Core Points - Apple has significantly increased its security bounty program, with the maximum base reward now reaching $2 million, making it the highest known bounty program in the industry [3][9] - The program aims to attract top researchers capable of identifying complex vulnerabilities that could pose significant threats, particularly those mimicking commercial surveillance software attacks [8][9] - Since its inception nearly a decade ago, Apple has paid over $35 million to more than 800 researchers [7] Summary by Sections Security Bounty Program Upgrade - Apple has doubled the maximum base reward to $2 million for discovering critical vulnerabilities, reflecting its commitment to enhancing security [3][9] - Additional bonuses are available for finding vulnerabilities that bypass lock modes and test software, potentially raising total rewards to $5 million [9] Increased Reward Categories - Apple has raised the reward amounts for several vulnerability categories, encouraging exploration in key technical areas [10] - Specific rewards include $100,000 for bypassing Gatekeeper and $1 million for unauthorized iCloud access [10] - New categories have been added, such as $300,000 for WebKit sandbox escape and $1 million for wireless proximity attacks [10] Target Flags Initiative - Apple introduced Target Flags, allowing researchers to objectively demonstrate the exploitability of top bounty categories, which can expedite reward processing [11][12] - Researchers submitting reports with Target Flags will be eligible for accelerated rewards, even before fixes are released [12] Additional Security Measures - In 2022, Apple established a $10 million cybersecurity fund to support civil society organizations investigating targeted surveillance software attacks [13] - With the launch of iPhone 17, Apple introduced a memory integrity protection feature to enhance resistance against common software vulnerabilities [13] - Apple plans to provide 1,000 iPhone 17 devices to high-risk groups potentially targeted by commercial surveillance software [13] Implementation Timeline - The updated bounty program will take effect in November 2025, with detailed information on new categories and reward standards to be published on the Apple Security Research website [13]

香港举行网络安全攻防演练 中新网香港10月10日电 香港特区政府10日举办"香港网络安全攻防演练——以攻筑防2025"。参与本次 演练的"红队""蓝队"组成部门和机构数量较上届均有增长。 10月10日，"香港网络安全攻防演练——以攻筑防2025"在香港数码港举行。图为嘉宾出席活动开幕 仪式。 中新社记者 李志华 摄 编辑：董文博 广告等商务合作，请点击这里 本文为转载内容，授权事宜请联系原著作权人 中新经纬版权所有，未经书面授权，任何单位及个人不得转载、摘编或以其它方式使用。 关注中新经纬微信公众号(微信搜索"中新经纬"或"jwview")，看更多精彩财经资讯。 图为现场人员进行60小时的网络安全攻防演练。 中新社记者 李志华 摄 据了解，特区政府数字政策办公室(简称"数字办")去年举办首届"香港网络安全攻防演练"，通过"实 兵""实网""实战"方式，全方位对参与政府部门和公共机构的安全防护能力进行深度检验并提供反馈， 提升它们的网络安全防护及紧急应变能力。今年数字办扩大整体演练规模，涵盖更多的公共服务领域， 亦为即将举行的第十五届全国运动会及香港特区立法会换届选举做好网络安全准备。 香港特区政府创新科技及工 ...

距离 Windows 10 停止支持只剩下短短 4 天时间——10 月 14 日，微软将正式关闭这一操作系统的安全更新通道。这一消息对于全球数亿用户而言，无疑 是个巨大冲击。 而与此同时，近日微软还进一步收紧了 Windows 11 的升级限制，使得更多老设备用户面临升级受限甚至被迫淘汰的境地：在最新的 Windows 11 预览版 中，微软正式移除了 Windows 安装程序（OOBE）中用于创建本地帐户的已知机制。 OOBE 离线安装被判"死刑" 先简单介绍一下。在微软对此进行限制之前，过去用户在安装Windows 11时，系统会要求先进行网络连接并登入Windows账号，但用户可以在此界面按下 shift + F10并输入oobe\bypassnro，等待重启后便会出现"没有网络连接"的选项，以此跳过Windows网络激活，使用本地账号来安装Windows。 4 天后 Win10 停服，全球 4 亿设备或陷入风险 就在 Windows 11 提高安装门槛的同时，4 天后，也就是10 月 14 日，微软将正式停止支持 Windows 10，这意味着： 要知道，根据 FBI 数据显示：2024 年，美国用户 ...

云端之上，大数据成为银行新的眼睛。用户的消费轨迹、理财偏好化作数据洪流，经过智能算法的提炼，转化为精准的风险评估与个性化推荐。小微企业主 无需繁琐抵押，凭借信用画像就能获得贷款；普通储户打开APP，专属理财产品已静静等候。科技的力量让金融服务从"等待上门"变为"主动敲门"。 柜台前的长龙曾是银行大厅最醒目的风景，而今指尖轻触屏幕，转账汇款瞬间完成。互联网技术的汹涌浪潮，正重塑着金融业的基因图谱，让百年传承的银 行业经历着前所未有的蜕变。 这场变革始于支付方式的革命。二维码如同神奇的钥匙，解锁了无现金社会的大门。街边早餐摊前扫码付账的老人，地铁闸机前刷脸通行的白领，都在见证 着移动互联带来的便捷。第三方支付平台搭建起普惠金融的新桥梁，让微小商户也能享受即时结算的服务，资金流转的效率提升何止百倍。 当数字原住民成长为主力客群，银行业深知，唯有主动融入互联网生态，才能守住金融命脉。这场静悄悄的革命仍在继续，它关乎效率提升，更指向公平与 包容——让每一笔小额存款都能增值，让每一个创业梦想都有资金融通。在科技赋能的道路上，金融业正在书写新的篇章。 正是在这样的背景下，负责人对行业进行了深入的思考，并决定借助互联网进行转 ...

