HKECL
Company Details
Linkedin ID:
hkex
Website:
Employees number:
1,905
Number of followers:
106,065
NAICS:
52
Industry Type:
Homepage:
hkex.com.hk
IP Addresses:
0
Company ID:
HON_1053194
Scan Status:
In-progress
Hong Kong Exchanges and Clearing Limited (HKEX) Company CyberSecurity Posture
hkex.com.hk
HKEX Group is a global exchange group, operating dynamic and integrated financial markets in Asia and Europe. From our home in the financial hub of Hong Kong and an additional base in London, we provide world-class facilities for trading and clearing securities and derivatives in Equities, Commodities, Fixed Income and Currency. Uniquely positioned at the intersection of Chinese and international capital flows, Hong Kong has long been Connecting China with the World. With the accelerated opening-up of China’s capital markets, HKEX continues to be at the forefront of this historic transition, which we believe will Shape the Global Market Landscape.
Hong Kong Exchanges and Clearing Limited (HKEX) A.I CyberSecurity Scoring
HKECL Risk Score (AI oriented)Between 800 and 849
HKECL
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
HKECL Global Score (TPRM)XXXX
HKECL
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
HKECL Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Hong Kong Exchanges and Clearing Limited (HKEX)
Cyber Attack
Rankiteo Explanation
Attack limited on finance or reputation
Description: Hong Kong Stock Exchange experienced its website being hacked while it halted derivatives trading to fix unrelated software bugs. A technical bug was found in a vendor’s trading software for derivative financial products, which forced the exchange to suspend the trading of futures and options Trading resumed after the exchange returned to using an older version of the software without the bug, the organization stated. Businessman Tse Man-lai, who was behind the 2011 cyberattack, was subsequently convicted and jailed for nine months.
HKECL Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for HKECL
Incidents vs Financial Services Industry Average (This Year)
No incidents recorded for Hong Kong Exchanges and Clearing Limited (HKEX) in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Hong Kong Exchanges and Clearing Limited (HKEX) in 2025.
Incident Types HKECL vs Financial Services Industry Avg (This Year)
No incidents recorded for Hong Kong Exchanges and Clearing Limited (HKEX) in 2025.
Incident History — HKECL (X = Date, Y = Severity)
HKECL cyber incidents detection timeline including parent company and subsidiaries
HKECL Company Subsidiaries
HKEX Group is a global exchange group, operating dynamic and integrated financial markets in Asia and Europe. From our home in the financial hub of Hong Kong and an additional base in London, we provide world-class facilities for trading and clearing securities and derivatives in Equities, Commodities, Fixed Income and Currency. Uniquely positioned at the intersection of Chinese and international capital flows, Hong Kong has long been Connecting China with the World. With the accelerated opening-up of China’s capital markets, HKEX continues to be at the forefront of this historic transition, which we believe will Shape the Global Market Landscape.
Loading...
