// archives

Archive for February, 2016

Over 40 Percent of Chinese Websites Found to Have Security Flaws

More than 40 percent of Chinese websites were found to be vulnerable to attacks and personal information leakage, the Global Times reported. Based on the findings of Qihoo 360, a Chinese Internet security company, more than 1 million security loopholes were detected on websites in 2015. A report by Qihoo also showed that this accounts for 43.9 […]

China Goes After Erring Commercial Websites, Beefs Up Cybersecurity Efforts

Chinese authorities have stepped up efforts on curbing news reporting malpractices made by commercial websites. Under the new notice posted by the Cyberspace Administration of China on its website on Monday, only commercial sites that have already been given licenses to report news will be allowed to put up local sections for their reports. However, […]

Government cyber-surveillance is the norm in China — and it’s popular

When they met most recently, President Obama extracted from his Chinese counterpart, Xi Jinping, a solemn pledge to rein in Chinese surveillance and hacking of U.S. government agencies, companies and individuals. The backsliding seems to have begun almost immediately , with new reports of attacks by Chinese hackers in the United States. This conflict is […]

What Does 2016 Hold for China-US Relations in Cyberspace?

Sino-U.S. relations in cyberspace in 2016 will be defined by three key policies: attribution, sanctions, and norms. The first two tacks will be used by the United States to contain malicious Chinese activities in cyberspace (and to assuage the U.S. private sector and U.S. public opinion), whereas the last device will be used for promoting […]

Chinese military force to take lead on cyber, space defense

A new Chinese military outfit will lead the country’s push to enhance its cyber warfare, space security and online espionage capabilities, Chinese military observers and analysts said. Senior People’s Liberation Army (PLA) officials and other observers have begun to give details of the country’s new Strategic Support Force (SSF), whose establishment was announced at the […]

Hong Kong Networks Abused to Host More Than 22,000 Phishing URL

In 2015, HKCERT has handled 1,931 cases on phishing site hosting, accounting for 40% of all security incidents handled. Compared with 594 similar cases handled in the same period last year, the increase is 233%. The surge was caused by a phishing campaign targeting banks in mainland China, by abusing hosting service located in Hong […]

Hong Kong Security Watch Report (Q4 2015)

HKCERT is pleased to bring to you the “Hong Kong Security Watch Report” for the forth quarter of 2015.   Nowadays, a lot of “invisible” compromised computers are controlled by attackers with the owner being unaware. The data on these computers may be mined and exposed every day and the computers may be utilized in […]

Lessons learnt from VTech — Is your website secure?

Hong Kong-based toy maker VTech reportedly encountered data breach in November.  More than five million names, email addresses, passwords, and home addresses of parent customers, and around 200,000 first names, genders and birthdays of kids were reported to be exposed.   According to the online magazine Motherboard, the hacker indicated he took advantage of the vulnerability at […]

HKPC Warns of Growing Cyber Attacks that Harvest Credentials for Profit

Enterprises and Internet users should strengthen their guard against an anticipated surge in cyber attacks targeting web servers, point of sale (POS) systems, and mobile devices; urged information security experts at the Hong Kong Productivity Council (HKPC) today (20 January 2016). The advice came as HKPC’s Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) […]