What's New | Cyber Security Information Portal

1. Home
2. What's New

• Security Alert (A21-02-10): Multiple Vulnerabilities in Cisco Products (25-February-2021)
  

  Cisco released security advisories to address multiple vulnerabilities in Cisco Application Services Engine, Cisco products running NX-OS, Cisco products running FX-OS and Cisco Nexus 9000 Series.

• Security Alert (A21-02-09): Multiple vulnerabilities in Firefox (24-February-2021)
  

  Mozilla has published the advisories (MFSA 2021-07 and MFSA 2021-08) to address multiple vulnerabilities in Firefox browser.

• Security Alert (A21-02-08): Multiple Vulnerabilities in VMware Products (24-February-2021)
  

  VMware has published a security advisory to address multiple vulnerabilities in VMware products.

• Phishing Attack - Fraudulent website related to Union Bancaire Privée, UBP SA (23-February-2021)
  

  The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Union Bancaire Privée, UBP SA on fraudulent website, which has been reported to the HKMA.

• Phishing Attack - Fraudulent website related to Citibank (Hong Kong) Limited (22-February-2021)
  

  The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Citibank (Hong Kong) Limited on fraudulent website, which has been reported to the HKMA.

• GovCERT.HK - Weekly IT Security News Bulletin (15 February 2021 – 21 February 2021) (22-February-2021)
  

  - Unprecedentedly large number of vulnerabilities found in 2020
  - Data Exfiltration using Google Apps scripts

• 第四集《 網罪速「逮」》• 避開即時通訊軟件帳號被騎劫 (Chinese version only) (21-February-2021)
  

  Please refer to Chinese version

• OGCIO firmly follows up on fraudulent "LeaveHomeSafe" websites and mobile apps (20-February-2021)
  

  The Office of the Government Chief Information Officer (OGCIO) said today (February 20) that the situation of fraudulent "LeaveHomeSafe" mobile app is running rampant. Making or using those fraudulent apps may breach relevant laws and the OGCIO has referred all suspected fraudulent websites and mobile apps to the Police for follow up.

• “LeaveHomeSafe” Mobile App in Compliance with the Requirements of the Privacy Law (19-February-2021)
  

  The Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD), noted that some members of the public are concerned about the protection of personal data privacy relating to the use of the “LeaveHomeSafe” mobile app (“LeaveHomeSafe”).

• Phishing Attack - Fraudulent websites and phishing SMS message related to Bank of China (Hong Kong) Limited (19-February-2021)
  

  The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites and phishing SMS message, which has been reported to the HKMA.

• GovCERT.HK - Security Alert (A21-02-07): Vulnerability in ISC BIND (18-February-2021)
  

  ISC has released a security update to fix a vulnerability in BIND.

• Phishing Attack - Fraudulent websites and phishing SMS message related to Bank of China (Hong Kong) Limited (17-February-2021)
  

  The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Bank of China (Hong Kong) Limited on fraudulent websites and phishing SMS message, which has been reported to the HKMA.

• Phishing Attack - Beware of fraudulent "LeaveHomeSafe" mobile app (16-February-2021)
  

  The Office of the Government Chief Information Officer (OGCIO) today (February 16) reminded members of the public that they should beware of websites purporting to be that of the "LeaveHomeSafe" mobile app, with some even claiming to have rewritten the app for public downloading recently.

• GovCERT.HK - Weekly IT Security News Bulletin (8 February 2021 – 14 February 2021) (16-February-2021)
  

  - Moving towards quantum-proof cryptography
  - Cyber attack can be life-threatening

• 第三集《 網罪速「逮」》• 密碼不秘密？(Chinese version only) (14-February-2021)
  

  Please refer to Chinese version

• HKCERT - Security Blog: Party’s over for Emotet, One of the World’s Most Feared Botnets (11-February-2021)
  

  Emotet, one of the most notorious botnets of the past decade, has been taken down in a joint operation by Europol and Eurojust in January 2021.

• GovCERT.HK - High Threat Security Alert (A21-02-06): Multiple Vulnerabilities in Adobe Reader/Acrobat (10-February-2021)
  

  Security updates are released for Adobe Reader and Acrobat to address multiple vulnerabilities

• GovCERT.HK - High Threat Security Alert (A21-02-05): Multiple Vulnerabilities in Microsoft Products (February 2021) (10-February-2021)
  

  Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

• GovCERT.HK - Security Alert (A21-02-04): Vulnerability in Firefox (9-February-2021)
  

  Mozilla has published an advisory (MFSA 2021-06) to address a vulnerability in Firefox browser.

• 第二集《 網罪速「逮」》• 拆解商業電郵騙案 (Chinese version only) (7-February-2021)
  

  Please refer to Chinese version

• 第一集《 網罪速「逮」》• 同你擊破釣魚攻擊 (Chinese version only) (26-January-2021)
  

  Please refer to Chinese version

• e-World Smart Tips - Beware of Malware Infection (27-January-2021)
  

  - Protect your electronic devices
  - Security tips of installing software
  - Protect against Phishing Attacks
  - Symptoms of being infected by malware

• e-World Smart Tips - Ways for Safe Online Shopping (27-January-2021)
  

  - Choose trustworthy online shop and seller
  - Points-to-note when making payment
  - Protect your sensitive data
  - Disable browser's automatic form filling function

• e-World Smart Tips - Protect against Phishing Attacks (27-January-2021)
  

  - Stay vigilant to suspicious emails
  - Stay vigilant to suspicious SMS
  - Stay vigilant to suspicious websites
  - What to do when you click on a link or download attachments in a suspicious email
  - What to do when your organisation’s identity is being used in a phishing attack

• Expert Corner - Ransomware - Top Threat of 2020 (19-January-2021)
  

  Ransomware continues to cause havoc at organisations of all sizes including enterprises, financial institutions and healthcare that are handling sensitive data…

• Resource Centre - Leaflet on "Information Security Guide for Small Businesses – Security Tips for Remote Working" (7-June-2020)
  

  Leaflet on "Information Security Guide for Small Businesses – Security Tips for Remote Working" is now available at the Resource Centre

• Learning Centre - Guide on Secure Video Conferencing (4-May-2020)
  

  Video conferencing (VC) is becoming an effective way of communication for remote working and for users at different locations to conduct real-time communications.

• Resource Centre - Infographics on "Security Tips on Working from Home" (1-April-2020)
  

  Infographics on “Security Tips on Working from Home” is now available at the Resource Centre

• Learning Centre - Security of Working from Home (7-April-2020)
  

  In view of the recent outbreak of coronavirus, many organisations have arranged for their employees to work from home to achieve social distancing...

• Resource Centre - Leaflet on "Information Security Guide for Small Businesses – Security Tips for e-Commerce" (1-March-2020)
  

  Leaflet on "Information Security Guide for Small Businesses – Security Tips for e-Commerce"

• Resource Centre - Infographics on "Smart Tips on Mobile Payment" (1-February-2020)
  

  Infographics on "Smart Tips on Mobile Payment" is now available at the Resource Centre

• Alliance
• About Us
• Site Map
• Important Notices
• Privacy Policy
• Contact Us

Copyright © 2014 Office of the Government Chief Information Officer. All rights reserved.
Last update / review: February 2021