Cyber-security officials on Monday called on school and universities, wherever possible, to temporarily stop using the online learning platform Canvas, which was recently the target of a cyber-attack.
According to the software developer Instructure, the breach hit nearly 9,000 education institutions worldwide, involving data from 275 million users.
The leak would have compromised student names, emails, student IDs and messages sent on the platform.
The Hong Kong Computer Emergency Response Team Coordination Centre said that if institutions must continue using Canvas, they should be extra careful about possible phishing attacks.
"There are always some potential risks of further hacking the system, and also the social engineering attack," chief digital officer of the Hong Kong Productivity Council Edmond Lai said.