-
Our Services
- New Industrialisation
-
IIOT
- IIOT
- Industrie 4.0 - Smart Enterprise
- Product Lifecycle Management Consultancy
- Intelligent Automatic Warehousing and Logistics
- Real-Time Manufacturing Tracking System
- Knowledge Based Engineering & CAD Solution
- Location Based Services and Location Analytics
- The HATCH
- Hong Kong Industrial Drone Technology Centre
-
AI & Robotics
- AI & Robotics
- AI Sheet Metal Surface Defect Detection Technology
- Product Innovation and Design Management
- Robotics Application
- Automation Feasibility Study
- 3D Automatic Processing
- Application and Research on Vision and Ultrasonic Inspection Assisted by Artificial Intelligence and Robotics
- Customized Intelligent and Cognition Automation Machine & System Development
- Autonomous Air-ground Cooperative Tunnel Inspector
- AR-Empowered Robot Control System (ARERC System)
- IoT-enabled Smart Toilet Bowl Cleaning System
- Novel Materials
-
Advanced Manufacturing Technology
- Advanced Manufacturing Technology
- 3D Scanning and Reverse Engineering Service
- Flexible Metallic Fiber Physical Porous Part Fabrication Technology
- Advanced Mould Cooling Technology and CAE Conformal Cooling Analysis
- Gas Atomisation Technology
- Dual Laser Metal Polishing Technology
- Advanced Additive Manufacturing, 3D Printing Technology, and Direct Manufacturing
- Diffusion Bonding Technology
- Electrically-Assisted Free Forming (EAFF) Technology for Customisation of Sheet Metal Parts
- Plastic Process and Machinery Technology
- Fashion and Garment Technology
- Computer Aided Technology (CAx)
- Watch Assembly Automation Technology
-
Digital Transformation
- Digital Transformation
- HKPC Digital DIY Portal
- 「FitEasy」Virtual Fitting Technology - For People with Disability
- Smart Solution
- Digital Transformation Support
- Research and Analytics
- Strategic IT Management
- Cyber Security
- Embedded Software System
- New Media and Learning Technology Development
- IT Industry Support
- DevOps Maturity Assessment and Consultancy Service
- Software Testing Automation Consultancy Service
- Blockchain Consulting Service
- Extended Reality (XR) technology and consultancy service
- Smart Living
-
Green Technology
- Green Technology
- HealthTech and Chinese Medicine
- Carbon Neutrality and Comprehensive Carbon Management
- Green Procurement
- Eco-Design & Manufacturing Consultancy Service
- Cleaner Production
- Advanced decolorisation process for landfill leachate
- Effective Utilisation of Resources
- Innovative Environmental Technology Development
- Food Technology
- Geron Technology
-
Corporate Sustainability
- Corporate Sustainability
- Manufacturing Technology (Tooling, Metals & Plastics) Recognition of Prior Learning (RPL) Mechanism
- Market Research and Analytics
- Business Innovation
- Sustainability-related standards and guidance
- Organisation Innovation Capability Development
- ESG and Sustainability Services
- District Innovation
- Customer Service Assessment
- Intellectual Property (IP) Protection and Management
- Support to Creative Industries
- Manufacturing Standards Consultancy Service
- Production Capacity Optimisation
- Cost of Quality
- Testing & Standards
- Price Concessions to SMEs
- Community
-
Support & Resource
- Technology Transfer
- SME Services
- Biz Expands Easy (BEE) Funding Portal
-
Support Centres
- Support Centres
- Celesphere
- Inno Space
- The HATCH
- Intellectual Property Services Centre
- Advanced Electronics Processing Technology Centre
- Green Living Laboratory
- Reliability Testing Centre
- Electromagnetic Compatibility Centre
- Plastics Technology Centre
- Smart Wearables, Watch & Clock Technology Centre
- Conformal Cooling Technology Centre
- Hong Kong Digital Testing Hub
- Hong Kong Industrial Drone Technology Centre
- Aqua Research Laboratory
- Advanced Materials and Intelligent Manufacturing Centre
- Hong Kong Joint Research Lab for Applications of Intelligent Automation Technology
- Future FoodTech Lab
- HKUST-HKPC Joint Research Lab for Industrial AI and Robotics
- Hong Kong Industrial Artificial Intelligence & Robotics Centre (FLAIR)
- Venues & Facilities
- Testing & Standards
- HKPC Spotlights
- HKPC Academy
- About US
-
LANGUAGE
HKCERT Urges the Public to Beware of Malware Attacks by Hackers Exploiting the Recent CrowdStrike Software Update Failure Incident
(Hong Kong, 24 July 2024) Regarding the CrowdStrike software update failure incident on 19 July 2024, Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) found reports that criminals continue to evolve their attack tactics. Those include using fake CrowdStrike recovery manuals, fake remediation solutions and fake software updates to deliver unidentified malware, which could lead to sensitive data leakage, system crashes, and data loss.
According to related information, HKCERT has observed the following attack tactics to spread malware that are taking advantage of this incident.
Fake recovery manual
- A new type of malware is spreading through Word documents that contain macros. These documents pretend to be Microsoft recovery guides to trick people into opening them. Once opened, the macros activate and start stealing sensitive information like passwords. This stolen information is then sent to the attacker's server.
Fake remediation solutions
- Through phishing sites and fake intranet portals to promote fake CrowdStrike hotfix. Fake hotfix delivered a malware loader then dropped a remote access tool that can be controlled by hackers on the infected system.
Fake CrowdStrike update
- Phishing emails included a link to download a ZIP file that contained an executable named 'Crowdstrike.exe'. After being executed, "data wiper" was extracted to a folder under "%Temp%" and launched to destroy data stored on the device.
HKCERT urges the public to be vigilant against the malware attacks and recommends that users should:
- Apply remediation methods provided by official websites (Such as remediation methods provided by CrowdStrike))
- Obtain software patch update from trusted source (Such as recovery tool provided by Microsoft))
- Check website certificates on download page to ensure legitimate source, avoid executing files from untrusted source.
- Use browser settings to enable download protection which can issue warnings about potentially harmful websites or downloads.
- Use the free search engine “Scameter” of Cyberdefender.hk to identify frauds and online pitfalls through email, URL or IP address, etc.
If the public encounter a malware attack, HKCERT recommends that users should:
- Immediately disconnect from the network to prevent further spread of the malware
- Conduct a comprehensive system scan to identify and remove any malicious software
- Restore from a backup (such as an external hard drive) to recover lost or compromised data
- Install security software to safeguard against future attacks
To learn more about the security advisory of CrowdStrike denial of service alert, please visit the HKCERT website for the latest news:
https://www.hkcert.org/tc/security-bulletin/crowdstrike-denial-of-service-vulnerability_20240719
Businesses or members of the public who wish to report to HKCERT on cyber security related incidents can do so by completing the online form at: https://www.hkcert.org/zh/incident-reporting or call the 24-hour hotline at 8105 6060. For further enquiries, please contact HKCERT at hkcert@hkcert.org.
- Ends -
FOLLOW US
SUBSCRIBE TO OUR NEWSLETTERS
Share the latest information of HKPC to your inbox
SIGNUP NOW