Phishing Attack - Fraudulent website: www.hk.honglb.com

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "www.hk.honglb.com". The website looks similar to the official website of Hong Leong Bank Berhad (HLB). HLB has clarified that it has no connection with the fraudulent website.

2013-9-9 to

2013-9-19

IT Workshops - "Enjoy Easy Life @ Internet"- Information Sharing and Security

Organised by Hong Kong Public Libraries of LCSD

2013-9-18

Seminar on Cloud Technology Application

Organised by Federation of Hong Kong Industries

2013-9-17

International commercial crime conference held in Hong Kong

A two-day international commercial crime conference entitled “E-Crimes Without Borders – E-Crimes Sans Frontieres” was opened at September 17 at the Hong Kong Police Headquarters.

2013-9-10

Rules and Regulations on IT and Fair Competition

Organised by Information Systems Audit and Control Association, China Hong Kong Chapter

2013-8-31

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" - How to avoid being searched by "human flesh search"

Organised by Office of the Privacy Commissioner for Personal Data

2013-8-30

Cyber Security Symposium 2013

Organised by Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) / Office of the Government Chief Information Officer (OGCIO) / Hong Kong Police Force (HKPF)

2013-8-30

Raid operation against contravention of Unsolicited Electronic Messages Ordinance

The Office of the Communications Authority (OFCA) conducted a raid operation yesterday (August 29) against a commercial facsimile sender at an industrial building in Kwun Tong for possible contravention of the Unsolicited Electronic Messages Ordinance (Cap. 593) (UEMO).

2013-8-25 to

2013-8-28

International Conference on CyberCrime and Computer Forensic 2013

Organised by City University of Hong Kong / The Chinese University of Hong Kong

2013-8-23

Phishing Attack - Fraudulent website: www.whbhgkg.com

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "www.whbhgkg.com". The website looks similar to the official website of Wing Hang Bank, Limited (WHB). WHB has clarified that it has no connection with the fraudulent website.

2013-8-14

Global Results from the first GPEN Internet Privacy Sweep

The Office of the Privacy Commissioner for Personal Data, joined force with 18 other privacy enforcement authorities from around the globe in announcing today the results of an international Internet Privacy Sweep exercise ("Sweep") to assess privacy issues related to the common theme of Privacy Practice Transparency in websites and smartphone applications ("Apps"). Transparency is a fundamental privacy principle common to privacy laws around the world.

2013-8-13

Investigation Report: Smartphone Application "Do No Evil" Seriously Intruded Personal Data Privacy

The Office of the Privacy Commissioner for Personal Data ("PCPD"), after an investigation, decided that a smartphone application known as "Do No Evil" ("the App"), which enabled search for target individuals' litigation and bankruptcy data, had seriously invaded privacy. The PCPD had issued an Enforcement Notice directing the database operator, Glorious Destiny Investment Limited ("GDI"), to cease supplying such data to the App. GDI has complied with this directive since 7 August 2013.

2013-8-13

Inadequate Transparency in Privacy Policy for Local Smartphone Applications

The Office of the Privacy Commissioner for Personal Data conducted a survey of 60 smartphone applications ("apps") developed by Hong Kong entities and found that their transparency in terms of privacy policy was generally inadequate. Only 60% of the apps provided Privacy Policy Statements ("PPS") and most of them did not explain what smartphone data they would access and the purposes for the access.

2013-8-7

Phishing Attack - Fraudulent website: www.wghgbkhk.com

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "www.wghgbkhk.com". The website looks similar to the official website of Wing Hang Bank, Limited (WHB). WHB has clarified that it has no connection with the fraudulent website.

2013-8-3

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" – Smart Ways to Use Computers and Internet Services

Organised by Office of the Privacy Commissioner for Personal Data

2013-8-2

HKCERT Calls for Heightened Security Measures against Cyber Threats

Amid increasing public concern over cyber threats, the local information security watchdog - the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) advises enterprises and Internet users to keep their security measures up to date, and guard against rising attacks on web servers and mobile devices. The HKCERT advice comes in the wake of surging computer hacking and botnet reports in the first six months of 2013. Among the 622 security incidents handled by HKCERT of the Hong Kong Productivity Council, over 51% came from botnet and hacking. The 94% increase in such attacks is an urgent call for preventive measures.

2013-7-17

Phishing Attack - Fraudulent website: www.whgbkhk.com

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "www.whgbkhk.com". The website looks similar to the official website of Wing Hang Bank, Limited (WHB). WHB has clarified that it has no connection with the fraudulent website.

2013-7-15

LegCo to debate a motion on following up the matter on Mr Snowden's disclosure of the United States Government's hacking into the computer systems in Hong Kong

The Legislative Council (LegCo) will hold a meeting this Wednesday (July 17) at 11am in the Chamber of the LegCo Complex. During the meeting, Members will debate a motion on following up the matter on Mr Snowden's disclosure of the United States Government's hacking into the computer systems in Hong Kong.

