A Hong Kong based center faced a security incident. The Drug Safety Testing Center (DSC) was affected. It is under HKSTP in Hong Kong. The incident occurred on May 12th. A malicious ransomware attack hit its computer system. DSC’s system operates independently from HKSTP. Its security is managed by an outsourced contractor. After discovery, security measures were enhanced. DSC servers were disconnected and isolated. An incident task force was activated. The case was reported to Hong Kong police.
The ransomware attack compromised some personal data.
Data of about 30 related employees was involved. Around 20 DSC customers’ data was also affected. Hong Kong authorities were notified as per procedure. These included technology and privacy offices. The testing center is closely working with its contractor. They are also consulting cybersecurity experts. Affected organizations and individuals are being duly notified. This ensures they are aware of the situation.
HKSTP is cooperating fully with the police investigation.
A spokesperson stressed their commitment to information security. This has always been a priority for HKSTP. They follow government established procedures. An independent cybersecurity expert has been commissioned. This expert will review the incident in Hong Kong. They will also assist with remediation efforts. An investigation report will be submitted. This aims to further bolster system security.
The Drug Safety Testing Center launched in 2022. It provides GLP preclinical services in Hong Kong. These services study the safety of therapies. They also assess medical devices for safety. The public received an important advisory. If suspicious messages claiming to be DSC are received, report them. They should call Hong Kong police immediately. Alternatively, they can contact HKSTP for any inquiries.
Reference: