Skip to main content

HKCERT: Watch out for New Ransomware


Video on Watch out for New Ransomware (Chinese only)

In light of the new ransomware attacks on computer users across the world, the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) of the Hong Kong Productivity Council today (28 June 2017) urged the public to be vigilant.

Cyber criminals have launched the attacks through phishing email campaigns. An infected computer would try to infect other machines in the local network quietly for up to an hour before rebooting to display the ransom notice. It would attack computers with an unpatched Microsoft Windows vulnerability, first discovered in the WannaCry attacks. Also, machines in the local network that the infected computer has domain administrative rights over would be commanded to install the ransomware.

As of 5pm today, HKCERT has not received any local reports of the ransomware. However, it has earlier issued a security alert to urge computer users to take the following remedial and preventive measures:

  1. Apply latest security updates to Windows and other applications;
  2. Minimize the number of users who have domain administrative rights to confine the scope and impacts of attacks, and use normal privilege in daily operation;
  3. Ensure the installation of anti-virus or Internet security application, and its signature updated;
  4. Ensure personal firewall is turned on to block incoming SMB connections;
  5. Regularly backup data and keep an offline copy; and
  6. Do not open links and attachment in any suspicious emails.

The public may learn more details about the new variant ransomware security alert from HKCERT website For incidents reporting or enquiries, please contact the HKCERT hotline at tel: (852) 8105 6060, or email: hkcert@hkcert.org. For other media enquiries, please contact Justina Shum at tel. (852) 2788 5895 or email: justina@hkpc.org.

* * *

Mr Jonathan Ho
General Manager
Corporate Communication
Tel: (852) 2788 6390
Fax: (852) 2788 5056
Email: jonathanho@hkpc.org
Website: www.hkpc.org

28 June 2017

Mr Wilson Wong, General Manager (IT and Business Process) of HKPC (left), and Mr Jason Pun, Assistant Government Chief Information Officer (Cyber Security and Standards) of the HKSAR Government, give an update on the new variant of ransomware attackMr Wilson Wong, General Manager (IT and Business Process) of HKPC (left), and Mr Jason Pun, Assistant Government Chief Information Officer (Cyber Security and Standards) of the HKSAR Government, give an update on the new variant of ransomware attack