The Cyber Security and Technology Crime Bureau (CSTCB) is organising the CyberDefenders’ Months between December 2021 and January 2022. The campaign comprises joint operations, training for the industry, the launch of an anti-scam tool and publicity events to safeguard cyber security.

Operation ZESTBOLD

CSTCB joined hands with INTERPOL and stakeholders to gather and analyse intelligence in a cyber hygiene operation codenamed “ZESTBOLD” between September and November 2021. During the operation, CSTCB officers successfully detected, rectified or removed 15 Zombie servers with command and control functions, 2 486 manipulated Zombie bots and 1 075 phishing websites. They also notified the users of over 120 000 potentially vulnerable devices and provided security advice.

During the press conference on December 14, 2021, CSTCB and cyber security experts briefed the media on the trend of cyber attack and offered security advice. The experts gave a demonstration of a cyber attack to raise the public’s awareness of cyber security.

Cyber Attack and Defence Elite Training

Between August and December 2021, CSTCB and a cybersecurity training platform provider co-hosted the first Cyber Attack and Defence Elite Training (CADET) in three stages at the Cyber Range of the Police Headquarters. The training simulated real-world cybersecurity incidents to enhance the response capability of over 160 critical infrastructure practitioners.

An induction course was held for the participants in the first stage. Through case studies and interactive quizzes, the participants gained a better understanding of the importance of enhancing cyber incident response capability and discussed the standard procedures for responding to ransomware attacks. During the second stage, the participants were tasked to handle simulated cyber attacks on a company’s backend database. In the third stage, the participants took part in the CADET Incident Response Tournament, during which they responded to a simulated ransomware cyber attack and competed in a quiz.

Phishing Scam Search Engine

In December 2021, CSTCB launched the Phishing Scam Search Engine on its CyberDefenders’ website. Some citizens might have received emails purportedly from banks, public bodies or couriers alleging abnormality in their accounts, unsuccessful payments, refund arrangements, etc. Those emails would attach links to unknown websites, requesting citizens to provide their login details, credit card information and one-time passwords. Apart from enquiring with the relevant institutions, citizens may differentiate if an email is a phishing scam using the Phishing Scam Search Engine. By inputting the concerned web address or email address, citizens will know if it is phishing related.

Please click the following link to visit the CyberDefenders’s website：（https://cyberdefender.hk/en-us/）.

Officers take a photograph with participants of the CADET Incident Response Tournament.

Critical infrastructure practitioners respond to a simulated ransomware cyber attack in the CADET Incident Response Tournament.

Senior Superintendent of CSTCB Lam Cheuk-ho (centre) and cyber security experts brief the media on the trend of cyber attack and offer security advice.

An officer of CSTCB handles a vulnerable device.

CSTCB sets up a booth at the 55th Hong Kong Brands and Products Expo to promote cyber security.

CSTCB launches the Phishing Scam Search Engine to safeguard cyber security.