Hongkong Post confirmed on July 21 that a cyberattack had targeted its EC-Ship platform, compromising the address book data of numerous account holders. The Hongkong Post cyberattack, which occurred during the late hours of July 20 and continued into July 21, involved an automated and unauthorized access attempt that successfully retrieved sensitive personal and business contact information.
While the EC-Ship service has resumed normal operations, the incident sheds light on growing cybersecurity vulnerabilities faced even by long-standing public service organizations like Hongkong Post. The implications of such a breach are far-reaching, especially considering the sensitive nature of the data involved.
Hongkong Post Cyberattack: What Happened?
According to an official statement from Hongkong Post, the incident involved a robotic or automated access to the EC-Ship platform, a mailing service used frequently by individuals and businesses for logistics and shipping services.
Cyberattackers targeted the address book function, attempting to access and retrieve details of senders and recipients. This includes:
- Full names (personal or company)
- Addresses
- Phone numbers
- Fax numbers
- Email addresses
The Hongkong Post data breach was detected by the organization’s internal monitoring systems, which triggered an immediate block on suspicious activity.
The specific EC-Ship account used in the attack was also disabled to contain the breach. However, by the time the access was stopped, some data had already been retrieved.
Hongkong Post Cyberattack Timeline
- July 20 Midnight: Cyberattack attempts begin using robotic access methods.
- July 21: Anomalous activity detected. Immediate blocking mechanism activated. Authorities including the Police, Digital Policy Office (DPO), Security Bureau, and Office of the Privacy Commissioner for Personal Data are notified.
- July 22: Hongkong Post completes preliminary investigations and confirms that user address book information was indeed accessed. Affected users are informed via email.
Who Is Affected?
At this point, Hongkong Post has not disclosed the exact number of affected users, stating that investigations are still underway. However, given that EC-Ship is widely used by SMEs, logistics providers, and cross-border businesses, the impact could potentially be significant.
Affected users have been advised to remain vigilant, notify anyone whose information may have been exposed, and avoid engaging with suspicious emails or messages claiming to be from Hongkong Post.
Response and Mitigation
Hongkong Post emphasized that it has:
- Followed all government-mandated information security protocols
- Informed law enforcement and regulatory bodies immediately
- Strengthened system-level cybersecurity controls
- Initiated a public awareness effort, warning users about phishing risks and impersonation scams
The organization reiterated that it does not send embedded hyperlinks in emails, SMS messages, or social media for collecting personal or financial information. This serves as a timely reminder amid a surge in phishing attacks mimicking official communications.
In collaboration with the Digital Policy Office, Hongkong Post is also working to review and improve its cybersecurity risk management framework to prevent similar breaches in the future.
What Users Should Do Now
If you are an EC-Ship account holder, below are some practical steps you should take immediately:
- Check your email for any communication from Hongkong Post regarding the breach.
- Notify senders or recipients whose data was stored in your EC-Ship address book.
- Avoid clicking on any links in emails, SMS, or social messages claiming to be from Hongkong Post—especially those requesting personal or payment information.
- Report suspicious messages to the appropriate authorities.
- Consider changing passwords and enabling multi-factor authentication (if available) on your EC-Ship account and related services.
For further concerns or queries, users can call the Hongkong Post General Enquiry Hotline at 2921 2222.
As investigations continue and systems are reinforced, one can only hope that this incident leads to stronger safeguards and deeper public awareness about the growing need for cybersecurity in every facet of modern life.
