HK Cyber Alerts

HK InfoSec News

新聞 - 政府電腦保安事故協調中心 - 高危保安警報 (A20-01-05): Microsoft Internet Explorer 漏洞 ( 2019 年 1 月 20 日 )
Microsoft 發布了一個安全公告 (ADV200001) 以減低 Microsoft Internet Explorer 中 JScript.dll 的一個遠端執行程式碼漏洞的影響。
新聞 - 政府電腦保安事故協調中心 - 資訊保安新聞周報 (2020 年 1 月 13 日至 2020 年 1 月 19 日 ) ( 2019 年 1 月 20 日 )
- Mind juice jacking on your mobile devices- Top 10 API security risks
新聞 - 香港電腦保安事故協調中心 - 保安博錄 : 立即更新填補三個高風險的 Windows 漏洞以防範潛在的網絡攻擊 ( 2019 年 1 月 17 日 )
微軟最近發布了 2020 年 1 月份的每月 Patch Tuesday 更新，其中有兩個應用程式元件存在著三個高風險漏洞，需要用戶注意和採取即時行動 […]
新聞 - 香港電腦保安事故協調中心 - 保安博錄 : Citrix Application Delivery Controller 嚴重漏洞警報 ( 2019 年 1 月 17 日 )
跨國軟件和雲端運算企業 Citrix 最近公布了一個有關其 Application Delivery Controller (ADC) 產品的保安漏洞 (CVE-2019-19781)。
新聞 - 生產力局呼籲企業和公眾對新技術網絡攻擊提高警惕 ( 2019 年 1 月 16 日 )
（香港， 2020 年 1 月 16 日）香港生產力促進局（生產力局）表示，轄下香港電腦保安事故協調中心（ HKCERT ）接獲的本地殭屍網絡和 […]
新聞 - 政府電腦保安事故協調中心 - 保安警報 (A20-01-04): Oracle Java 及 Oracle 產品多個漏洞 (2020 年 1 月 ) ( 2019 年 1 月 15 日 )
Oracle 發布了重要修補程式更新公告，包括一系列應對 Java SE 和不同 Oracle 產品中多個漏洞的安全修補程式。
新聞 - 政府電腦保安事故協調中心 - 高危保安警報 (A20-01-03): Microsoft 產品多個漏洞 (2020 年 1 月 ) ( 2019 年 1 月 15 日 )
Microsoft 發布了安全性更新以應對多個影響 Microsoft 產品或元件的多個漏洞。
新聞 - 香港電腦保安事故協調中心 - 保安博錄 : 推行物聯網保安最佳實踐 ( 2019 年 1 月 14 日 )
當大家著重物聯網技術帶來的功能與特點時，很少有人真正了解伴随而來的潛在保安風險。推廣物聯網安全最佳實踐對於至關 […]
新聞 - 政府當局就資訊保安的最新情況提供的文件 ( 2019 年 1 月 13 日 )
本文件向委員匯報本港資訊保安的最新情況和過去一年政府在資訊保安方面的工作。
新聞 - 政府電腦保安事故協調中心 - 資訊保安新聞周報 (2020 年 1 月 6 日至 2020 年 1 月 12 日 ) ( 2019 年 1 月 13 日 )
- Cyber-attacks on smart cars - SNAKE is the next ransomware to fight against
新聞 - 政府電腦保安事故協調中心 - 高危保安警報 (A20-01-02): Citrix Application Delivery Controller 及 Citrix Gateway 漏洞 ( 2019 年 1 月 13 日 )
Citrix ADC 及 Citrix Gateway 被發現一個漏洞。未經身份驗證的遠程攻擊者可以向受影響的系統發送特製指令，從而攻擊此漏洞。

