-
Our Services
- New Industrialisation
-
Smart Manufacturing
- Smart Manufacturing
-
IIOT
- IIOT
- Industrie 4.0 - Smart Enterprise
- Product Lifecycle Management Consultancy
- Intelligent Automatic Warehousing and Logistics
- Real-Time Manufacturing Tracking System
- Knowledge Based Engineering & CAD Solution
- Location Based Services and Location Analytics
- The HATCH
- Hong Kong Industrial Drone Technology Centre
-
AI & Robotics
- AI & Robotics
- AI Sheet Metal Surface Defect Detection Technology
- Product Innovation and Design Management
- Robotics Application
- Automation Feasibility Study
- 3D Automatic Processing
- Application and Research on Vision and Ultrasonic Inspection Assisted by Artificial Intelligence and Robotics
- Customized Intelligent and Cognition Automation Machine & System Development
- Autonomous Air-ground Cooperative Tunnel Inspector
- AR-Empowered Robot Control System (ARERC System)
- IoT-enabled Smart Toilet Bowl Cleaning System
- Novel Materials
-
Advanced Manufacturing Technology
- Advanced Manufacturing Technology
- 3D Scanning and Reverse Engineering Service
- Flexible Metallic Fiber Physical Porous Part Fabrication Technology
- Advanced Mould Cooling Technology and CAE Conformal Cooling Analysis
- Gas Atomisation Technology
- Dual Laser Metal Polishing Technology
- Advanced Additive Manufacturing, 3D Printing Technology, and Direct Manufacturing
- Diffusion Bonding Technology
- Electrically-Assisted Free Forming (EAFF) Technology for Customisation of Sheet Metal Parts
- Plastic Process and Machinery Technology
- Fashion and Garment Technology
- Computer Aided Technology (CAx)
- Watch Assembly Automation Technology
-
Digital Transformation
- Digital Transformation
- HKPC Digital DIY Portal
- Digital Transformation Support
- 「FitEasy」Virtual Fitting Technology - For People with Disability
- Smart Solution
- Research and Analytics
- Strategic IT Management
- Embedded Software System
- New Media and Learning Technology Development
- IT Industry Support
- DevOps Maturity Assessment and Consultancy Service
- Software Testing Automation Consultancy Service
- Blockchain Consulting Service
- Extended Reality (XR) technology and consultancy service
-
Cyber Security
- Cyber Security
- Cyber Security
- Cybers Security-by-design, Privacy and Compliance-by-default
- Design & Architecture
- Train & Develop
- Offensive Security
- Intelligent Security
- Defensive Security
- Intelligent Hardening
- Internet of Things (IoT) & Operational Technology (OT) Cyber Security Testing
- Phishing Defence Services
- Cyber Security Assessment & Audit
- Cyber Security Consultancy for i4.0 & e4.0
-
Green & Smart Living
- Green & Smart Living
- Green Technology
-
HealthTech and Chinese Medicine
- HealthTech and Chinese Medicine
- R&D service and Functional Investigation on Chinese Medicine, Health Food & Wellness product
- Compliance Consultation Service for Chinese Medicine, Pharmaceutical, Health Food and Medical Device Industries
- Manufacturing Enhancement - Automatic Intelligent System for Production and Packaging in Chinese Medicine, Pharmaceutical and Health Food Industries
- Assisting funding application for local medicine and health industrial associations
- Food Technology
- Smart Living
-
Corporate Sustainability
- Corporate Sustainability
- ESG and Sustainability Services
- Manufacturing Technology (Tooling, Metals & Plastics) Recognition of Prior Learning (RPL) Mechanism
- Market Research and Analytics
- Business Innovation
- Sustainability-related standards and guidance
- Organisation Innovation Capability Development
- District Innovation
- Customer Service Assessment
- Intellectual Property (IP) Protection and Management
- Support to Creative Industries
- Manufacturing Standards Consultancy Service
- Production Capacity Optimisation
- Cost of Quality
- FutureSkills
- SME Support
- Funding
- Testing & Standards
-
Support & Resource
- Technology Transfer
-
Support Centres
- Support Centres
- The Cradle – Go Global Service Centre
- Life & Health Tech Hall
- HKPC-HP 3D Printing Technology Centre
- Future Manufacturing Hall
