New Cybersecurity Measures for Internet/Mobile Trading - Stringent Password Policy

Dear Valued Customer,

Re.: New Cybersecurity Measures for Internet/Mobile Trading - Stringent Password Policy

Thank you for choosing CITIC Securities Brokerage (HK) Limited. Maintaining the highest level of cybersecurity to protect customer transactions data and minimise significant threat through cyber risk is always our top priority. 

I.                    Implementation of Stringent Password Policy

To in line with this commitment, we are introducing stringent password policy progressively effective from 3rd March 2018. A set of rules regarding login password creation will employ during the account activation and password reset processes. Please kindly follow these rules when creating your password:

·         The password length must be at least 8 characters but not exceeding 10 characters;

·         The password must contain at least 1 English character and 1 numeral; &

·         Reuse of 5 previous passwords is not allowed.

II.                 New Two-factor authentication for login

With the purpose of reduce and mitigate hacking risks associated with internet trading, two-factor authentication for login to your internet trading account will take effect not later than 30^th April 2018. Customer is required to download designated applications via electronic mobile device to obtain a one-time password for internet trading. We also will send out email notification promptly after certain activities have taken place in the internet trading account, e.g. system login; password reset and trade execution etc., to ensure customer identification. We will send you notification ahead when related implementation takes place.

If you have any enquiries on this, please do not hesitate to contact your Account Executive / call our Customer Service Hotline at (852) 2237 9338 or via email csi-callcentre@citics.com.hk.  

Yours sincerely,

CITIC Securities Brokerage (HK) Limited