HKCERT

SA20012302 Cisco Products Multiple Vulnerabilities January 23, 2020
Multiple vulnerabilities have been identified in Cisco, which could be exploited by attackers to cause the following impact(s):Cross-Site ScriptingDenial of ServiceSecurity Restriction BypassInformation Disclosure
SA20012301 Red Hat Kernel Multiple Vulnerabilities January 23, 2020
Multiple vulnerabilities have been identified in Red Hat Kernel, which could be exploited by attackers to cause the following impact(s):Denial of ServiceRemote Code Execution
SA20012201 Samba Multiple Vulnerabilities January 22, 2020
Multiple vulnerabilities have been identified in Samba, which could be exploited by attackers to cause the following impact(s):Denial of ServiceRemote Code ExecutionSecurity Restriction Bypass
SA20012001 Google Chrome Multiple Vulnerabilities January 20, 2020
Multiple vulnerabilities have been identified in , which could be exploited by attackers to cause the following impact(s):Remote Code ExecutionSecurity Restriction Bypass
SA20011902 Microsoft Internet Explorer Remote Code Execution Vulnerability January 19, 2020
A vulnerability has been identified in Microsoft, which could be exploited by attackers to cause the following impact(s):Remote Code ExecutionThe vulnerability was currently being exploited in the wild.Vulnerability has no patch available
[Security Blog] Critical Citrix Application Delivery Controller Vulnerability (CVE-2019-19781) Alert January 17, 2020
Multinational software and clouding computing company Citrix recently disclosed a vulnerability (CVE-2019-19781) in its application delivery controller (ADC) products. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.
[Security Blog] Patch three critical Windows vulnerabilities (CVE-2020-0601, CVE-2020-0609 & CVE-2020-0610) immediately to prevent potential cyber attack January 17, 2020
Microsoft recently released its monthly Patch Tuesday for January 2020. There are three critical vulnerabilities in two of its application components which demand attention and immediate action
SA20011503 Oracle Products Multiple Vulnerabilities January 15, 2020
Multiple vulnerabilities have been identified in Oracle, which could be exploited by attackers to cause the following impact(s):Denial of ServiceRemote Code ExecutionSecurity Restriction BypassInformation DisclosureData Manipulation
SA20011502 Adobe Monthly Security Update (Jan 2020) January 15, 2020
Multiple vulnerabilities have been identified in Adobe Products, which could be exploited by attackers to cause the following impact(s):Remote Code ExecutionInformation Disclosure
SA20011501 Microsoft Monthly Security Update (Jan 2020) January 15, 2020
Multiple vulnerabilities have been identified in Microsoft Products, which could be exploited by attackers to cause the following impact(s):Denial of ServiceElevation of PrivilegeRemote Code ExecutionSecurity Restriction BypassInformation DisclosureSpoofing

GovHK Law & Order

Gov't mourns customs officers January 21, 2020
Chief Executive Carrie Lam and senior officials today expressed shock and sadness over the passing of three customs officers while carrying out their duties in waters off Sha Chau. Currently on a duty visit in Davos, Switzerland, Mrs Lam extended her deepest condolences to the officers’ families. “The Hong Kong Customs is entrusted with the important tasks of […]
Kenya offers visa on arrival January 21, 2020
The Republic of Kenya will grant entry visas upon arrival to Hong Kong Special Administrative Region passport holders, the Immigration Department announced today. HKSAR passport holders may also apply for an online e-visa for Kenya. Hong Kong tourists can stay in the country for up to three months. Noting that Kenya is along the Belt & Road, the department said under […]
Gov’t explains walk-out January 21, 2020
The Government today expressed regret over unfounded allegations against the Commissioner of Police and the Force by a number of Tsuen Wan District Council members. The allegations were conveyed during today’s meeting held in the hope of enhancing communication with the District Council as well as strengthening ties and understanding between Police and the district. In a statement, the […]
LNY travellers to reach 5.9m January 19, 2020
The Immigration Department estimates about 5.94 million travellers will pass through Hong Kong’s boundary control points during the Lunar New Year holiday. Among them, 4.42 million passengers are expected to pass through land boundary control points. Outbound passengers using these control points will be relatively higher on January 26, with 367,000 people expected, and the number of […]
4 arrested in customs raids January 19, 2020
Customs today announced they arrested four people and seized 2,200 items during operations against the sale of infringing goods in Central. The items, including clothing, leather products, handbags, wallets and eyeglasses, have an estimated market value of $310,000. Officers raided mobile hawker stalls in Central on January 5, 12 and 19 to step up enforcement against infringing […]
Police assist with IPCC study January 19, 2020
Police reiterated that they will continue to fully co-operate with the Independent Police Complaints Council (IPCC) Special Task Force in all aspects of its study on the public order events since June 9. The statement was made after an interview with a former IPCC member was published in a local newspaper yesterday. It said since the commencement […]
FS celebrates Int’l Customs Day January 19, 2020
Financial Secretary Paul Chan today officiated at a reception to celebrate 2020 International Customs Day (ICD). Mr Chan said Hong Kong Customs is making considerable contributions to combat illegal activities and provide a safe and stable environment for the city. “Without Customs’ collective efforts, illegal drugs, endangered species, counterfeit products and other illicit goods would seriously damage […]
Gov’t disagrees with DC motion January 15, 2020
The Government today said it disagrees with the impromptu motion moved by the Central & Western District Council against Police and the Commissioner of Police. The motion made unfounded allegations against Police, it said. The Government added that it attaches great importance to the views of the District Councils, noting that department heads attend District Council meetings in […]
Taishan power plant sound January 14, 2020
An operational event at Taishan Nuclear Power Station on January 6 had no effect on the plant’s operational safety, the Security Bureau said today. The case, reported on the Taishan Nuclear Power Joint Venture Company’s website, involved a low-voltage switchboard at Unit 2 of the station. A component malfunction occurred at the Unit 2 switchboard on January […]
2020 legal year opens January 12, 2020
The ceremonial opening of the legal year 2020 was held at City Hall in Central today. Chief Justice Geoffrey Ma inspected the Ceremonial Guard mounted by the Hong Kong Police. In a speech, he said that he was aware of the volume of cases that are before the courts relating to the events of the past seven […]

