Cyber Incident Victim: Hong Kong Technology Venture Company Limited

On January 26, 2022, Hong Kong Technology Venture Company Limited (HKTV), parent company of HKTVmall, detected abnormal and suspicious activities within its computer systems. Unauthorized access originated from servers located in unspecified Asian regions, targeting the platform’s delivery infrastructure. The intrusion resulted in the compromise of customer information, including delivery addresses, recipient names, and contact numbers. HKTV publicly disclosed the incident in a statement released on January 28, confirming the breach impacted its online shopping platform. The company characterized the event as a security breach involving external server access but did not specify the exact intrusion method or duration of unauthorized activity prior to detection. No evidence suggested transactional data or payment details were accessed.

HKTVmall’s parent company confirmed that a small portion of its 4.38 million registered customers’ data was accessed without authorization. The breach exclusively affected information stored on the delivery platform, though the precise number of impacted individuals was not disclosed. HKTV did not report operational disruptions to its services or evidence of data misuse following the incident. The statement emphasized the limited scope of accessed data relative to the total customer base but provided no technical details about containment measures, forensic investigations, or coordination with law enforcement. No customer-facing remediation steps, such as credit monitoring offers, were mentioned in the initial disclosure. The company’s communication focused on confirming the breach’s occurrence and the types of compromised personal information.