1 Photo
Cyber Security and Technology Crime Bureau (CSTCB) hosted a thematic seminar titled “Mastering Incident Response for a Secure Tomorrow” on July 25, attracting participation of some 220 cyber security professionals from 102 organisations to explore the impacts of cybersecurity incidents and share defensive measures. In his opening speech, Chief Superintendent of CSTCB Lam Cheuk-ho mentioned that cyber attacks had become a global concern and Hong Kong was no exception. The government, therefore, planned to introduce new legislation this year to protect the security of computer systems in critical infrastructure, with a view to enhancing the cyber defence capabilities in Hong Kong.
The thematic sharing session encompassed trends in cybersecurity incident response. Two members of the Cyber Security Action Task Force, namely Cisco and KPMG, also attended. First, CSTCB representative analysed how hackers used legitimate tools to launch ransomware attacks, along with key points for investigation and evidence collection. Next, a representative from Cisco introduced the MITRE ATT&CK framework, a cybersecurity threat model based on attack surfaces, for detecting threats and assisting in investigating cybersecurity incidents. Finally, a representative from KPMG shared how the company assisted in investigating complex cyber incidents, highlighting data breach risks and the importance of developing comprehensive defence strategies for stakeholders’ reference.