Editorial | Hong Kong’s Cyberport hack sends reminder to be alert

Cyber hackers know no boundaries. With the internet and technology permeating most aspects of public and private life nowadays, the slightest lapse in security may result in serious consequences.

The news that Hong Kong’s tech hub Cyberport has become the latest victim of a ransomware attack has caused more than just embarrassment. The data that has been leaked and subsequently exposed on the so-called dark web includes sensitive personal information, such as details of staff identity cards, bank account numbers, salaries and credit cards.

The government-owned business park in Pok Fu Lam has come under fire for its decision not to release details of the August 18 attack until last week after the theft came to light on social media. It said there was no evidence of any misuse of personal data at the time and it did not want to cause any “unnecessary concern”.

Officials said they had fought off several recent attacks, and a task force would be set up to review and strengthen security.

The delay in disclosing last month’s incident underlines the lack of urgency and sensitivity on the part of management. This was also reflected in a suggestion that data was stolen from a shared drive with presumably less protection.