HKECL Similar Companies
People deserve more from their money. More visibility, more control, and more freedom. Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products help our 50+ million customers get more from their money every day. As we continue our lightning-fast growth, 2 things a
Navy Federal Credit Union
Navy Federal is the world’s largest credit union, with more than 14 million members, $180 billion+ in assets and 24,000+ employees. Throughout campuses in Vienna, VA Pensacola, FL and Winchester, VA, as well as more than 360 branches, we serve the Armed Forces, Department of Defense, Veterans and th
American Express
At American Express, we know that with the right backing, people and businesses have the power to progress in incredible ways. Whether we’re supporting our customers’ financial confidence to move ahead, taking commerce to new heights, or encouraging people to explore the world, our colleagues are co
Australia’s leading provider of financial services including retail, premium, business and institutional banking, funds management, superannuation, insurance, investment and sharebroking products and services. We are a business with more than 800,000 shareholders and over 52,000 employees. We offer
L&T Finance
L&T Finance is one of the leading NBFCs offering a range of loans across Rural | Housing | Two-Wheeler | Personal & Business (SME) The company is promoted by Larsen and Toubro Ltd. (L&T), one of the largest conglomerates in India. LTF is publicly listed on both the exchanges of India - BSE & NSE an
Lincoln Financial
Lincoln Financial (NYSE: LNC) helps people to confidently plan for their version of a successful future. We focus on identifying a clear path to financial security, with products including annuities, investments, life insurance, group protection, and retirement plan services. With our 120-year trac
Fidelity National Financial
Fidelity National Financial, Inc. (NYSE: FNF) is a leading provider of title insurance and transaction services to the real estate and mortgage industries. Ranked #359 on the FORTUNE 500(r) list for 2023, FNF is the nation's largest title insurance company through our title insurance underwriters (F
NN Group
NN Group is an international financial services company, active in 10 countries, with a strong presence in a number of European countries and Japan. Our roots lie in the Netherlands, with a rich history of more than 175 years. With our 16,000 employees, NN Group provides retirement services, pensio
En Davivienda creemos en un mundo financiero sin barreras que facilite la vida a las personas, las empresas, las ciudades y municipios. Por esta razón hoy somos más de 19.000 personas innovando y creando cada día soluciones y ofertas exclusivas para 10 millones de clientes que permitan una mayor inc
.png)
HKECL CyberSecurity News
November 17, 2025 05:08 PM
World’s First Officially Regulated Stablecoin Exchange Launched by Three Major Exchanges
... Trading Regulation by the Government of the Hong Kong Special Administrative Region, Hong Kong Exchanges and Clearing Limited (HKEX),...
October 08, 2025 07:00 AM
DBS CEO Tan Su Shan is Fortune’s most powerful woman in Asia; Josephine Teo among most influential
Ms Tan is known for having brought a Bloomberg terminal into the hospital when she gave birth in 1999. Read more at straitstimes.com.
August 04, 2025 07:00 AM
Hong Kong Exchanges & Clearing’s AI Strategy: Analysis of HKEX’s Dominance in Stock Exchanges AI
The report explores how Hong Kong Exchanges & Clearing's AI strategy will dominate in stock exchanges: equity, commodity, fixed income,...
June 15, 2025 07:00 AM
Hong Kong bourse seeks to woo Southeast Asia, Middle East firms for second listings
The Hong Kong stock exchange plans to attract listed companies in Southeast Asia and the Middle East, in particular, for second listings in...
March 22, 2025 10:20 PM
5 things to know about the DiDi debacle
Chinese ride-hailing giant DiDi raised more than US$4 billion when it debuted on the New York Stock Exchange on 1 July. Three weeks later shares in DiDi...
February 27, 2025 08:00 AM
Hong Kong stock exchange posts record profits after China stimulus
Hong Kong Exchanges and Clearing reported full-year profits of HK$13.1bn (US$1.7bn) on Thursday, topping the previous record of HK$12.5bn set in 2021.
January 28, 2025 08:00 AM
Hong Kong White-Collar/Financial Crime investigations, developments, and predictions
Hong Kong saw robust enforcement in 2024, with a focus on insider dealing, market integrity, and new virtual asset and cybersecurity...
April 22, 2022 05:59 AM
The Sustainability Journey to ESG Compliance
Companies need an effective ESG reporting system to plan and implement sustainability management programmes. An ESG data management system can do what...
January 12, 2022 08:00 AM
Didi in talks for a second-quarter IPO in Hong Kong, sources say
Didi, China's largest ride-hailing company, is likely to list in Hong Kong in the second quarter as its bankers have started discussion with...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
HKECL CyberSecurity History Information
Official Website of Hong Kong Exchanges and Clearing Limited (HKEX)
The official website of Hong Kong Exchanges and Clearing Limited (HKEX) is http://www.hkex.com.hk.
Hong Kong Exchanges and Clearing Limited (HKEX)’s AI-Generated Cybersecurity Score
According to Rankiteo, Hong Kong Exchanges and Clearing Limited (HKEX)’s AI-generated cybersecurity score is 818, reflecting their Good security posture.
How many security badges does Hong Kong Exchanges and Clearing Limited (HKEX)’ have ?
