Month: December 2023

Cyber Security Professional Awards (CSPA) 2023


The Cyber Security and Technology Crime Bureau of Hong Kong Police Force, the Government Computer Emergency Response Team Hong Kong and the Hong Kong Computer Emergency Response Team Coordination Centre are going to co-organise the Cyber Security Professional Awards (CSPA) 2023

The CSPA 2023 aims to foster collaboration and exchange of cyber security expertise and best practices among various prominent sectors in Hong Kong.  This unique platform allows cyber security personnel to showcase their achievement, while also recognising their remarkable contributions to the field.

This year, the CSPA 2023 extends its invitation to all personnel working in organisation belonging to the designated sectors listed below in Hong Kong:

1. Internet & Cloud Services
2. Telecommunication Services
3. Government Departments & Public Bodies
4. Transportation & Public Utilities
5. Banking & Finance
6. Cyber Security Audit & Consulting
7. Cyber Security Education & Training
8. Cyber Security Startups & SMEs

The judging panel, hailing from diverse prominent sectors, will evaluate and select the best participants for the gold, silver, bronze and merit awards for each of the eight designated sectors. 

For further details of the CSPA 2023, please visit https://cyberdefender.hk/en-us/cspa2023/.  Should you have any queries, please feel free to contact 3660 4367 or email to cspa@police.gov.hk.

CSA HKM Supports the Cybersecurity Symposium 2023

The Cybersecurity Symposium 2023 aims to unite quangos, enterprises and other local organisations in Hong Kong to address the cybersecurity challenge in the digital era and explore how the industry can collaborate to enhance the overall cybersecurity resilience of Hong Kong. The symposium features keynote presentations, panel discussions, solution showcases, and a networking reception, presenting opportunities for participants to network with peers and exchange insights on strategies for mitigating cyber threats.

Cloud Security Alliance Hong Kong & Macau Chapter is a proud supporter of the event.

DATE: December 14, 2023, Thursday
TIME: 2:30 – 7:00 pm
VENUE: Convention Hall, Hong Kong Convention and Exhibition Centre
LANGUAGE: Cantonese and Putonghua
DETAILS: https://www.cybersechub.hk/en/eventDetail/cybersecurity-symposium-2023
REGISTRATION: https://forms.office.com/Pages/ResponsePage.aspx?id=cotCu30YH0CsJCiWwGVGR7kFoIkWelVKthyaiJE1VBxURFlXRDM2MlBWUENIWTNYNU5PT0xKR0QzNiQlQCN0PWcu

CSA HKM Knowledge Sharing Event – December 2023


In the last CSA HKM Knowledge Sharing Event of the year, our expert speaker will share his experience on how to infiltrate US DoD.

During the Covid-19 pandemic meant that most of us were confined indoors. During the lockdown period, our speaker Sheikh Rizan had a brief stint with Bug Bounties. He started hacking for hackerone, bugcrowd and yeswehack. One of his targets was the US Department of Defense public Cloud hosted servers & NASA VPNs.

In the session he will tell his story of how he found several critical vulnerabilities that allowed him to exfiltrate PII (personal identifiable information) data belonging to new army recruits, reset accounts belonging to US Military personnels. All his findings were responsibly disclosed via their respective BBP and VDP programmes back in 2020. The reports had been made public at his hackerone profile.

Participants will claim 1 CPE.

DATE: December 15, 2023 (Friday)
TIME: 12:30 – 01:30 pm
FORMAT: Webinar
TOPIC: Infiltrating US DoD – The Journey & Experience
LANGUAGE: English
SPEAKER: Sheikh Rizan, Security Researcher

THE SPEAKER:
Rizan is a passionate Cybersecurity professional with more than 20 years of experience. He holds several industry relevant certifications including CISSP, CISA, OSCP, OSCE & OSWE. He had published 9 public CVEs and had reported security bugs to various Bug Bounty and VDP programmes. Rizan was also part of a Cyber security surveillance group supporting law enforcement agencies globally in lawful interception. He is currently leading a group of talented security testers for consulting firm based out of Kuala Lumpur, Malaysia. He is also a certified Trainer and had presented technical talks at several Cyber Security conferences in the region.

VIEW THE PRESENTATION: https://youtu.be/CeQXGBget2o