In the wake of a significant data breach affecting Oxfam Hong Kong, an IT expert is sounding the alarm for non-governmental organizations (NGOs), schools, and hospitals to bolster their cybersecurity measures. Francis Fong, honorary president of the Hong Kong Information Technology Federation, emphasized the pressing need for increased spending on cybersecurity during a Thursday interview with RTHK.
The warning follows the Office of the Privacy Commissioner for Personal Data’s revelation that approximately 470,000 individuals had their personal data compromised in last month’s cyberattack on Oxfam Hong Kong. Fong, who also serves on Oxfam’s council, confirmed that the organization has begun notifying all affected individuals.
Fong attributed the heightened vulnerability of NGOs to the cybersecurity landscape’s shifting dynamics, a trend exacerbated by the COVID-19 pandemic. “After the pandemic, many organizations adopted remote work practices,” he explained. “While this flexibility is beneficial, it also creates new risks if systems are not properly secured.”
He noted that inadequate updates to critical security components, such as firewalls, operating systems, and antivirus software, can leave organizations open to cyber threats. “If these systems are outdated, hackers can exploit vulnerabilities to access sensitive data.”
Staff awareness also emerged as a crucial factor in preventing cyberattacks. Fong highlighted that many breaches stem from employees inadvertently clicking on suspicious links or falling victim to phishing scams.
Urgently, he called for a paradigm shift in how organizations approach cybersecurity investments. “In the past, cybersecurity was often viewed as a one-off expense,” Fong stated. “Now, it should be treated as a regular, ongoing cost—one that requires annual budgeting for updates and security audits.”
His recommendations underscore a growing recognition that robust cybersecurity is not just a technical necessity but a fundamental organizational priority. As cyber threats continue to evolve, Fong’s insights serve as a timely reminder for NGOs, schools, and hospitals to reevaluate their defenses and safeguard the personal data of thousands they serve. (source: RTHK)