According to Rankiteo, Hong Kong Exchanges and Clearing Limited (HKEX) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Hong Kong Exchanges and Clearing Limited (HKEX) have SOC 2 Type 1 certification ?
According to Rankiteo, Hong Kong Exchanges and Clearing Limited (HKEX) is not certified under SOC 2 Type 1.
Does Hong Kong Exchanges and Clearing Limited (HKEX) have SOC 2 Type 2 certification ?
According to Rankiteo, Hong Kong Exchanges and Clearing Limited (HKEX) does not hold a SOC 2 Type 2 certification.
Does Hong Kong Exchanges and Clearing Limited (HKEX) comply with GDPR ?
According to Rankiteo, Hong Kong Exchanges and Clearing Limited (HKEX) is not listed as GDPR compliant.
Does Hong Kong Exchanges and Clearing Limited (HKEX) have PCI DSS certification ?
According to Rankiteo, Hong Kong Exchanges and Clearing Limited (HKEX) does not currently maintain PCI DSS compliance.
Does Hong Kong Exchanges and Clearing Limited (HKEX) comply with HIPAA ?
According to Rankiteo, Hong Kong Exchanges and Clearing Limited (HKEX) is not compliant with HIPAA regulations.
Does Hong Kong Exchanges and Clearing Limited (HKEX) have ISO 27001 certification ?
According to Rankiteo,Hong Kong Exchanges and Clearing Limited (HKEX) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Hong Kong Exchanges and Clearing Limited (HKEX)
Hong Kong Exchanges and Clearing Limited (HKEX) operates primarily in the Financial Services industry.
Number of Employees at Hong Kong Exchanges and Clearing Limited (HKEX)
Hong Kong Exchanges and Clearing Limited (HKEX) employs approximately 1,905 people worldwide.
Subsidiaries Owned by Hong Kong Exchanges and Clearing Limited (HKEX)
Hong Kong Exchanges and Clearing Limited (HKEX) presently has no subsidiaries across any sectors.
Hong Kong Exchanges and Clearing Limited (HKEX)’s LinkedIn Followers
Hong Kong Exchanges and Clearing Limited (HKEX)’s official LinkedIn profile has approximately 106,065 followers.
NAICS Classification of Hong Kong Exchanges and Clearing Limited (HKEX)
Hong Kong Exchanges and Clearing Limited (HKEX) is classified under the NAICS code 52, which corresponds to Finance and Insurance.
Hong Kong Exchanges and Clearing Limited (HKEX)’s Presence on Crunchbase
No, Hong Kong Exchanges and Clearing Limited (HKEX) does not have a profile on Crunchbase.
Hong Kong Exchanges and Clearing Limited (HKEX)’s Presence on LinkedIn
Yes, Hong Kong Exchanges and Clearing Limited (HKEX) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/hkex.
Cybersecurity Incidents Involving Hong Kong Exchanges and Clearing Limited (HKEX)
As of December 09, 2025, Rankiteo reports that Hong Kong Exchanges and Clearing Limited (HKEX) has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Hong Kong Exchanges and Clearing Limited (HKEX) has an estimated 30,232 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Hong Kong Exchanges and Clearing Limited (HKEX) ?
Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.
How does Hong Kong Exchanges and Clearing Limited (HKEX) detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an remediation measures with returned to using an older version of the software without the bug..
Incident Details
Can you provide details on each incident ?
Title: Hong Kong Stock Exchange Website Hack and Trading Suspension
Description: Hong Kong Stock Exchange experienced its website being hacked while it halted derivatives trading to fix unrelated software bugs. A technical bug was found in a vendor’s trading software for derivative financial products, which forced the exchange to suspend the trading of futures and options. Trading resumed after the exchange returned to using an older version of the software without the bug. Businessman Tse Man-lai, who was behind the 2011 cyberattack, was subsequently convicted and jailed for nine months.
Type: Hacking, Software Bug
Attack Vector: Website Hacking, Software Bug
Vulnerability Exploited: Unrelated software bugs in vendor’s trading software
Threat Actor: Businessman Tse Man-lai
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Cyber Attack.
