Security Alerts

• 27

  Mar
  High Threat Security Alert (A20-03-09): Multiple Vulnerabilities in Red Hat JBoss Red Hat has released new versions of JBoss Enterprise Application Platform to address multiple vulnerabilities in the Apache JServ Protocol (AJP), Apache Thrift and OpenSSL security provider.
• 25

  Mar
  Security Alert (A20-03-08): Multiple Vulnerabilities in Apple iOS and iPadOS Apple has released iOS 13.4 and iPadOS 13.4 to fix multiple security vulnerabilities in various Apple devices.
• 24

  Mar
  Security Alert (A20-03-07): Multiple Vulnerabilities in Microsoft Windows Multiple vulnerabilities have been found in the Microsoft Windows Adobe Type Manager library.
• 19

  Mar
  Security Alert (A20-03-06): Vulnerability in Drupal Drupal has released a security update to fix the vulnerability in the third-party CKEditor library.
• 18

  Mar
  Security Alert (A20-03-05): Multiple Vulnerabilities in Adobe Reader/Acrobat Security updates are released for Adobe Reader and Acrobat to address multiple vulnerabilities.

Security Bulletins

• GovCERT.HK Weekly IT Security News Bulletin (23 March 2020 – 29 March 2020) - Proliferation of hacking tools against industrial control systems
  - Mobile malware targeting Hong Kong iOS users
• GovCERT.HK Weekly IT Security News Bulletin (16 March 2020 – 22 March 2020) - Ransomware deployment trends
  - Mind the risks of virtual meetings
• GovCERT.HK Weekly IT Security News Bulletin (9 March 2020 – 15 March 2020) - Time to deploy multi-factor authentication
  - Conficker revives on Internet of Things
• GovCERT.HK Weekly IT Security News Bulletin (2 March 2020 – 8 March 2020) - SurfingAttack: exploitation of mobile phones by ultrasound across tables
  - Robot vacuum cleaners may leave consumers’ privacy at risk
• GovCERT.HK Annual Report 2018 To enhance the city’s overall defensive capability and resilience against cyber attacks, we officially launched a Partnership Programme for Cyber Security Information Sharing named “Cybersec Infohub” and the first cross sector cyber security information sharing and collaborative platform (Cybersechub.hk) in September 2018.　 A keen appreciation of the threat landscape could help organisations and individuals to understand better the cyber threat environment so as to adopt early and appropriate mitigation measures. In 2018, we continued publishing threat trends, security alerts and mitigation advice through the Government Computer Emergency Response Team Hong Kong (GovCERT.HK) web portal for reference by the general public. We further tailored specific threat awareness updates for government departments.

Cyber Security Threat Landscape