What's New | Cyber Security Information Portal

1. Home
2. What's New

• GovCERT.HK - Security Alert (A21-11-12): Multiple Vulnerabilities in VMWare Products (24-November-2021)
  

  VMware has published a security advisory to address multiple vulnerabilities in VMware products.

• Fraudulent websites and phishing instant messages related to The Hongkong and Shanghai Banking Corporation Limited (24-November-2021)
  

  The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to fraudulent websites and phishing instant messages, which has been reported to the HKMA.

• Fraudulent website and phishing instant message related to China Construction Bank (Asia) Corporation Limited (23-November-2021)
  

  The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by China Construction Bank (Asia) Corporation Limited relating to a fraudulent website and phishing instant message, which has been reported to the HKMA.

• Fraudulent website and phishing email related to The Hongkong and Shanghai Banking Corporation Limited (23-November-2021)
  

  The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by The Hongkong and Shanghai Banking Corporation Limited relating to a fraudulent website and phishing email, which has been reported to the HKMA.

• Resource Centre - Leaflet on "Stop Cyber-bullying" (22-November-2021)
  

  Leaflet on "Stop Cyber-bullying" is now available at the Resource Centre

• GovCERT.HK - Weekly IT Security News Bulletin (15 Nov 2021 – 21 Nov 2021) (22-November-2021)
  

  - Exploiting Microsoft Exchange servers for business email compromise attacks
  - New Android Trojan targeting banking apps

• GovCERT.HK - Security Alert (A21-11-11): Multiple Vulnerabilities in Microsoft Edge (Chromium-based) (22-November-2021)
  

  Microsoft released a security update to address multiple vulnerabilities in Microsoft Edge (Chromium-based).

• HKCERT - Security Blog: Introducing the New “Fight Ransomware” Webpage (19-November-2021)
  

  To keep pace with the changes in ransomware attacks, HKCERT recently consolidated the ransomware attack techniques, prevention and handling procedures to create a new dedicated “Fight Ransomware” webpage.

• Privacy Commissioner Publishes Booklet on the Personal Information Protection Law of the Mainland (18-November-2021)
  

  The Personal Information Protection Law (PIPL) was passed by the Standing Committee of the National People’s Congress on 20 August 2021 and it has come into operation in the Mainland since 1 November 2021…

• GovCERT.HK - Security Alert (A21-11-10): Multiple Vulnerabilities in Drupal (18-November-2021)
  

  Drupal has released a security advisory to address multiple vulnerabilities in the CKEditor library for WYSIWYG editing.

• Unauthorised websites, phishing emails and phishing instant messages related to Citibank (Hong Kong) Limited (17-November-2021)
  

  The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Citibank (Hong Kong) Limited relating to unauthorised websites, phishing emails and phishing instant messages, which has been reported to the HKMA.

• GovCERT.HK - Security Alert (A21-11-09): Multiple vulnerabilities in Google Chrome (16-November-2021)
  

  Google released a security update to address multiple vulnerabilities in Google Chrome.

• GovCERT.HK - Weekly IT Security News Bulletin (8 Nov 2021 – 14 Nov 2021) (15-November-2021)
  

  - Resurgence of HTTP smuggling attack
  - Microsoft Office documents used to deploy Cobalt Strike

• GovCERT.HK - Security Alert (A21-11-08): Vulnerability in VMWare Products (12-November-2021)
  

  VMware has published a security advisory to address a vulnerability in VMware products.

• GovCERT.HK - High Threat Security Alert (A21-11-07): Multiple Vulnerabilities in Microsoft Products (November 2021) (10-November-2021)
  

  Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.

• Expert Corner - Common security issues of SMEs and non-profit making organisation websites (Chinese Version Only) (2-August-2021)
  

  與網站相關的攻擊近年不斷上升，黑客透過尋找網站系統的漏洞發動攻擊…

• Expert Corner - Supply-chain attacks and protecting the “Chain of Trust” (20-July-2021)
  

  Over the past decade, cyber security incidents which have caused devastating damages have largely been attributed to something called “supply-chain attacks”…

• e-World Smart Tips - IoT Security (2-July-2021)
  

  - Points-to-note before using IoT devices
  - Use IoT devices carefully
  - Examine the services provided by IoT devices
  - Configure security settings for home router

• e-World Smart Tips - Secure Use of on mobile payment (2-July-2021)
  

  - Protect your mobile device
  - Choose mobile payment service application carefully
  - Points to note when having mobile payment for transaction
  - Protect your mobile payment accounts
  - How to handle when losing mobile devices

• Resource Centre - Infographics on "Beware of Phishing Emails" (1-June-2021)
  

  Infographics on “Beware of Phishing Emails ” is now available at the Resource Centre

• Resource Centre - Leaflet on "Information Security Guide for Small Businesses – Cloud Security" (27-May-2021)
  

  Leaflet on "Information Security Guide for Small Businesses – Cloud Security" is now available at the Resource Centre

• Resource Centre - Leaflet on "Information Security Guide for Small Businesses – Cyber Security Tips Protect Your Digital Identity" (23-April-2021)
  

  Leaflet on "Information Security Guide for Small Businesses – Cyber Security Tips Protect Your Digital Identity" is now available at the Resource Centre

• Alliance
• About Us
• Site Map
• Important Notices
• Privacy Policy
• Contact Us

Copyright © 2014 Office of the Government Chief Information Officer. All rights reserved.
Last update / review: November 2021