Luk Fook Holdings (00590) issued an announcement that, as previously announced, the group (through Luk Fook Holdings Limited) has hired...
According to the announcement by Luk Fook Holdings (00590) on the China Securities Regulatory Commission website, the group (through Luk Fook Holdings Limited) has hired a leading network security consulting company to assess the accuracy and fundamental reasons of potential incidents, and to conduct a comprehensive inspection of the security of the group's systems and servers.
After investigation, it was confirmed that someone has attempted to access the group's database without authorization. However, only partial records of about 1,800 Hong Kong customers were extracted from the group's database. The integrity/validity of such records extracted from the company's database could not be verified. In addition, at all critical moments, the affected servers were protected by network firewalls and endpoint detection and response solutions to prevent network-based and host-based threats. After the potential incident was discovered, the group immediately launched network incident containment and response procedures, including disconnecting the affected servers from the group's network, and performing comprehensive anti-malware scans. Since the investigation began, the group has taken further containment measures, including but not limited to regular monitoring of its networks to identify potential malicious activity, and allowing only trusted connections to the affected servers. The group has also implemented additional security measures to prevent similar attacks from happening again and to protect customer privacy. The company is contacting every potentially affected customer to alert them to this potential incident and the potential risks to their personal information.
The company is contacting every possibly affected customer to remind them of this potential incident and the potential risks to their personal information.