Hong Kong prison department's IT system hacked, 6,800 employees' data compromised

Hong Kong's Correctional Services Department revealed that a hacker illegally accessed its IT system on Tuesday, compromising personal data of 6,800 current and former employees. The department stated there is no evidence of data leakage so far and has notified affected individuals.

Hong Kong's Correctional Services Department announced on Friday evening that a hacker had gained illegal access to one of its IT systems on Tuesday.

"After a preliminary investigation, the Correctional Services Department believes the incident involved unauthorised access to the internal Knowledge Management System by a hacker, through which the hacker then gained entry to another IT system maintaining personal data of [the department] staff," it said.

The breach affected 6,800 current and former employees, compromising their names, gender, date of birth, academic qualifications, employment history in the department, and email addresses, the department added.

It stressed that there was no evidence so far suggesting the data had been leaked or disclosed. The department informed all potentially affected individuals of the situation and reminded them to report any suspicious circumstances to police as soon as possible.

It also reported the case to police, the Security Bureau, the city's privacy watchdog, and the Digital Policy Office.

Relaterede artikler

Hong Kong’s Hospital Authority apologised on Saturday for a data breach affecting more than 56,000 patients from Kowloon East hospitals. The privacy watchdog and police are investigating after unauthorised retrieval of patient data was detected around 2am on Friday.

Rapporteret af AI

Reported technology crimes in Hong Kong fell 6.9 per cent in 2025, yet losses from hacking more than doubled to HK$62.6 million. Police officials linked the rise to high-value attacks on financial institutions and cryptocurrency platforms.

Hong Kong’s privacy watchdog has launched the Hong Kong International Data Privacy Academy to align with national plans for developing the city into a global talent hub and to address challenges from AI.

Rapporteret af AI

A data breach at education technology provider Infinite Campus has exposed the personal information of more than 137,000 school staff members after threat actors compromised the company's Salesforce environment.

Dette websted bruger cookies

Vi bruger cookies til analyse for at forbedre vores side. Læs vores privatlivspolitik for mere information.
Afvis