GovHK Press Release

EPD to implement new qualifying standards for environment-friendly commercial vehicles from April 2020 January 24, 2020
The Environmental Protection Department (EPD) today (January 24) announced that the new qualifying standards (QS) for environment-friendly commercial vehicles to be implemented for the period from April 1, 2020, to March 31, 2021, inclusive are as follows: (a) For Heavy Duty Commercial Vehicles (with a design weight of more than 3.5 tonnes): i. the […]
Proposed sewerage works for Hung Shui Kiu/Ha Tsuen New Development Area Advance Works Phase 2 - Site Formation and Engineering Infrastructure approved January 24, 2020
The Chief Executive in Council has approved a scheme for the sewerage works for Hung Shui Kiu/Ha Tsuen New Development Area Advance Works Phase 2 - Site Formation and Engineering Infrastructure (formerly known as Hung Shui Kiu New Development Area Advance Works Phase 2 - Site Formation and Engineering Infrastructure). Approval of the […]
Proposed sewerage works for Hung Shui Kiu/Ha Tsuen New Development Area Stage 1 Works - Site Formation and Engineering Infrastructure approved January 24, 2020
The Chief Executive in Council has approved a scheme for the sewerage works for Hung Shui Kiu/Ha Tsuen New Development Area Stage 1 Works - Site Formation and Engineering Infrastructure (formerly known as Hung Shui Kiu New Development Area Stage 1 Works - Site Formation and Engineering Infrastructure). Approval of the sewerage scheme was […]
Tender period for Provision of Universal Accessibility Facilities at Footbridges, Elevated Walkways and Subways - Package 3 Contract 2 extended January 24, 2020
The Highways Department (HyD) announced today (January 24) that in response to requests from interested tenderers, the tender period for the contract for Provision of Universal Accessibility Facilities at Footbridges, Elevated Walkways and Subways - Package 3 Contract 2 (Contract No. HY/2019/21) has been extended to noon on February 14. The HyD invited tenders for the […]
Tender period extended for Fanling North New Development Area, Phase 1: Fanling Bypass Eastern Section (Shek Wu San Tsuen North to Lung Yeuk Tau) January 24, 2020
â€‹The Civil Engineering and Development Department (CEDD) today (January 24) announced that the tender period for the contract for Fanling North New Development Area, Phase 1: Fanling Bypass Eastern Section (Shek Wu San Tsuen North to Lung Yeuk Tau) (Contract No. ND/2019/04) has been extended to noon on February 28. The CEDD invited tenders […]
General out-patient clinic services during Chinese New Year holidays January 24, 2020
The following is issued on behalf of the Hospital Authority: The Hospital Authority (HA) today (January 24) announces that in view of the increased demand during the winter surge in public hospitals, the general out-patient clinic (GOPC) service will be enhanced during the Chinese New Year holidays. An addition of over 1 400 consultation quotas […]
Key statistics on service demand of A&E Departments and occupancy rates in public hospitals January 24, 2020
The following is issued on behalf of the Hospital Authority: During the winter surge, the Hospital Authority is closely monitoring the service demand of Accident and Emergency Departments and the occupancy rates in public hospitals. Key service statistics are being issued daily for public information. Details are in the appended table.
SCED promotes HK's edge as trade capital in Davos (with photos) January 24, 2020
The Secretary for Commerce and Economic Development, Mr Edward Yau, attended Hong Kong Night in Davos, Switzerland yesterday (January 23, Davos time) and addressed a panel session themed on "Hong Kong, Trade Capital - Connecting Asia, Connecting the World". He highlighted Hong Kong's edge as a trade capital to about 200 international political, […]
Hong Kong and Mexico sign Investment Promotion and Protection Agreement (with photo) January 24, 2020
Hong Kong and Mexico signed an Investment Promotion and Protection Agreement (IPPA) in Davos, Switzerland, yesterday (January 23, Davos time) to strengthen mutual investment protection. The agreement is set to enhance the confidence of investors, expand investment flows and further strengthen the economic and trade ties between the two places. â€‹ The […]
CE leads TeamHK delegation to promote Hong Kong in Davos (with photos/videos) January 23, 2020
The Chief Executive, Mrs Carrie Lam, yesterday (January 23, Davos time) led the TeamHK delegation to attend the Hong Kong Night in Davos, Switzerland, to promote Hong Kong’s strengths and advantages to high-powered guests from different parts of the world. She also attended the World Economic Forum (WEF) Informal Gathering of World Economic Leaders and met […]