每经记者｜黄鑫磊 每经编辑｜魏文艺 作为国际金融中心和创新科技中心，香港的关键基础设施涵盖机场、地铁、电力、金融系统等关乎民生 的核心领域。近年来，随着地缘冲突频发和技术垄断风险加剧，香港特区政府对网络安全的重视程度持 续提升。今年3月，香港特区立法会三读通过《保护关键基础设施条例草案》，要求相关营运者定期做 风险评估。 10月24日，在香港举办的"山石网科大湾区及东南亚网络安全研讨峰会"上，香港特别行政区政府数字政 策办公室数字政策专员黄志光表示，稳固的网络安全是香港发展成为国际创新科技中心及智慧城市的基 石，香港特区政府正积极推动数字经济发展，并高度重视与之配套的网络安全建设。 从市场需求来看，香港已形成政府、金融、关键基础设施企业三大核心需求群体。然而，在拓展香港地 区市场过程中，内地网络安全企业普遍面临人才短缺与合规适配等多重困境。 人才方面，香港本地专注于AI和网络安全的专业人才数量有限，且用工成本显著高于内地。在本次峰 会上，网络安全厂商山石网科（SH688030，股价19.60元，市值35.33亿元）董事长兼CEO叶海强宣布正 式设立香港研发中心。山石网科副总裁兼国际事业群负责人赵京玺表示，山石 ...

转自：大众报业·齐鲁壹点 10月26日上午，在"鹏云杯"第十二届山东省大学生网络安全技能大赛决赛期间，齐鲁软件园、国家网安 试验区（济南高新区）推进办公室举办全省大学生网络安全人才创新创业及校企合作对接交流会，进行 园区专题推介和创业项目对接。 当前，齐鲁软件园正在对标国际一流孵化器，聚焦"品牌、服务、项目、载体"四大核心要素的协同发 展，通过品牌建设提升影响力，通过服务体系增强吸引力，通过项目引进夯实基础，通过载体打造提供 支撑，全力打造创新创业"齐鲁梦工场"。依托国家网安试验区（济南高新区）这一国家级平台，园区正 想方设法促进全省高校网络安全领域创新创业人才培养经验的交流，推动产学研深度融合，为网络安全 产业发展赋能。 决赛期间，齐鲁软件园抢抓机遇，通过这场对接交流会搭建高校与企业、高校与高校之间的交流合作平 台。活动现场，国家网安试验区推进办公室工作人员为全省高校网安专业带队老师详细介绍了试验区网 络安全产业发展、创新创业、校企合作、人才引育等情况，重点介绍了齐鲁软件园"企业全生命周期"的 服务流程；网络安全产业重点发展方向；园区为网安专业师生提供的精准服务等内容。推介内容为高校 网安专业人才量身定制， ...

Group 1 - The revised draft of the Cybersecurity Law addresses the rapid development of artificial intelligence (AI) technology by adding provisions to promote AI safety and development [1][2] - The draft enhances the guiding principles for cybersecurity work, emphasizing the leadership of the Communist Party of China and the integration of development and security [2] - The draft includes support for AI foundational research, key technology development, and infrastructure construction, while also establishing ethical norms and enhancing safety risk monitoring and assessment [2] Group 2 - The revised draft increases penalties for illegal sales or provision of critical network equipment and cybersecurity products, with severe cases facing business suspensions or license revocations [3] - It clarifies that unauthorized acquisition, sale, or provision of personal information, which does not constitute a crime, will be subject to penalties by public security authorities [3] - The draft ensures alignment with existing laws such as the Civil Code and the Personal Information Protection Law regarding personal information handling by network operators [3]

开幕式上，现场颁发2025世界顶尖科学家协会奖"智能科学或数学奖"与"生命科学或医学奖"两大奖项，分别由孙理察（Richard SCHOEN）、斯科特·埃默尔 （Scott D. EMR）和韦斯·桑德奎斯特（Wesley I. SUNDQUIST）三位科学家获得。 世界顶尖科学家协会奖，于2021年在上海发起创设，由红杉慈善基金会独家提供永久资金支持、面向全球科学家评选的科学大奖，今年由上海临港科技创新 发展基金会承办。 顶科协奖设立"智能科学或数学奖"、"生命科学或医学奖"两个单项奖，单项奖金金额为1000万元人民币，最多可由4人共同获奖并分享，为全球奖金最高的 科学奖项之一。 10月25日，2025世界顶尖科学家论坛开幕式暨2025世界顶尖科学家协会奖颁奖典礼在上海临港中心举行。 以"未来科学：上海与世界（Science in Future）"为主题，今年顶科论坛共有来自全球10余个国家约150位科学家参加，其中包括4位诺贝尔奖得主、4位图灵 奖得主，以及16位中国两院院士、百余位中外优秀青年科学家等。 期间，以"一代耀一代·去突破"为主题的2025世界顶尖科学家科学教育论坛暨第二届科技女生赋能论坛上，欧 ...

