2025年10月28日，十四届全国人大常委会第十八次会议表决通过关于修改网络安全法的决定，修改后的 法律自2026年1月1日起施行。中央网信办网络法治局有关负责人表示，本次修法回应现实关切，明确支 持人工智能发展的措施和安全规定，优化网络安全法律责任，有助于积极应对网络安全风险挑战。 此前，某省税务部门一采购项目进行招投标。某通信运营商原本已经中标，但后被查出所投网络关键设 备在开标之日前没有通过国家强制安全认证，不具有销售资格，涉嫌虚假应标，导致中标无效。 新修改的网络安全法对于销售或者提供未经安全认证、安全检测或者安全认证不合格、安全检测不符合 要求的网络关键设备和网络安全专用产品的，增设了相应的罚则。这有利于促进有关主体履行义务，保 障法律有效实施。 赵鹏表示，新修改的网络安全法提高了处置处罚精度。例如，对于网络运营者怠于履行信息安全管理义 务的，其处罚标准在原来"一般违法""拒不改正或者情节严重"两种情形的基础上，增加了"造成特别严 重影响、特别严重后果的"情形，并设定了更高的处罚标准，最高罚款1000万元。这有利于区分不同违 法情形的法律责任，也有利于推动相关主体依法履行相应的义务。 网信部门认定， ...

Core Viewpoint - The article highlights a case of a woman, Ms. He, who experienced a potential fraud attempt through a malicious software download, emphasizing the importance of cybersecurity awareness and immediate action in preventing financial loss [5][6]. Group 1: Incident Overview - Ms. He, a freight worker, was instructed to download a software via a QR code for business purposes, which later turned out to be problematic [3][5]. - In the early hours, her phone screen lit up and began to execute unauthorized transactions, leading her to suspect remote control of her device [5]. Group 2: Response Actions - Ms. He took immediate steps to secure her finances by disconnecting her phone from the network to prevent further remote access [6]. - She transferred her funds to a card that was not linked to any online payment systems and unlinked all her bank cards to stop any outflow of money [6]. - To eliminate potential threats, she performed a factory reset on her phone and reported the incident to the police, who praised her timely actions [6][7]. Group 3: Expert Recommendations - Cybersecurity experts advise users to develop good mobile usage habits, avoid clicking on unknown links, and refrain from downloading unofficial applications [8]. - It is recommended to install security software, such as anti-fraud apps, and to avoid connecting to unknown Wi-Fi networks in public places [8].

Core Insights - China Unicom has announced the winners of the 2025 National Finals of the Network and Information Security Skills Competition, highlighting the achievements of its employees in the field of cybersecurity [1] - The competition saw participation from 53 units and over 2,600 participants, with 133 teams and 545 individuals advancing to the finals after rigorous selection processes [1] - The event emphasizes practical skills in cybersecurity, data security, AI, and 5G, testing participants' technical abilities and stress management [1] Group 1 - The competition is recognized as one of the top-tier professional events in the cybersecurity field organized by China Unicom and its labor union [1] - The finals included both individual and team competitions, with innovative formats such as CTF and RDG, and introduced dynamic scoring mechanisms [1] - A participant, Ping Jianxin, achieved second place in the individual competition and was awarded the title of "China Unicom Technical Expert" [1][2] Group 2 - Ping Jianxin's success is attributed to his solid technical foundation and experience gained through participation in various national and provincial cybersecurity competitions [3] - He has quickly adapted to his role in local network security, effectively combining compliance requirements with practical experience [3] - His contributions include penetration testing, defense drills, and emergency response training, earning recognition from local authorities for his commitment and performance [3]

Group 1 - The insurance industry is facing increasing targeted cyberattacks, with risks from third-party system vulnerabilities and social engineering scams posing significant challenges to data security and compliance [1][3] - The company has launched a "Cybersecurity Knowledge Classroom" initiative to enhance cybersecurity awareness and enforce security responsibilities across all levels of the organization [1][6] Group 2 - The protection of sensitive information such as customer data, policy information, and financial documents is crucial for safeguarding customer rights and maintaining the company's brand reputation [3] - The initiative focuses on three core areas: educating on data classification and protection standards, breaking down high-frequency risk scenarios, and strengthening emergency response capabilities [3][6] - The training format includes morning meetings, case analyses, and interactive Q&A sessions to ensure effective knowledge transfer and engagement among employees [6] Group 3 - The company emphasizes a culture of "safety first, compliance foremost," with all employees participating in cybersecurity training and assessments to reinforce security responsibilities [6] - The initiative aims to establish a protective system where every employee is considered a security officer, contributing to a comprehensive safety framework [6] - The company plans to make cybersecurity training a regular practice, refine protective measures, and ensure specific accountability to safeguard customer interests and support sustainable development in the insurance industry [6]