2013-7-9

Phishing Attack - Fraudulent email purporting to be related to China CITIC Bank International Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to an e-mail purporting to be sent from China CITIC Bank International Limited (CNCBI). The e-mail requests customers to use an embedded hyperlink to connect to a fraudulent website (chinaciticbank.jimdo.com/online-banking/) and verify their account information by entering their Internet banking account's user name and password. The fraudulent website looks similar to the bank's Internet banking logon webpage. CNCBI has clarified that it has not sent these e-mails to its customers and has no connection with the fraudulent website. In addition, CNCBI does not have the policy of sending e-mails asking its customers to provide their passwords or verify their account information online.

2013-7-6

2013-7-3

LCQ5: Protection of freedom and privacy of communication of Hong Kong residents

A reply by the Secretary for Constitutional and Mainland Affairs, Mr Raymond Tam, to a question by the Hon Frederick Fung Kin-kee and in the Legislative Council.

2013-6-26

Information Security Showcase 2013

Organised by Hong Kong Productivity Council

2013-6-26

LCQ2: Information security

A reply by the Secretary for Security, Mr Lai Tung-kwok, to a question by the Hon Charles Peter Mok in the Legislative Council.

2013-6-21

The trend of Cloud Adoption & Why Encryption Matters

Organised by Professional Information Security Association

2013-6-20

LC: Principal officials made their concluding speeches in the motion for adjournment of Council on the topic "Cyber Security"

Secretary for Security and Secretary for Commerce and Economic Development made their concluding speeches in the motion for adjournment of Council on the topic "Cyber Security"

2013-6-19

Secretary for Security made the concluding speech in the "Building a safe city" motion debate

Secretary for Security made the concluding speech in the "Building a safe city" motion debate, information security was covered.

2013-6-18

Phishing Attack - Fraudulent emails purporting to be issued by HKMA (18-Jun-2013)

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to fraudulent emails purporting to be issued by the HKMA from the email account invoice@hkma.gov.hk. The HKMA has no connection with the fraudulent emails.

2013-6-17

LegCo to debate a motion for adjournment of Council on issue relating to cyber security

The Legislative Council (LegCo) will hold a meeting on Wednesday (June 19) at 11am in the Chamber of the LegCo Complex. During the meeting, Members will debate a motion for the adjournment of the Council under Rule 16(4) of the Rules of Procedure. The motion, to be moved by Mr Andrew Leung, states: "That this Council do now adjourn for the purpose of debating the following issue: cyber security."

2013-6-11

Phishing Attack - Suspected fraudulent website: http://www.cibgltd.com/cn/

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a suspected fraudulent website with the domain name "http://www.cibgltd.com/cn/". The website looks similar to the official website of Bank of China (Hong Kong) Limited (BOCHK) and China CITIC Bank International Limited (CNCBI). The website is operated by an alleged "China CITIC Investment Bank Corporation", which claims that it offers various banking services to members of the public in Hong Kong. BOCHK and CNCBI have clarified that they have no connection with the suspected fraudulent website.

2013-6-8

Be a smart user of the information and communications technology

Organised by Hong Kong Public Libraries of LCSD / Internet Professional Association - OSP Alliance

2013-6-1

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" - 3 steps for breaking 5 Internet privacy traps

Organised by Office of the Privacy Commissioner for Personal Data / Information Systems Audit and Control Association, China Hong Kong Chapter

2013-5-28 to

2013-5-29

The 14th Info-Security Conference 2013: Securing Business in an Unsecured World

Organised by e21 Eventnna & Questex

2013-5-7

The PCPD Commences to Study Privacy Policy of Local Smartphone Apps

The Office of the Privacy Commissioner for Personal Data (PCPD) joins the Global Privacy Enforcement Network (GPEN) to conduct an Internet Privacy Sweep from 6 May to 12 May 2013 to assess the openness and transparency of corporate data users in their collection and use of personal information online.

2013-5-4

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" – Smart Ways to Use Computers and Internet Services

Organised by Office of the Privacy Commissioner for Personal Data

2013-5-2

Phishing Attack - Fraudulent email purporting to be related to China Construction Bank (Asia) Corporation Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to an e-mail purporting to be sent from China Construction Bank (Asia) Corporation Limited (CCBA). The e-mail requests customers to use an embedded hyperlink to connect to a fraudulent website (http://users9.jabry.com/onlinesafewebhk/ccb/) and verify their account information by entering their Internet banking account's user name and password.

2013-4-25

Survey: Few Facebook Users Act on Privacy Protection PCPD published Leaflet on Smart Use of Social Networks

A privacy awareness survey on Facebook users conducted by the Office of the Privacy Commissioner for Personal Data (PCPD) found that over 80% of the respondents knew how to set access right to protect their personal data, but less than 40% did so. The survey also revealed that young people aged between 15 and 20 had the lowest level of awareness of the risk of losing control over their personal data on social networking sites.

2013-4-24

LCQ14: Access to computer with criminal or dishonest intent

A written reply by the Secretary for Security, Mr Lai Tung-kwok, to a question by the Hon Charles Peter Mok in the Legislative Council today at April 24.