Core Insights - The incident at the "GEEKCON2025" highlighted significant security vulnerabilities in humanoid robots, as hackers demonstrated the ability to take control of a robot and use it to attack another robot, raising concerns about the safety of such technologies [1][3][4]. Group 1: Security Vulnerabilities - Two white hat hackers successfully hacked into a humanoid robot from Yushutech, demonstrating a critical security flaw that allowed them to execute attack codes remotely [1][4]. - The hackers exploited a logic flaw in the robot's built-in model, enabling them to gain arbitrary code execution permissions on the targeted robot [5]. - A previous report from security researchers indicated a high-risk vulnerability in Yushutech's low-power Bluetooth and Wi-Fi configuration interface, which could allow controlled robots to attack others within Bluetooth range [5]. Group 2: Industry Response and Awareness - Yushutech acknowledged the vulnerabilities and stated that they had already begun addressing these issues, with most repairs completed by the time of the event [5]. - The lack of focus on security in the robotics industry was noted, with many manufacturers prioritizing functionality over security measures, leading to widespread vulnerabilities [7]. - The chairman of the GEEKCON organizing committee emphasized the dual challenges of talent loss in cybersecurity and budget constraints faced by companies, which exacerbate security threats in emerging technologies [7]. Group 3: Recommendations for Manufacturers - Security experts recommend that manufacturers incorporate security checks during the development process to identify and eliminate superficial issues [8]. - Companies should consider building their own security systems or collaborating with external security teams to conduct offensive and defensive testing, which is essential for assessing the reliability of robotic products [8]. - The importance of security in robotics was underscored, with a call for the industry to recognize its value to build trust with users and establish themselves as reliable market leaders [7][8].

Core Insights - The integration of artificial intelligence with the physical world has raised significant security concerns across various applications, as highlighted during the GEEKCON2025 event in Shanghai [1][4] - The event showcased vulnerabilities in smart technologies, including humanoid robots, AI smart glasses, and drones, emphasizing the need for enhanced security measures [2][3] Group 1: Security Vulnerabilities - A demonstration revealed a logic flaw in humanoid robots that allows attackers to gain code execution permissions through specific voice commands, posing systemic risks to robot clusters [1] - AI smart glasses were compromised in a challenge, allowing attackers to remotely control the camera and microphone, thus threatening user privacy [2] - Multiple vulnerabilities were identified in commercial drones, with one critical flaw enabling attackers to spoof control signals, which is crucial for the burgeoning low-altitude economy [2] Group 2: Industry Challenges - A study on mobile device biometric authentication systems uncovered design flaws that could allow attackers to bypass security measures, raising concerns about sensitive data exposure [3] - The industry faces challenges such as insufficient emphasis on cybersecurity in emerging sectors, inadequate investment in security by traditional industries, and a decline in security research positions, which weakens foundational security capabilities [3] Group 3: Initiatives and Future Directions - GEEKCON has established a quantitative security rating system for smart devices, aiming to make security comparable and perceptible, similar to health ratings for restaurants [4] - The event organizers are committed to promoting responsible disclosure and handling of security vulnerabilities, collaborating with global security researchers to safeguard digital security in the intelligent era [4]

英国汽车制造商与贸易商协会称，作为英国重要汽车生产商，捷豹路虎停产还拖累9月汽车出口量同比 下降24.5%，欧盟、美国等主要海外市场出货均受影响。 英国非营利机构网络监控中心最新研究显示，此次网络攻击造成的经济损失约19亿英镑(约合181亿元人 民币)。事件波及全英5000家企业，涵盖捷豹路虎的直接供应商及周边服务产业，全面恢复预计需等到 2026年1月。 目前，捷豹路虎已启动分阶段复产，但具体产能恢复进度尚未公开。 网络攻击致捷豹路虎停产 英国9月汽车产量跌至73年最低 英国汽车制造商与贸易商协会首席执行官迈克·霍斯指出，尽管生产逐步重启，英国汽车业仍面临多重 压力。霍斯呼吁政府保留员工汽车所有权计划的税收减免，以助力行业实现年产130万辆的复苏目标， 同时加强供应链网络安全防护。(完) 中新社伦敦10月24日电 (记者 欧阳开宇)因英国主要汽车制造商捷豹路虎遭遇网络攻击停产，英国9月汽 车产量同比骤降27%，仅为5.11万辆，创下1952年以来同期最低水平。 来源：中国新闻网 据英国汽车制造商与贸易商协会24日发布的数据，此次产量下滑主要由捷豹路虎停产直接导致，其三家 英国工厂自9月初起全面停摆，当月未生 ...