10月10日，银信科技盘中下跌2.08%，截至14:16，报11.28元/股，成交1.22亿元，换手率2.41%，总市值 50.12亿元。 资金流向方面，主力资金净流出486.43万元，特大单买入0.00元，占比0.00%，卖出478.85万元，占比 3.93%；大单买入2137.63万元，占比17.56%，卖出2145.21万元，占比17.62%。 截至6月30日，银信科技股东户数5.01万，较上期减少5.40%；人均流通股8872股，较上期增加5.71%。 2025年1月-6月，银信科技实现营业收入8.38亿元，同比增长7.36%；归母净利润4890.73万元，同比增长 20.89%。 银信科技今年以来股价跌8.74%，近5个交易日跌4.81%，近20日跌4.57%，近60日跌7.54%。 资料显示，北京银信长远科技股份有限公司位于北京市朝阳区安定路35号北京安华发展大厦8层，成立 日期2004年5月31日，上市日期2011年6月15日，公司主营业务涉及面向政府和企事业单位数据中心的IT 基础设施,提供IT运维服务的整体解决方案,内容包括IT基础设施服务、IT基础设施管理软件开发与销 售、以及相配套的系统 ...

Group 1 - The rise of AI agents is significantly impacting business operations, human-machine collaboration, and national security, necessitating a focus on their safety, interpretability, and reliability [1][2] - 2023 is recognized as the year of generative AI, with 2024 moving towards practical applications of AI, and 2025 being termed the year of AI agents, which are autonomous systems designed to perform specific tasks with minimal human intervention [2] - AI agents are expected to have substantial economic and geopolitical implications, especially when integrated into critical workflows in sensitive sectors like finance, healthcare, and defense [2] Group 2 - AI agent systems typically operate on top of large language models (LLMs) and consist of four foundational components: perception, reasoning, action, and memory [3] - The architecture of AI agents includes a supporting infrastructure stack for model access, memory storage, task coordination, and external tool integration, with multi-agent systems allowing for collaboration among agents [3][6] - The emergence of general-purpose AI systems that can flexibly apply across different environments and industries is accelerating, with ongoing efforts to establish cybersecurity, interoperability, and governance standards [6] Group 3 - AI agents enhance cybersecurity by autonomously assisting network personnel in critical tasks such as continuous monitoring, vulnerability management, threat detection, incident response, and decision-making [7] - Continuous monitoring and vulnerability management are improved through AI agents that automatically identify vulnerabilities and prioritize fixes based on business impact, significantly enhancing efficiency [8] - Real-time threat detection and intelligent response capabilities are achieved through multi-agent collaboration, reducing average response times by over 60% [9] - AI agents help address the global cybersecurity talent shortage by automating over 70% of alert false positives, saving security analysts significant time and improving overall operational efficiency [10] Group 4 - The architecture of AI agents is divided into four main layers: perception, reasoning, action, and memory, each with distinct security considerations and risks [11] - The perception module faces risks such as adversarial data injection, which can compromise data integrity and confidentiality [13] - The reasoning module is vulnerable to exploitation of underlying model flaws, which can lead to incorrect decision-making and erode trust in AI agents [14] - The action module is sensitive to attacks that exploit the agent's ability to interact with external systems, necessitating strict output validation and access control [15] - The memory module is crucial for maintaining context and can be targeted for memory tampering, which may distort the agent's understanding and future actions [16] Group 5 - The rise of AI agents signifies a transformative shift in how emerging technologies interact with and influence the digital world, marking a breakthrough from passive human-supervised models to autonomous systems capable of reasoning and learning from experience [18]

日前，《市场监管总局工业和信息化部关于加强智能网联新能源汽车产品召回、生产一致性监督管 理与规范宣传的通知（征求意见稿）》（以下简称《征求意见稿》）向社会公开征求意见已告截止。 《征求意见稿》一经公布就在行业内引发高度关注。它延续了《关于进一步加强智能网联汽车产品准 入、召回及软件在线升级管理的通知》（以下简称《通知》）的要求，强化并提出了汽车智能化、网联 化趋势下，尤其是组合驾驶辅助系统加速推广、智能座舱领域创新应用不断涌现、OTA方式愈发普遍的 阶段，政府监管的导向与要点。 行业人士指出，《征求意见稿》的出台，意味着不仅监管方向更加明确、周期更加完整，针对的行业问 题更加精准，而且监管手段与措施也愈发具象化。 问题导向与全生命周期监管 上海机动车检测认证技术研究中心有限公司（上海汽检）前瞻技术部总工程师张帆认为，《征求意见 稿》有两个特点：一是问题导向，明确列举了当前优先要解决的4类不同产品安全问题，包括安全提示 和使用说明不完善，存在网络攻击、网络威胁和漏洞等数据安全风险，市场宣传乱象误导消费者，组合 驾驶辅助系统使用期间安全事件和碰撞等事故频发，从而抓住了行业一些具有普遍性的问题；二是全生 命周期、全 ...

