HK Cyber Alerts

HK InfoSec News

新聞 - 政府電腦保安事故協調中心 - 保安警報 (A20-03-08): Apple iOS 及 iPadOS 多個漏洞 ( 2020 年 3 月 25 日 )
Apple 發布了 iOS 13.4 及 iPadOS 13.4 以應對於 Apple 裝置中發現的多個安全漏洞。攻擊者可誘使用戶開啓特製的應用程式或網站從而攻擊這些漏洞 […]
新聞 - 政府電腦保安事故協調中心 - 保安警報 (A20-03-07): Microsoft Windows 多個漏洞 ( 2020 年 3 月 24 日 )
Microsoft Windows Adobe Type Manager 程式庫被發現存在多個漏洞。
近期仿冒詐騙攻擊 - 有關中國銀行（香港）有限公司的偽冒電郵 ( 2020 年 3 月 24 日 )
香港金融管理局（金管局）呼籲市民提高警覺，留意一個由中國銀行（香港）有限公司所發出關於偽冒電郵的新聞稿，有關銀 […]
新聞 - 政府電腦保安事故協調中心 - 資訊保安新聞周報 (2020 年 3 月 16 日至 2020 年 3 月 22 日 ) ( 2020 年 3 月 23 日 )
- Ransomware deployment trends- Mind the risks of virtual meetings
新聞 - 政府電腦保安事故協調中心 - 保安警報 (A20-03-06): Drupal 漏洞 ( 2020 年 3 月 19 日 )
Drupal 發布了安全公告以應對於第三方 CKEditor 庫中的漏洞。
近期仿冒詐騙攻擊 - 有關中國銀行（香港）有限公司的偽冒電郵 ( 2020 年 3 月 19 日 )
香港金融管理局（金管局）呼籲市民提高警覺，留意一個由中國銀行（香港）有限公司所發出關於偽冒電郵的新聞稿，有關銀 […]
新聞 - 政府電腦保安事故協調中心 - 保安警報 (A20-03-05): Adobe Reader 及 Acrobat 多個漏洞 ( 2020 年 3 月 17 日 )
Adobe 發布了數個安全更新，以應對於 Adobe Reader 及 Acrobat 的多個漏洞。
新聞 - 政府電腦保安事故協調中心 - 保安警報 (A20-03-04): VMware 產品多個漏洞 ( 2020 年 3 月 17 日 )
VMware 發布了一個安全公告，以應對 vmnetdhcp 中的使用已釋放記憶體 (use-after-free) 漏洞， Cortado Thinprint 中的不當檔案權限，及對 VMware USB 咨詢服務 (VMware USB arbitration service) 中的配 […]
新聞 - 政府電腦保安事故協調中心 - 資訊保安新聞周報 (2020 年 3 月 9 日至 2020 年 3 月 15 日 ) ( 2020 年 3 月 15 日 )
- Time to deploy multi-factor authentication- Conficker revives on Internet of Things

HKCERT

SA20033001 GitLab Multiple Vulnerabilities March 30, 2020
Multiple vulnerabilities have been identified in GitLab, which could be exploited by attackers to cause the following impact(s):Cross-Site ScriptingDenial of ServiceSecurity Restriction BypassInformation Disclosure
[Security Blog] HKCERT urges the public to step up vigilance against rising COVID-19-themed phishing attacks March 26, 2020
With the global 2019 Coronavirus Disease (COVID-19) pandemic intensifying, different types of cyber attacks in the name of the disease have increased dramatically. The Hong Kong Computer Emergency Incident Response Team Coordination Centre (HKCERT) published a blog "Watch out for Phishing Attacks Using False Information on Infectious Disease" in early February on phishing email cases […]
SA20032601 Red Hat JBoss Enterprise Application Platform Multiple Vulnerabilities March 26, 2020
Multiple vulnerabilities have been identified in Red Hat JBoss, which could be exploited by attackers to cause the following impact(s):Denial of ServiceRemote Code ExecutionInformation Disclosure
SA20032502 Apple Products Multiple Vulnerabilities March 25, 2020
Multiple vulnerabilities have been identified in Apple Products, which could be exploited by attackers to cause the following impact(s):Cross-Site ScriptingDenial of ServiceElevation of PrivilegeRemote Code ExecutionSecurity Restriction BypassInformation Disclosure
SA20032501 Adobe Creative Cloud Desktop Application Data Manipulation Vulnerability March 25, 2020
A vulnerability has been identified in Adobe ColdFusion, which could be exploited by attackers to cause the following impact(s):Data Manipulation
SA20032402 Microsoft Windows Remote Code Execution Vulnerability March 24, 2020
A vulnerability has been identified in Microsoft Windows, which could be exploited by attackers to cause the following impact(s):Remote Code ExecutionThe vulnerability was currently being exploited in the wild.Vulnerability has no patch available
SA20032401 IBM WebSphere Application Multiple Vulnerabilities March 24, 2020
Multiple vulnerabilities have been identified in IBM WebSphere Application Server, which could be exploited by attackers to cause the following impact(s):Cross-Site ScriptingDenial of ServiceRemote Code ExecutionSecurity Restriction BypassInformation Disclosure
SA20032001 Google Chrome Multiple Vulnerabilities March 20, 2020
Multiple vulnerabilities have been identified in Google Chrome, which could be exploited by attackers to cause the following impact(s):Denial of ServiceRemote Code ExecutionSecurity Restriction Bypass
SA20031901 VMWare Products Multiple Vulnerabilities March 19, 2020
Multiple vulnerabilities have been identified in VMWare, which could be exploited by attackers to cause the following impact(s):Denial of ServiceElevation of Privilege
SA20031801 Adobe Monthly Security Update (Mar 2020) March 18, 2020
Multiple vulnerabilities have been identified in Adobe Products, which could be exploited by attackers to cause the following impact(s):Elevation of PrivilegeRemote Code ExecutionInformation Disclosure

