Circular to licensed corporations, SFC-licensed virtual asset service providers and associated entities Enhanced cybersecurity measures to address evolving risks arising from artificial intelligence-enabled cyberattacks
Action requiredTechnologyConduct
What the SFC said
The SFC reminds licensed firms to review and enhance cybersecurity measures against AI-enabled cyberattacks, which can autonomously find and chain vulnerabilities and lower the barrier for threat actors. Senior management, including the MIC-IT, is ultimately responsible for reviewing and approving framework changes.
This page is our summary and commentary, not the circular itself — always read the original before acting.
Same month in the Record
Get circulars like this explained every Monday.
The 5-minute briefing for Hong Kong’s small licensed firms — free, 7:30am HKT.