Security Alerts

• 14

  Apr
  High Threat Security Alert (A21-04-03): Multiple Vulnerabilities in Google Chrome Google released a security update to address multiple vulnerabilities in Google Chrome.
• 14

  Apr
  High Threat Security Alert (A21-04-02): Multiple Vulnerabilities in Microsoft Products Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components.
• 9

  Apr
  Security Alert (A21-04-01): Multiple Vulnerabilities in Cisco Products Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.
• 29

  Mar
  High Threat Security Alert (A21-03-10): Vulnerability in Apple iOS and iPadOS Apple has released iOS 14.4.2 and iPadOS 14.4.2 as well as iOS 12.5.2 to fix a vulnerability in various Apple devices.
• 25

  Mar
  Security Alert (A21-03-09): Multiple Vulnerabilities in Cisco Products Cisco released security advisories to address multiple vulnerabilities in Cisco devices and software.

Security Bulletins

• GovCERT.HK Weekly IT Security News Bulletin
  (5 April 2021 – 11 April 2021) - Security risks in third-party app stores
  - Setting up defense against firmware attacks
• GovCERT.HK Weekly IT Security News Bulletin
  (29 March 2021 – 4 April 2021) - Evolving threats from malware
  - Mitigate risks in adopting public cloud
• GovCERT.HK Weekly IT Security News Bulletin
  (22 March 2021 – 28 March 2021) - Importance of DMARC enforcement
  - Risk in open source components
• GovCERT.HK Weekly IT Security News Bulletin
  (15 March 2021 – 21 March 2021) - Business email compromise attacks on the rise
  - Proof-of-concept of Spectre exploit on browsers
• GovCERT.HK Annual Report 2019 To enhance the city’s overall defensive capability and resilience against cyber attacks, we continue to leverage the first local cross-sector Partnership Programme for Cyber Security Information Sharing named “Cybersec Infohub” and organise a number of seminars and workshops with a view to promoting trusted partnership between local cyber security stakeholders across prominent sectors for sharing cyber security information and providing actionable insights to the community. A keen appreciation of the threat landscape could help organisations and individuals to understand better the cyber threat environment so as to adopt early and appropriate mitigation measures. In 2019, we continued publishing threat trends, security alerts and mitigation advice through the Government Computer Emergency Response Team Hong Kong (GovCERT.HK) web portal for reference by the general public. We further tailored specific threat awareness updates for government departments.

Cyber Security Threat Landscape