Core Viewpoint - The article argues that "secure keyboards" used in mobile banking apps do not effectively protect user accounts and may actually encourage less secure password practices [1][8][14]. Group 1: History and Evolution of Secure Keyboards - The concept of secure keyboards originated from the need to bypass hardware keyloggers in public computers, leading to the development of software-based on-screen keyboards [4][6]. - In 1997, China Merchants Bank launched its online banking service, highlighting the early adoption of internet banking despite low personal computer penetration at the time [2][6]. Group 2: Current Implementation and Standards - Current mobile banking apps in China utilize a "secure keyboard" that replaces standard keyboards with a custom input method, as outlined in various industry standards [6][7]. - The standards JR/T 0068-2020 and JR/T 0092-2019 recommend measures like custom keyboards and character encryption to protect sensitive information [6][7]. Group 3: Limitations and Risks of Secure Keyboards - The article points out that secure keyboards may inadvertently promote the use of simpler, less secure passwords due to user convenience and familiarity [12][14]. - Many secure keyboard implementations restrict the use of password managers, which can lead to users resorting to easier-to-remember passwords, thus reducing overall security [14][18]. Group 4: Broader Implications for Security Practices - The discussion emphasizes that convenience often trumps security in user behavior, leading to the adoption of less secure practices despite the presence of security measures [15][20]. - The article suggests that effective security strategies must balance user experience with robust security protocols, as overly complex systems may lead to user frustration and non-compliance [20][19].

Core Viewpoint - The EU's enforcement of the Digital Services Act has escalated tensions between the US and Europe, with the US imposing travel restrictions on EU officials in response to a significant fine levied against Musk's platform X [1][3][5]. Group 1: Regulatory Context - The EU's Digital Services Act, passed in 2022, mandates large internet platforms to prevent the spread of illegal content and hate speech, impacting major US tech companies like Apple, Google, and X [3][5]. - The first fine under this act was imposed on X, amounting to €120 million (approximately $130 million), which has drawn strong discontent from the US [3][5]. Group 2: Political Implications - The US sanctions against EU officials are seen as a challenge to the EU's digital governance authority, indicating a shift from mere policy disagreements to a deeper political conflict [3][6]. - The US government has previously threatened retaliation against the EU's digital regulations, using them as leverage in trade negotiations [6][7]. Group 3: Internal Pressures - Both the US and EU face internal pressures to adopt more aggressive stances in their digital regulatory disputes, with US lawmakers advocating for harsher measures against EU officials [7][10]. - The EU Commission's cautious response to US sanctions has sparked debate within Europe, with some leaders calling for a stronger stance against US actions [10][12]. Group 4: Future Outlook - The ongoing digital dispute reflects fundamental differences in governance philosophies between the US and EU, with potential for further escalation as both sides prepare for future regulatory actions [15][16]. - The EU's ability to assert its digital sovereignty and respond effectively to US pressures will be critical in shaping the future of transatlantic relations [16].

Core Viewpoint - The year 2025 is a significant milestone for Vietnam's information and communication technology (ICT) sector, marked by important decisions in various areas such as institutional mechanisms, organizational structure, cybersecurity, data, and strategic technologies, aimed at accelerating digital transformation and shaping the long-term development framework of a digital nation. Group 1 - The National Assembly of Vietnam passed a series of important laws to establish a solid legal framework for science and technology, innovation, digital transformation, and the field of news and communication [1] - The Vietnamese government, National Assembly, and various departments and localities are committed to implementing the Central Committee's resolution on technological innovation and national digital transformation [2] - The Ministry of Information and Communications has been merged into the Ministry of Science and Technology, with some functions transferred to the Ministry of Public Security and the Ministry of Culture, Sports, and Tourism [3] Group 2 - The National Assembly approved the Cybersecurity Law and the Personal Data Protection Law, drafted by the Ministry of Public Security [4] - The government issued Decree No. 1131, announcing 11 strategic technology areas and 35 key product categories for Vietnam [5] - Vietnam hosted the signing ceremony for the UN Convention on Cybercrime and the Hanoi Convention, with participation from 72 countries, highlighting Vietnam's proactive role in shaping cyberspace governance and deepening international cooperation [6] Group 3 - The government issued a decree to pilot the development of a cryptocurrency market [7] - The government legally prosecuted several key opinion leaders and public figures for disseminating false advertisements and selling counterfeit goods online [8] - The National Credit Information Center of Vietnam suffered a cyberattack [9] - Vietnam has begun developing its low-altitude economy [10]