GovHK Press Release

Missing man in Sheung Shui located March 30, 2020
A man who went missing in Sheung Shui has been located. Ma Lok-ki, aged 30, went missing after he left his residence in Kan Tau Tsuen on March 14 noon. His family made a report to Police on March 17. Police located the man on On Pong Road, Tai Po on March 28 afternoon. He […]
Hong Kong Customs arrests seven directors and sole proprietors of restaurants suspected of supplying food with false trade descriptions March 30, 2020
Hong Kong Customs earlier mounted a territory-wide operation against restaurants supplying food with false trade descriptions and arrested seven persons in different districts for suspected contravention of the Trade Descriptions Ordinance (TDO), including five directors and two sole proprietors of the restaurants involved. Customs earlier conducted spot checks and test purchases at various restaurants in the territory. […]
Public hospitals daily update on COVID-19 cases March 30, 2020
The following is issued on behalf of the Hospital Authority: As at noon today (March 30), public hospitals had reported to the Department of Health the admission of 191 patients (96 male and 95 female, aged 3 to 77) in the past 24 hours who met the reporting criteria of COVID-19. Appropriate tests have […]
Government welcomes appointment to Board of Financial Dispute Resolution Centre March 30, 2020
The Government today (March 30) welcomed the Financial Dispute Resolution Centre's (FDRC) new appointment of Professor Wong Kam-fai as a non-official Director to its Board. His term will be two years from March 31, 2020 to March 30, 2022. "We welcome Professor Wong to the Board of the FDRC, and express our […]
Update on cases of Legionnaires' disease March 30, 2020
The Centre for Health Protection (CHP) of the Department of Health today (March 30) reported the latest number of cases of Legionnaires' disease (LD), and stressed the importance of using and maintaining properly designed man-made water systems, adding that susceptible groups should strictly observe relevant precautions. From March 22 to 28, two […]
Results of Estate Management Services Contractors Awards 2019 announced March 30, 2020
The following is issued on behalf of the Hong Kong Housing Authority: The Hong Kong Housing Authority (HA) announced today (March 30) the results of the Estate Management Services Contractors Awards (EMSC Awards) 2019 to give due recognition to the outstanding performance of services contractors in managing the HA's properties last year. The winning […]
Appointments to the Youth Development Commission March 30, 2020
The Government announced today (March 30) the re-appointments of the Vice-Chairman and 31 non-official members, as well as the appointments of eight new members to the Youth Development Commission (YDC) for a term of two years with effect from April 1, 2020. The Chief Secretary for Administration and Chairman of the YDC, Mr Matthew […]
Appointment of Directors of Hong Kong Cyberport Management Company Limited March 30, 2020
The Government today (March 30) announced the re-appointment of Chairman Dr George Lam and three other serving Directors, and the appointment of three new Directors, to the Board of Directors of the Hong Kong Cyberport Management Company Limited for a two-year term from April 1, 2020. The three new Directors are Professor Christopher Chao Yu-hang, Ms Ivy Cheung […]
Chain volume measures of Gross Domestic Product by economic activity for the fourth quarter of 2019 and the whole year of 2019 March 30, 2020
The Census and Statistics Department (C&SD) released today (March 30) the preliminary figures of chain volume measures of Gross Domestic Product (GDP) by economic activity for the fourth quarter of 2019 and the whole year of 2019. GDP figures by economic activity show the value of production in respect of individual economic […]
Hong Kong's Gross National Income and external primary income flows for the fourth quarter of 2019 and whole year of 2019 March 30, 2020
The Census and Statistics Department (C&SD) released today (March 30) the preliminary statistics on Hong Kong’s Gross National Income (GNI) and related figures for the fourth quarter of 2019 and the whole year of 2019. Hong Kong's GNI, which denotes the total income earned by Hong Kong residents from engaging in various economic […]