Case study banner with the headline "Central Hong Kong Business Association Hijacked Internationally Through Senior Executive's Inbox," on a dark background with blue and orange wave lines.
Case StudY

The Phantom Ledger: A Central Hong Kong Business Association Hijacked Internationally Through a Senior Executive's Inbox

LAST EDITED:
PUBLISHED:
May 20, 2026

When a Business Association based in Central, Hong Kong, discovered a senior finance account was being accessed from international hubs, the risk to its reputation was immediate. Blackpanda's incident responders moved with operational force to contain the threat and verify the safety of sensitive records.

Other Case Studies

Case Studies

Attackers Hijack Singapore Media Firm's Email to Send 1,700 Phishing Messages and Attempt SGD 2M Fraud

Nine times the attacker ordered the company's bank to move money out. Nine times the bank refused — while the intruder fought to keep access it had held for over a month.

View case study
Case Studies

Phishing Emails Gain Attackers Access to Read Over 2,000 Emails at a Singapore Construction Firm

Less than 10 employees clicked, but that allowed attackers inside for a week — reading invoices, hiding their tracks, and waiting to strike.

View case study
View all

Related articles

React & Respond

What Is Incident Response?

And why every business needs a cyber fire department.

News banner with the headline “Blackpanda Japan Partners with SoftBank to Strengthen Cyber Incident Response in Japan” on a light background with grainy blue gradients.
News

Blackpanda Japan Announces Strategic Partnership with SoftBank to Strengthen Cyber Incident Response in Japan

SoftBank will provide incident response services, including Blackpanda IR-1, against cyber attacks.

News

Blackpanda Adds ISO 27001 Certification to the Group’s List of Accreditations

Blackpanda achieves ISO 27001 certification, reinforcing its commitment to information security, operational resilience, and trust across Asia.

View all
Protect & Defend

Karma ransomware rapid evolution

Initially discovered at the end of June 2021, Karma ransomware is a relatively new malware. Researchers from SentinelOne found that the individual developer, known by the name ‘Eugene’, is rapidly updating Karma and continuously adapting it to cutting edge ransomware techniques. There is a strong possibility that affected companies have paid the requested ransoms, based on the lack of comment activity from Karma Site_admin on dark web forums.

News

Blackpanda Japan Announces Strategic Partnership with SoftBank to Strengthen Cyber Incident Response in Japan

SoftBank will provide incident response services, including Blackpanda IR-1, against cyber attacks.

News

HGC Partners with Blackpanda Forge Strategic Alliance to Elevate Cybersecurity for Enterprises

View all