Security Alerts

• 11

  Sep
  Security Alert (A19-09-04): Multiple Vulnerabilities in Adobe Flash Player Security updates are released for Adobe Flash Player to address the vulnerabilities.
• 11

  Sep
  High Threat Security Alert (A19-09-03): Multiple Vulnerabilities in Microsoft Products (September 2019) Microsoft has released security updates addressing multiple vulnerabilities and which affect several Microsoft products or components.
• 6

  Sep
  Security Alert (A19-09-02): Multiple Vulnerabilities in PHP Multiple vulnerabilities have been found in PHP.
• 4

  Sep
  Security Alert (A19-09-01): Multiple Vulnerabilities in Firefox Mozilla has published three security advisories (MFSA 2019-25, MFSA 2019-26 and MFSA 2019-27) to address multiple browser vulnerabilities.
• 30

  Aug
  Security Alert (A19-08-07): Multiple Vulnerabilities in Cisco Products Cisco released security advisories to address the vulnerabilities in Cisco IOS XE, NX-OS and FXOS software.

Security Bulletins

• GovCERT.HK Weekly IT Security News Bulletin (9 September 2019 – 15 September 2019) - Human Factor 2019 Report
  - Lessons learnt from a DoS attack
  - Global phishing campaign targeting universities
• GovCERT.HK Weekly IT Security News Bulletin (2 September 2019 – 8 September 2019) - Patch your VPN and Change the passwords
  - New social engineering toolkit for pushing fraudulent updates
• GovCERT.HK Weekly IT Security News Bulletin (26 August 2019 – 1 September 2019) - Unprotected Airline Booking Systems vulnerable to enumeration attacks
  - Revival of Emotet Botnet
• GovCERT.HK Weekly IT Security News Bulletin (19 August 2019 – 25 August 2019) - Deception technology reportedly shortened time to spot attacks
  - Cybersecurity Investments in Smart Cities
• GovCERT.HK Annual Report 2018 To enhance the city’s overall defensive capability and resilience against cyber attacks, we officially launched a Partnership Programme for Cyber Security Information Sharing named “Cybersec Infohub” and the first cross sector cyber security information sharing and collaborative platform (Cybersechub.hk) in September 2018.　 A keen appreciation of the threat landscape could help organisations and individuals to understand better the cyber threat environment so as to adopt early and appropriate mitigation measures. In 2018, we continued publishing threat trends, security alerts and mitigation advice through the Government Computer Emergency Response Team Hong Kong (GovCERT.HK) web portal for reference by the general public. We further tailored specific threat awareness updates for government departments.

Cyber Security Threat Landscape