Group 1 - The revised Public Security Administration Punishment Law will take effect on January 1, 2026, adding provisions for legitimate defense, stating that actions taken to prevent ongoing illegal harm that result in damage will not be considered violations of public security management and will not incur penalties [2] - The "Notice on Improving Kindergarten Charging Policies" will also be effective from January 1, 2026, specifying that kindergartens can only charge for five categories of fees, including care education fees and accommodation fees, and must establish a fee directory list, prohibiting charges outside this list [4] - A mandatory standard for electric vehicle energy consumption will be implemented on January 1, 2026, requiring companies to upgrade new products technically, with a limit of 15.1 kWh per 100 km for vehicles around 2 tons, which is expected to increase the average range of electric vehicles by approximately 7% under unchanged battery capacity [6] Group 2 - The revised Cybersecurity Law will come into effect on January 1, 2026, emphasizing national support for research in artificial intelligence and key technology development, enhancing infrastructure for training data resources and computing power, and increasing penalties for certain illegal activities [8] - The Ministry of Finance and the State Taxation Administration announced that starting January 1, 2026, individuals selling homes purchased for less than two years will be subject to a 3% value-added tax, while those selling homes purchased for two years or more will be exempt from this tax [10] - According to the People's Bank of China, starting January 1, 2026, overdue records will no longer be displayed in personal credit reports if they meet specific conditions, including being generated between January 1, 2020, and December 31, 2025, with a single overdue amount not exceeding 10,000 yuan, and full repayment by March 31, 2026 [12] Group 3 - The revised National Common Language and Writing Law will take effect on January 1, 2026, mandating that online literary programs, web dramas, online movies, and online games use the national common language and writing as the basic language [14] - The revised "Civil Case Cause Regulations" will be effective from January 1, 2026, adding causes related to data and virtual property, and refining causes related to intellectual property [15] - The People's Bank of China will implement a digital renminbi action plan starting January 1, 2026, allowing digital renminbi wallet balances to earn interest calculated like demand deposits, making China the first economy to pay interest on central bank digital currency [17]

Core Viewpoint - The newly amended Cybersecurity Law in China significantly increases penalties for network operators failing to fulfill their security obligations, with the maximum fine raised to 10 million yuan [1] Group 1: Key Changes in the Law - The revised Cybersecurity Law clarifies the personal information protection obligations of network operators and optimizes the responsibility system for critical information infrastructure operators [1] - The law introduces a tiered penalty system based on the severity of violations, categorizing them into general, serious, and particularly serious circumstances [1] - The maximum fine for network operators not fulfilling security obligations is increased to 10 million yuan, while fines for responsible personnel rise from 100,000 yuan to 1 million yuan [1] Group 2: Implications for Critical Infrastructure - The law emphasizes stricter security protection requirements for operators of critical infrastructure in sectors such as finance, energy, and communication, which are vital for national and public welfare [1] - It establishes a framework for accountability that includes not only financial penalties but also administrative sanctions to enhance deterrence against violations [1] - The law ensures that platforms handling personal information must comply with the Personal Information Protection Law and other relevant regulations, promoting legal coordination and collaborative enforcement [1]

Group 1 - The core viewpoint of the article is that Zhangba Network Security has successfully completed a B+ round financing of several tens of millions, which is the largest single financing in the network simulation sector this year, with funds primarily allocated for AI-driven technological upgrades and regional service network enhancements [2] Group 2 - Zhangba Network Security, established in March 2021, focuses on cutting-edge network simulation technology and product development, operating in critical information infrastructure sectors such as special operations, industrial control, finance, education, and power [3] - The company has developed a product matrix based on its proprietary "Network Simulation Engine (ZBOS)," which includes three core products: a network target field platform, a testing and verification platform, and a network wargaming system, providing comprehensive solutions for practical network security [3] Group 3 - The CEO of Zhangba Network Security, Wang Heng, stated that the financing will be used for two main directions: building an AI-centric core product architecture and establishing the "Zhangba Network Security East China Headquarters" in the Yangtze River Delta Digital Economy Industrial Base to enhance regional R&D and customer service [4] Group 4 - The investment rationale from Shengshi Juxin highlights the strategic necessity of domestically controlled network security technology amid the wave of hard technology localization, emphasizing Zhangba Network Security's unique technological barriers in the critical protection field [5] - The CEO of Hongfeng Capital, Lv Junfeng, expressed confidence in the broad prospects of the network simulation sector driven by digital economy and critical protection demands, affirming the rapid breakthroughs in technology R&D and market expansion by Zhangba Network Security [5] Group 5 - Wang Shuai, the founder of Shangdao Venture Capital Network, noted that the government's increasing focus on network security has led to supportive policies that promote rapid development in network simulation technology, with Zhangba Network Security recognized for its technological innovation and market expansion capabilities [6] - The investment in Zhangba Network Security reflects not only confidence in its technological strength but also in its future development, with hopes for the company to lead the intelligent transformation of the industry and strengthen the technological foundation for high-quality digital economic development [7]