Investhk reviews on data leaks according to Ransomware attack

Investhk, a state department for the special department for special region of the special region in Hong Kong, which is responsible for the promotion of foreign direct investments Ransomware attack.

The department announced on Sunday that parts of its computer system were exposed to a malicious ransomware attack on Saturday that addressed areas such as the InvestHK, its intranet and part of the website operations. The services of Investhk by phone and email as well as the planned personal sessions remain like normal, said the department.

Read more: Cybersecurity defects led to the leak of Sport Club data

A spokesman for the department said that after the attack, immediate measures such as the update of relevant access rights, the isolation of affected systems and the activation of security procedures – to strengthen the safety protocols of the system and to prevent further ideas were carried out.

The department is still working with the police to examine whether data was leaked during the attack. A preliminary evaluation has shown that basic information about Investhk's customers – such as the contact information from the companies – and the records via InvesthK employees may have been leaked through.

Investhk will notify relevant parties if further updates are available, the spokesman said.

Read too: HKSAR GOVT organizes the first cyber security road

The department is currently applying for advice from the government's digital political office and has appointed experts to investigate and relax the attack.

The spokesman said that Investhk never collects personal information or requesting payment with embedded hyperlinks in e -mails, SMS messages or social media sites.

Francis Fong Po-Kiu, Honorary President of the Federation of Information Technology in Hong Kong, said that the HKSAR government has already instructed its departments to store personal information and sensitive data on the government's cloud system, which reduces the likelihood of data loss.

Read too: HK asked to improve cyber security through cross -border cooperation

Fong added that this case reveals the need for some departments to rethink all security gaps in their digital systems.

In recent years, a number of data leakage has occurred in the SAR. Cyberport was compiled during a cyber attack in August 2023 when 400 GB of data was stolen. In May 2024, the fire department department presented a potential data loss, which includes personal information on around 5,000 employees and 480 inhabitants. Another incident occurred in the Department of Electrical and Mechanical Services in December last year, as personal data in connection with over 17,000 people.

atglasshao@chinadailyhk.com