Impact of the Incidents
What was the impact of each incident ?
Incident : Hacking, Software Bug HON22310423
Systems Affected: Trading software for derivative financial products
Downtime: Trading of futures and options suspended
Operational Impact: Trading halted and resumed
Legal Liabilities: Conviction and jail time for the threat actor
Which entities were affected by each incident ?
Incident : Hacking, Software Bug HON22310423
Entity Name: Hong Kong Stock Exchange
Entity Type: Stock Exchange
Industry: Finance
Location: Hong Kong
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Hacking, Software Bug HON22310423
Remediation Measures: Returned to using an older version of the software without the bug
Data Breach Information
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Returned to using an older version of the software without the bug.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Hacking, Software Bug HON22310423
Investigation Status: Resolved
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Hacking, Software Bug HON22310423
Root Causes: Software bugs in vendor’s trading software
Corrective Actions: Returned to using an older version of the software without the bug
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Returned to using an older version of the software without the bug.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Businessman Tse Man-lai.
Impact of the Incidents
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Resolved.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763126988 and Tuleap Enterprise Edition prior to 17.0-3 and 16.13-8 have missing CSRF protections which allow attackers to create or remove tracker triggers. This issue is fixed in Tuleap Community Edition version 17.0.99.1763126988 and Tuleap Enterprise Edition versions 17.0-3 and 16.13-8.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/71d427b0f7ed8fa269a5ee6f7a557cf3dfc99cd4
- https://github.com/Enalean/tuleap/security/advisories/GHSA-f2xv-x3g6-4j9p
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=71d427b0f7ed8fa269a5ee6f7a557cf3dfc99cd4
- https://tuleap.net/plugins/tracker/?aid=45618
Description
Tuleap is a free and open source suite for management of software development and collaboration. Tuleap Community Editon versions prior to 17.0.99.1762456922 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 are vulnerable to CSRF attacks through planning management API. Attackers have access to create, edit or remove plans. This issue is fixed in Tuleap Community Edition version 17.0.99.1762456922 and Tuleap Enterprise Edtion versions 17.0-2, 16.13-7 and 16.12-10.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/1734a7bb2964042310ddc3f6dd7b4c82eee27526
- https://github.com/Enalean/tuleap/security/advisories/GHSA-9h47-jg7r-ww7x
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=1734a7bb2964042310ddc3f6dd7b4c82eee27526
- https://tuleap.net/plugins/tracker/?aid=45592
Description
Tuleap is an Open Source Suite for management of software development and collaboration. Tuleap Community Edition versions below 17.0.99.1762444754 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 allow attackers trick victims into changing tracker general settings. This issue is fixed in version Tuleap Community Edition version 17.0.99.1762444754 and Tuleap Enterprise Edition versions 17.0-2, 16.13-7 and 16.12-10.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/993316dd6a291bb3937cb7a4571eaab0e7d55370
- https://github.com/Enalean/tuleap/security/advisories/GHSA-vxfh-h8p6-p5rg
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=993316dd6a291bb3937cb7a4571eaab0e7d55370
- https://tuleap.net/plugins/tracker/?aid=45593
Description
Tuleap is an Open Source Suite for management of software development and collaboration. Versions below 17.0.99.1762431347 of Tuleap Community Edition and Tuleap Enterprise Edition below 17.0-2, 16.13-7 and 16.12-10 allow attackers to access file release system information in projects they do not have access to. This issue is fixed in version 17.0.99.1762431347 of the Tuleap Community Edition and versions 17.0-2, 16.13-7 and 16.12-10 of Tuleap Enterprise Edition.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References
- https://github.com/Enalean/tuleap/commit/403eb69f4cfafe52254c8f9bdbe66e1fedadc254
- https://github.com/Enalean/tuleap/security/advisories/GHSA-v6vm-6rxf-7p2v
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=403eb69f4cfafe52254c8f9bdbe66e1fedadc254
- https://tuleap.net/plugins/tracker/?aid=45583
Description
IBM watsonx.data 2.2 through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to improper allocation of resources without limits.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=hkex' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