2013-4-18

ISACA China Hong Kong Chapter Annual Conference

Organised by Information Systems Audit and Control Association, China Hong Kong Chapter

2013-4-13

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" – Smart Ways to Use Computers and Internet Services

Organised by Office of the Privacy Commissioner for Personal Data

2013-4-11

Seminar: "Secure Your Business Against Security Threats" Seminar

Organised by Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) / Office of the Government Chief Information Officer (OGCIO) / Hong Kong Police Force (HKPF)

2013-3-27

Phishing Attack - Fraudulent emails purporting to be issued by HKMA (27-Mar-2013)

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to fraudulent emails purporting to be issued by the HKMA from the email account hkma_invoice@hkma.gov.hk. The emails are attached with a document that might contain viruses. The HKMA has no connection with the fraudulent emails.

2013-3-26

The 5th InfoSecurity Summit 2013 - Hong Kong

Organised by

2013-3-21

Protecting Security and Privacy on the Cloud

Organised by ISOC Hong Kong

2013-3-8

Raid operations against contravention of Unsolicited Electronic Messages Ordinance

The Office of the Communications Authority (OFCA) successfully conducted raid operations yesterday (March 7) at a data centre located in Kwai Chung against two companies in relation to possible contravention of the Unsolicited Electronic Messages Ordinance (UEMO).

2013-3-2

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" – Smart Ways to Use Computers and Internet Services

Organised by Office of the Privacy Commissioner for Personal Data

2013-2-23

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" - How to avoid being searched by "human flesh search"

Organised by Office of the Privacy Commissioner for Personal Data / Internet Professional Association - OSP Alliance

2013-2-18

Phishing Attack - Fraudulent email purporting to be related to Australia and New Zealand Banking Group Limited

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to an e-mail purporting to be sent from Australia and New Zealand Banking Group Limited (ANZ). The e-mail requests customers to use an embedded hyperlink to connect to a fraudulent website (www.vyhlidkaskalsko.cz/wp-content/upgrade/ssl218/inetbank/encrypted-session/session-kr3si5953036pbc-tlsv1sslv3-6fki06485) and verify their account information by entering their Internet banking account's user name and password.

2013-2-6

LCQ10: Request Internet service providers for disclosure or removal of users' information

A written reply by the Secretary for Commerce and Economic Development, Mr Gregory So, at the Legislative Council meeting concerning the issue of requesting internet service providers for disclosure or removal of users' information.

2013-2-6

LCQ4: Crimes in relation to social networking on Internet

The Acting Secretary for Security, Mr John Lee, reply to a question concerning internet social networking related crimes by the Dr Hon Lau Wong-fat in the Legislative Council on 6 February 2013.

2013-1-30

Seminar: Tackling Targeted Cyber Attacks

Organised by Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) / Office of the Government Chief Information Officer (OGCIO) / Hong Kong Police Force (HKPF)

2013-1-30

Phishing Attack - Fraudulent website: www.zzfwy.com

The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "www.zzfwy.com". The website looks similar to the official website of Citibank (Hong Kong) Limited (Citibank HK). Citibank HK has clarified that it has no connection with the fraudulent website.

2013-1-29

Phishing Attack - Fraudulent website: http://hkhsbconline.com/

The Hong Kong Monetary Authority wishes to alert members of the public in Hong Kong to a fraudulent website with the domain name "http://hkhsbconline.com/". The website looks similar to the official website of The Hongkong and Shanghai Banking Corporation Limited (HSBC). HSBC has clarified that it has no connection with the fraudulent website.

2013-1-25

Beware of Scam Email Impersonating HKCERT with Malware Attachment

The Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT), managed by the Hong Kong Productivity Council (HKPC), today (25 January 2013) alerted businesses and members of the public of a scam email impersonating HKCERT with malware attachment sent by the email address: notice@hkpc.org.

2013-1-15

Compliance Check Report: School Website Flaw Exposed Student Privacy

Compliance actions carried out by the Office of the Privacy Commissioner for Personal Data have unearthed inadvertent online exposure of sensitive personal information of students that could be used for fraudulent ends. The personal information of as many as 8,505 students of 11 local educational institutions, including tertiary institutions, could be compromised.

2013-1-8

Living and coping with Advanced Persistent Threats

Organised by Professional Information Security Association

2013-1-7

Overall Cyber Incidents Surge 30%, HKCERT Warns of DDoS Attacks and Smartphone Security in 2013 (7 Dec 2012)

The Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) of the Hong Kong Productivity Council (HKPC) urges businesses and the public to keep up their vigilance against an anticipated surge in distributed denial-of-service (DDoS) attacks targeting SMEs and smartphone security incidents in 2013.

2013-1-5

"Protection of Personal Data Privacy – Talk Series on the Proper Use of Technology in Daily Life" - How can business corporations protect personal data?

Organised by Office of the Privacy Commissioner for Personal Data / IBM (HK) / Internet Professional Association - OSP Alliance