Technology-related crime in Hong Kong has declined in total number, but financial losses from hacking have risen sharply, highlighting a growing threat from high-value cyberattacks.
Police data shows that overall technology crime cases fell by 6.9 per cent in 2025 compared with the previous year. However, losses linked to hacking more than doubled during the same period.
Authorities say the increase is being driven by a small number of highly targeted attacks on financial systems and cryptocurrency platforms.
Hong Kong Police Force recorded 31,571 technology crime cases in 2025, down from 33,903 in 2024. These cases include scams, hacking incidents, and ransomware attacks.
Despite the drop in total cases, the financial impact grew significantly. Total losses from technology crime reached HK$6.32 billion, up 23.2 per cent from the previous year.
Losses linked specifically to hacking rose from HK$25.5 million to HK$62.6 million over the same period.
Police say this shows a shift in cybercriminal activity toward fewer but more damaging attacks.
Carmen Leung Oi-lam said that even though hacking cases make up a very small portion of overall cybercrime, their financial impact can be severe.
She explained that a small number of large-scale attacks on financial institutions caused most of the recent losses.
Leung warned that organisations must strengthen cybersecurity systems to prevent similar incidents.
In the first quarter of 2026, technology crime cases dropped again by 15.3 per cent compared with the same period last year. However, hacking-related losses increased by 69.6 per cent year-on-year.
Police recorded losses of HK$21.2 million from hacking during that period alone.
One of the largest cases involved an employee of a software contractor working for a cryptocurrency platform. The individual was accused of stealing about HK$20 million from digital wallets belonging to clients. The suspect was later arrested.
Officials say the case reflects how insider threats remain a serious risk in digital financial systems.
Police cybersecurity units also analysed more than 35 million pieces of intelligence last year to identify major cyber threats.
They found that system vulnerabilities accounted for the largest share of risks, making up about 34 per cent of all identified threats.
Rachel Hui Yee-wai said attackers often target weak points in web applications, outdated software, and network systems that connect different services.
She explained that hackers typically use malicious code to infiltrate systems and gain access to sensitive data or financial platforms.
Authorities also detected more than 421,000 phishing-related threats last year, which accounted for 27 per cent of all identified cyber risks.
These threats were found across messaging apps, banking platforms, logistics systems, and online payment services.
Police further identified about 8,000 security vulnerabilities in digital systems operated by critical infrastructure providers.
Roughly 5 per cent of these weaknesses were classified as high or extremely high risk. They included leaked login credentials, weak cloud security settings, and inactive web domains that could be exploited by attackers.
Experts say these findings show that even as overall cybercrime volume falls, attackers are becoming more focused on high-value targets.
Financial institutions, cryptocurrency platforms, and major service providers remain key targets because of the large amounts of sensitive data and money they handle.
Authorities are urging companies to regularly update systems, fix vulnerabilities quickly, and improve response plans for potential cyberattacks.
Cybersecurity officials warn that attackers are increasingly sophisticated and often exploit small weaknesses in complex digital systems.
They say organisations that fail to strengthen their defenses risk facing significant financial and reputational damage.
The latest data suggests that while Hong Kong is seeing fewer technology crime cases overall, the impact of each successful hacking attack is becoming far more costly.
Police say continued vigilance and stronger cybersecurity measures will be essential to reduce future losses.
