(Hong Kong, 28 April 2022) The latest quarterly report of the Hong Kong Security Watch Report compiled by the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) under the Hong Kong Productivity Council has just been released. This report not only provides data on Hong Kong’s networked systems that were found to have suffered or participated in various types of cyber attacks in the past quarter, but will also review major security incidents that have occurred during the period and explore hot security topics with easy-to-implement security advice with an aim to improve public’s information security posture and enhance their security resilience capabilities.
Major highlights of the latest issue include:
1. In 2022 Q1, unique security events related to Hong Kong dropped slightly by 4.8% compared to the previous quarter. However, defacement events increased by 21% which was mainly attributed to unpatched system vulnerabilities by IT administrators;
2. NFT has become a hot topic. If you want to participate in it, you need to know about its ecosystem and three major security risks;
3. What are the benefits of smart contracts? Precautions for using smart contracts; and
4. A serious security vulnerability was found in the popular Java Spring Framework. Hackers can implant web shell by sending a crafted HTTP requests to the affected systems to hijack the user’s server.
For details of the report, please click the below link:
For information security related incidents, for example, ransomware, phishing, denial of service attack, etc., please report to HKCERT through its online Incident Report Form at https://www.hkcert.org/incident-reporting. For other information security-related questions, please contact HKCERT by email: firstname.lastname@example.org or call its 24-hour hotline: 8105 6060.