Core Points - Beijing Jiaotong University has officially released its 2026 master's degree enrollment guidelines, welcoming applicants [1] - The university is a key national institution co-built by multiple government bodies and has a rich history dating back to 1896, focusing on transportation science and technology [3] Admission Conditions - Applicants must be citizens of the People's Republic of China [4] - Candidates should support the leadership of the Communist Party of China, possess good moral character, and comply with laws [5] - Health conditions must meet national physical examination requirements [6] - Academic qualifications must meet one of several specified criteria, including being a recent undergraduate or having an equivalent degree [7][8][9] Special Examination Conditions - For those applying for separate examinations, candidates must have at least four years of continuous work experience after obtaining their undergraduate degree or two years after obtaining a master's or doctoral degree [12] - The university plans to enroll 47 students through separate examinations, with 25 in the rail transit industry and 22 in cybersecurity [12] Application Process - Candidates must carefully read the relevant announcements and guidelines before applying [13] - Online registration will be available from October 16 to October 27, 2025, with pre-registration from October 10 to October 13, 2025 [14] - Candidates must pay the examination fee online before the registration deadline [16] Examination and Admission - The initial examination will take place on December 20-21, 2025, with results available online [23] - The university will conduct a review of candidates' qualifications during the re-examination phase, which typically occurs from late March to early April [24] - Admission will be based on initial and re-examination scores, along with an assessment of candidates' overall qualifications [27] Special Programs - The university has several special plans, including the "Outstanding Engineer" program, which focuses on key national strategic needs and collaborates with major enterprises [28] - There are also plans for recruiting "high-level minority backbone talents" and "retired college student soldiers" [29][30] Tuition and Scholarships - Tuition fees vary by program, with specific amounts outlined for different master's programs [40][41] - The university offers various scholarships, including national scholarships and academic scholarships, with specific standards for each [42] Other Matters - The basic study period for full-time academic master's students is three years, while professional master's programs may have different durations [36] - The university does not provide accommodation for non-full-time students [50]

三六零今年以来股价涨13.69%，近5个交易日涨1.67%，近20日涨6.95%，近60日涨16.33%。 10月9日，三六零盘中上涨2.03%，截至13:07，报11.54元/股，成交11.07亿元，换手率1.39%，总市值 807.75亿元。 资金流向方面，主力资金净流出2712.49万元，特大单买入1.45亿元，占比13.12%，卖出1.42亿元，占比 12.86%；大单买入2.45亿元，占比22.15%，卖出2.75亿元，占比24.86%。 责任编辑：小浪快报 今年以来三六零已经1次登上龙虎榜，最近一次登上龙虎榜为2月5日。 资料显示，三六零安全科技股份有限公司位于北京市朝阳区酒仙桥路6号院2号楼A座，成立日期1992年 6月20日，上市日期2012年1月16日，公司主营业务涉及互联网安全技术的研发、互联网安全产品的设 计、研发、推广,以及基于互联网安全产品的互联网广告及服务、互联网增值服务、智能硬件业务等商 业化服务。主营业务收入构成为：互联网及智能硬件业务92.00%，安全业务6.63%，其他(补充)1.37%。 三六零所属申万行业为：计算机-软件开发-横向通用软件。所属概念板块包括：态势感知、A ...

广发改革混合（001468）成立日期2015年7月27日，最新规模1.97亿。今年以来收益30.74%，同类排名 3361/8238；近一年收益25.5%，同类排名3617/8082；成立以来收益12.7%。 广发改革混合（001468）基金经理为陈少平。 截至发稿，陈少平累计任职时间18年318天，现任基金资产总规模1.97亿元，任职期间最佳基金回报 77.76%， 任职期间最差基金回报-27.18%。 10月9日，安博通涨5.32%，截至发稿，报82.02元/股，成交1.13亿元，换手率1.85%，总市值63.04亿 元。 资料显示，北京安博通科技股份有限公司位于北京市海淀区西北旺东路十号院东区15号楼A座301，成 立日期2007年5月25日，上市日期2019年9月6日，公司主营业务涉及网络安全核心软件产品的研究、开 发、销售以及相关技术服务,为网络安全行业网络安全系统平台与安全服务提供商。主营业务收入构成 为：安全网关39.47%，安全人工智能35.21%，安全管理18.05%，安全服务7.15%，其他(补充)0.12%。 从基金十大重仓股角度 数据显示，广发基金旗下1只基金重仓安博通。广发改革混合（ ...