- Celesphere
- Inno Space
- The HATCH
- Intellectual Property Services Centre
- Advanced Electronics Processing Technology Centre
- Green Living Laboratory
- Reliability Testing Centre
- Electromagnetic Compatibility Centre
- Plastics Technology Centre
- Smart Wearables, Watch & Clock Technology Centre
- Conformal Cooling Technology Centre
- Hong Kong Digital Testing Hub
- Hong Kong Industrial Drone Technology Centre
- Aqua Research Laboratory
- Advanced Materials and Intelligent Manufacturing Centre
- Hong Kong Joint Research Lab for Applications of Intelligent Automation Technology
- Future FoodTech Lab
- HKUST-HKPC Joint Research Lab for Industrial AI and Robotics
- Hong Kong Industrial Artificial Intelligence & Robotics Centre (FLAIR)
- Testing & Standards
- HKPC Spotlights
- About US
-
LANGUAGE
HKCERT Urges the Public to Beware of Malware Attacks by Hackers Exploiting the Recent CrowdStrike Software Update Failure Incident
(Hong Kong, 24 July 2024) Regarding the CrowdStrike software update failure incident on 19 July 2024, Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) found reports that criminals continue to evolve their attack tactics. Those include using fake CrowdStrike recovery manuals, fake remediation solutions and fake software updates to deliver unidentified malware, which could lead to sensitive data leakage, system crashes, and data loss.
According to related information, HKCERT has observed the following attack tactics to spread malware that are taking advantage of this incident.
Fake recovery manual
- A new type of malware is spreading through Word documents that contain macros. These documents pretend to be Microsoft recovery guides to trick people into opening them. Once opened, the macros activate and start stealing sensitive information like passwords. This stolen information is then sent to the attacker's server.
Fake remediation solutions
- Through phishing sites and fake intranet portals to promote fake CrowdStrike hotfix. Fake hotfix delivered a malware loader then dropped a remote access tool that can be controlled by hackers on the infected system.
Fake CrowdStrike update
- Phishing emails included a link to download a ZIP file that contained an executable named 'Crowdstrike.exe'. After being executed, "data wiper" was extracted to a folder under "%Temp%" and launched to destroy data stored on the device.
HKCERT urges the public to be vigilant against the malware attacks and recommends that users should:
- Apply remediation methods provided by official websites (Such as remediation methods provided by CrowdStrike))
- Obtain software patch update from trusted source (Such as recovery tool provided by Microsoft))
- Check website certificates on download page to ensure legitimate source, avoid executing files from untrusted source.
- Use browser settings to enable download protection which can issue warnings about potentially harmful websites or downloads.
- Use the free search engine “Scameter” of Cyberdefender.hk to identify frauds and online pitfalls through email, URL or IP address, etc.
If the public encounter a malware attack, HKCERT recommends that users should:
- Immediately disconnect from the network to prevent further spread of the malware
- Conduct a comprehensive system scan to identify and remove any malicious software
- Restore from a backup (such as an external hard drive) to recover lost or compromised data
- Install security software to safeguard against future attacks
To learn more about the security advisory of CrowdStrike denial of service alert, please visit the HKCERT website for the latest news:
https://www.hkcert.org/tc/security-bulletin/crowdstrike-denial-of-service-vulnerability_20240719
Businesses or members of the public who wish to report to HKCERT on cyber security related incidents can do so by completing the online form at: https://www.hkcert.org/zh/incident-reporting or call the 24-hour hotline at 8105 6060. For further enquiries, please contact HKCERT at hkcert@hkcert.org.
- Ends -
FOLLOW US
SUBSCRIBE TO OUR NEWSLETTERS
Share the latest information of HKPC to your inbox