20 JUL 2024
Statement by Oxfam Hong Kong concerning a cyberattack incident
Last updated 15 Aug 2024
Follow-up from Oxfam HK – Cyberattack Incident
As a precautionary measure, our organisation has proactively notified the potentially affected individuals and advised them to consider taking data security protection measures. As of today, the Incident is still under investigation by cybersecurity experts, and we are unable to confirm the list of affected data subjects at this moment.
We assure you that data security is our top priority and we are taking this very seriously. We have already strengthened our digital defense to safeguard our information and systems according to the cybersecurity experts’ advice.
Last updated 25 July 2024
Follow-up from Oxfam HK – Cyberattack Incident
We are actively working with our cybersecurity experts to investigate into whether the Incident had resulted in any unauthorised disclosure of personal data that we hold, and the extent of any such disclosure.
As precautionary measures, please consider taking the following actions.
- You should stay vigilant regarding any unsolicited or suspicious communications, including phone calls, text messages, and emails. Please refrain from opening any suspicious attachments or links, and from disclosing any of your personal data in response to any of these suspicious communications.
- Please be alert of any suspicious activities, including any unusual logins or transaction records.
We assure you that data security is our top priority and we are taking this very seriously. We remain committed to continuously strengthening our digital defense to safeguard our information and systems. We will take the necessary and appropriate steps as and when we have further information.
Last updated 20 July 2024
In the morning of 10 July 2024, Oxfam Hong Kong (“OHK”) discovered that it had experienced a cyberattack incident affecting certain of its systems, including the Oxfam TrailWalker system (the “Incident”).
OHK has immediately initiated an investigation into the Incident. OHK has promptly engaged independent cybersecurity experts to conduct an examination of the affected systems to assess the impact of the Incident and remediate the Incident.
Reports have been made to the relevant authorities in Hong Kong, including the Police, the Office of the Privacy Commissioner for Personal Data and the Hong Kong Computer Emergency Response Coordination Centre.
We want to assure our donors and partners that data security is our top priority and we take this very seriously. OHK remains committed to continuously strengthening its digital defense to safeguard its information and systems.
OHK further encourages all stakeholders to exercise heightened caution. Should you receive any suspicious emails, messages, or links from OHK, we advise you to refrain from opening or accessing these.
For any enquiries or assistance, please email us at info@oxfam.org.hk or contact us via the following hotlines: 2520 2525