The operator of Hong Kong’s Ngong Ping 360 cable car attraction has apologised after the personal data of visitors and employees was stolen in a ransomware attack.The company on Thursday detected irregularities in its internal network system and alerted police and the Office of the Privacy Commissioner for Personal Data.“Subsequent investigation confirmed that certain data had been stolen and the company was subjected to a ransom demand,” the operator said on Friday. “Ngong Ping 360 deeply apologises for any inconvenience caused to guests, employees and relevant stakeholders by this incident.”A preliminary assessment found the breach compromised information about staff, annual pass holders, suppliers and tenants at Ngong Ping Village, as well as guests on promotional lists.“It has been initially confirmed that the involved guest data consists of names and contact details (such as phone numbers or email addresses),” the company said.The operator emphasised that the compromised internal network was separate from the cable car operation system, and safety and electronic payment data remained unaffected.
SRCSouth China Morning Post
LANGEN
LEANCenter-Right
WORDS164
ENT4
FRI · 2026-02-27 · 14:45 GMTBRIEF NSR-2026-0227-19828
NSR-2026-0227-19828News Report·EN·Technology
Personal data stolen in ransomware attack on Hong Kong’s Ngong Ping 360 attraction
Ngong Ping 360, a Hong Kong cable car attraction, experienced a ransomware attack resulting in the theft of personal data. The company detected the network irregularities on Thursday and has since alerted authorities.
Lam Ka-singSouth China Morning PostFiled 2026-02-27 · 14:45 GMTLean · Center-RightRead · 1 min
South China Morning PostFIG 01
Reading time
1min
Word count
164words
Sources cited
2cited
Entities identified
4entities
Quality score
100%
§ 01
Briefing Summary
AI-generatedNEWSAR · AI
Ngong Ping 360, a Hong Kong cable car attraction, experienced a ransomware attack resulting in the theft of personal data. The company detected the network irregularities on Thursday and has since alerted authorities. Stolen data includes names and contact information of staff, annual pass holders, suppliers, tenants, and guests on promotional lists. While a ransom demand was made, the operator assures that the compromised network is separate from cable car operations and electronic payment systems, so safety data was unaffected. Ngong Ping 360 has apologized for the inconvenience caused by the data breach.
Confidence 0.90Sources 2Claims 5Entities 4
§ 02
Article analysis
Model · rule-basedFraming
Technology
Economic Impact
Tone
Measured
AI-assessed
CalmNeutralAlarmist
Factuality
0.90 / 1.00
Factual
LowHigh
Sources cited
2
Limited
FewMany
§ 03
Key claims
5 extracted01
Compromised guest data consists of names and contact details (such as phone numbers or email addresses).
quoteNgong Ping 360 operator
Confidence
1.00
02
Certain data had been stolen and the company was subjected to a ransom demand.
quoteNgong Ping 360 operator
Confidence
1.00
03
The company detected irregularities in its internal network system on Thursday.
factualnull
Confidence
1.00
04
Personal data of visitors and employees was stolen in a ransomware attack on Hong Kong’s Ngong Ping 360 attraction.
factualnull
Confidence
1.00
05
The breach compromised information about staff, annual pass holders, suppliers and tenants.
factualnull
Confidence
0.90
§ 04
Full report
1 min read · 164 words§ 05
Entities
4 identified§ 06
Keywords & salience
8 termsransomware attack
1.00
personal data
0.90
data breach
0.80
ngong ping 360
0.70
data theft
0.60
hong kong
0.60
cybersecurity
0.50
privacy commissioner
0.40
§ 07
Topic connections
Interactive graph Network visualization showing 31 related topics
View Full Graph Person Organization Location Event|Click node to navigate|Edge numbers = shared articles