Financial Data and Key Metrics Changes - For the second quarter, gross revenue was $2.9 billion, an 8% decline year-over-year, and approximately a 9% decline on a revenue ex-billable basis [25] - Adjusted net income was $183 million, down 21% year-over-year, with diluted earnings per share decreasing 53% to $1.42 per share [31] - The funded backlog was down 6% year-over-year, while total backlog reached $40 billion, up 3% year-over-year [27][32] Business Line Data and Key Metrics Changes - The national security portfolio grew by 5% year-over-year, while revenue in the civil business declined by 22% year-over-year [25] - The company anticipates civil business revenue to decline in the low 20% range for the fiscal year, while the national security portfolio is expected to grow in the mid-single-digit range [18][25] Market Data and Key Metrics Changes - The procurement environment remains challenging, with no major procurement actions observed in the civil sector during the second quarter [8] - Gross bookings totaled $7.2 billion in the quarter, with 90% attributed to national security [9][26] Company Strategy and Development Direction - The company is focusing on three strategic areas: reducing costs through AI, doubling down on strengths in key growth areas, and leading the transition to outcome-based contracting [14][16] - The emphasis is on cyber, AI, warfighting technology, and critical national security programs, with a commitment to leveraging partnerships with tech companies [16][61] Management's Comments on Operating Environment and Future Outlook - Management expressed disappointment in the current quarter's results and the need to lower guidance due to a lack of normalization in the funding environment [12][22] - The company remains optimistic about medium-term growth, particularly in national security, despite near-term headwinds [5][18] Other Important Information - The company is taking significant actions to restructure and reduce costs by $150 million annually, which will support margins returning closer to historical levels by fiscal year 2027 [23][24] - The board approved a quarterly dividend of $0.55 per share and increased the share purchase authorization by $500 million [32][34] Q&A Session Summary Question: Is the funding environment for defense and intel business improving? - Management noted that while the national security business is stronger, there is still friction in the funding process, and ramp-up on new wins is expected to be slower than historical levels [42][43] Question: What assumptions are baked into the civilian guidance? - Management indicated that they do not anticipate further cuts but expect a competitive procurement environment with pricing pressures [46][47] Question: How strong is the backlog coverage? - Management stated that the current guidance does not rely on significant new wins, and they are anticipating that current trends persist [76][77] Question: How does the company balance growth investment with profitability? - Management emphasized that they are managing for the medium and long term, making investments that are prudent for short-term profitability while focusing on long-term growth [94][96]

新华社北京10月24日电（记者王思北）网络安全法修正草案24日提请全国人大常委会会议二次审议。草 案二审稿拟充实网络安全工作指导原则，增加促进人工智能安全与发展的内容。 为回应人工智能治理和促进发展的需要，草案二审稿增加规定，国家支持人工智能基础理论研究和算法 等关键技术研发，推进人工智能训练数据资源、算力等基础设施建设，完善人工智能伦理规范，加强安 全风险监测评估，创新并加强人工智能安全监管，促进人工智能健康发展。 进一步完善相关处罚规定、加大对部分违法行为的处罚力度，草案二审稿提出，对违法销售或者提供网 络关键设备、网络安全专用产品的行为，提高罚款标准，并增加规定"情节严重的，并可以责令暂停相 关业务、停业整顿、吊销相关业务许可证或者吊销营业执照"。 此外，草案二审稿在个人信息保护方面进一步做好与民法典、个人信息保护法等法律的衔接。 ...

（原标题：中美元首是否将会晤？外交部回应→） 责编：万健祎 校对：吕久彪 郭嘉昆表示，中美双方就两国元首会晤保持着密切沟通，如有进一步消息中方将及时发布。 有记者问：中方公布了美国国家安全局网络攻击渗透中国国家授时中心的相关案件，国家互联网应急中 心就此发布相关技术分析报告。请问外交部对此有何评论？ 郭嘉昆表示，中方对美国政府网络攻击入侵中国关键基础设施、为未来大范围的破坏行动实施网络预制 表示强烈谴责。中国网络安全机构曾发布报告指出，美方此前散布的所谓"伏特台风"实为国际勒索软件 组织，近日发布的相关案例向国际社会展示了什么是真正的"伏特台风"行动，也再次证明美国是全球最 大的网络攻击策源国，美国政府行径极易引发误解、误判，是非常不负责任的行为。中方敦促美方立即 停止对中国关键基础设施的网络攻击，中方将采取一切必要措施，坚决捍卫中国的网络主权和安全。 综合自：央视新闻 10月24日，外交部发言人郭嘉昆主持例行记者会。 中美元首是否将会晤？外交部：如有进一步消息中方将及时发布 有记者就APEC会议期间中美元首是否举行会晤提问。 ...