The Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) is taking bold steps to revolutionize cybersecurity in Hong Kong by harnessing the power of artificial intelligence (AI). With a 31% increase in cybersecurity incidents in the first half of 2024, HKCERT is using AI language models to strengthen its threat detection capabilities, particularly in identifying phishing websites and enhancing its risk alert systems.
Alex Chan Chung-man, the general manager of HKCERT’s digital transformation division, acknowledged the evolving tactics of hackers. He explained that hackers are increasingly employing advanced tools like AI-generated deepfake impersonations and undetectable malware. “We can see the hackers getting more advanced and sophisticated,” Chan said.
One of the key applications of AI at HKCERT is in detecting potential phishing sites. Since May, the organization has been using a large language AI model to analyze website domain names and identify phishing websites, which can then be reported or taken down. In just one month, the AI tool analyzed more than 3.7 million websites, exponentially increasing HKCERT’s processing capabilities. Notable phishing websites successfully detected by the tool include those imitating popular Japanese e-commerce site Rakuten, as well as social media platforms like WhatsApp and Facebook.
Beyond phishing, AI is also being leveraged to improve HKCERT’s cybersecurity alert system. The AI tool analyzes threat intelligence gathered by HKCERT, specifically targeting trends in phishing, malware, and botnet attacks specific to Hong Kong. After an evaluation by staff, the AI tool generates security alerts, increasing the efficiency of the watchdog’s intelligence analysis by an impressive 80%.
The timing of HKCERT’s announcement is significant, as it comes on the heels of the Hong Kong police receiving over 18,000 reports of cybersecurity attacks in the first quarter of this year. A series of high-profile data breaches involving both private businesses and government departments has prompted calls for enhanced cybersecurity efforts in the city. HKCERT’s AI-driven approach has the potential to make a significant impact in mitigating these cybersecurity risks.
Looking ahead, Chief Executive John Lee Ka-chiu has announced plans to introduce new legislation in 2024 to enhance the protection and cybersecurity of critical infrastructure. It reflects the government’s commitment to strengthening cybersecurity measures and tackling the increasing threats faced by both individuals and organizations in Hong Kong.
The application of AI by HKCERT demonstrates the proactive approach being taken by cybersecurity professionals to stay one step ahead of hackers. As the sophistication of cyberattacks continues to evolve, the power of AI is harnessed to bolster defenses and protect against emerging threats. Through its innovative use of AI, HKCERT is at the forefront of revolutionizing cybersecurity in Hong Kong, mitigating risks, and safeguarding the digital landscape.
Use the share button below if you liked it.