网络安全无小事，合规经营守底线。滨州中心支公司将以此次专项活动为契机，推动网络安全培训常态化、防护措施精细化、责任落实具体化，切实守护 客户权益与公司稳健发展，为保险业高质量发展筑牢安全屏障！ 活动采用"晨会微宣讲+案例深剖析+互动答疑"的形式，确保知识传递入脑入心。各级机构按照"全员参与、全员考核"原则，组织员工系统学习网络安全规 章制度，通过情景模拟、知识问答等方式检验学习成效，推动"安全第一、合规先行"的理念融入日常操作。从中支到下辖四五级机构，从管理岗到一线岗 位，全体员工将共同参与，层层压实安全责任，构建"人人都是安全员、处处都是安全岗"的防护体系。 近期，网络攻击针对保险行业的靶向性特征日益凸显，第三方系统漏洞、社会工程学诈骗等风险持续高发，给行业数据安全与合规经营带来严峻挑战。为 全面强化全员网络安全意识，压实各级机构安全责任，滨州中心支公司正式启动"网络安全知识课堂"专项宣讲活动，以晨会为重要载体，带动下辖四五级 机构同步筑牢安全防线。 作为保险业核心资产，客户信息、保单数据、财务凭证等敏感信息的安全防护，直接关系到客户合法权益与公司品牌声誉。本次专项宣讲紧扣《保险业核 心数据分类与保护》要求 ...

Core Viewpoint - The article argues that "secure keyboards" used in mobile banking apps do not effectively protect user accounts and may actually encourage less secure password practices [1][8][14]. Group 1: History and Evolution of Secure Keyboards - The concept of secure keyboards originated from the need to bypass hardware keyloggers in public computers, leading to the development of software-based on-screen keyboards [4][6]. - In 1997, China Merchants Bank launched its online banking service, highlighting the early adoption of internet banking despite low personal computer penetration at the time [2][6]. Group 2: Current Implementation and Standards - Current mobile banking apps in China utilize a "secure keyboard" that replaces standard keyboards with a custom input method, as outlined in various industry standards [6][7]. - The standards JR/T 0068-2020 and JR/T 0092-2019 recommend measures like custom keyboards and character encryption to protect sensitive information [6][7]. Group 3: Limitations and Risks of Secure Keyboards - The article points out that secure keyboards may inadvertently promote the use of simpler, less secure passwords due to user convenience and familiarity [12][14]. - Many secure keyboard implementations restrict the use of password managers, which can lead to users resorting to easier-to-remember passwords, thus reducing overall security [14][18]. Group 4: Broader Implications for Security Practices - The discussion emphasizes that convenience often trumps security in user behavior, leading to the adoption of less secure practices despite the presence of security measures [15][20]. - The article suggests that effective security strategies must balance user experience with robust security protocols, as overly complex systems may lead to user frustration and non-compliance [20][19].

Core Viewpoint - The EU's enforcement of the Digital Services Act has escalated tensions between the US and Europe, with the US imposing travel restrictions on EU officials in response to a significant fine levied against Musk's platform X [1][3][5]. Group 1: Regulatory Context - The EU's Digital Services Act, passed in 2022, mandates large internet platforms to prevent the spread of illegal content and hate speech, impacting major US tech companies like Apple, Google, and X [3][5]. - The first fine under this act was imposed on X, amounting to €120 million (approximately $130 million), which has drawn strong discontent from the US [3][5]. Group 2: Political Implications - The US sanctions against EU officials are seen as a challenge to the EU's digital governance authority, indicating a shift from mere policy disagreements to a deeper political conflict [3][6]. - The US government has previously threatened retaliation against the EU's digital regulations, using them as leverage in trade negotiations [6][7]. Group 3: Internal Pressures - Both the US and EU face internal pressures to adopt more aggressive stances in their digital regulatory disputes, with US lawmakers advocating for harsher measures against EU officials [7][10]. - The EU Commission's cautious response to US sanctions has sparked debate within Europe, with some leaders calling for a stronger stance against US actions [10][12]. Group 4: Future Outlook - The ongoing digital dispute reflects fundamental differences in governance philosophies between the US and EU, with potential for further escalation as both sides prepare for future regulatory actions [15][16]. - The EU's ability to assert its digital sovereignty and respond effectively to US pressures will be critical in shaping the future of transatlantic relations [16].

（原标题：2025年越南信息与通信技术十大新闻发布） 二、越南政府、国会及各部门和地方坚决贯彻落实越共中央政治局2024年12月发布的《关于科技创 新和国家数字化转型突破发展的决议》（第57-NQ/TW号决议）。 三、越南通讯传媒部并入科技部，部分职能和任务划转至公安部及文化体育和旅游部。 四、越南国会通过由公安部起草的《2025年网络安全法》和《个人数据保护法》。 越通社12月29日报道，越南信息与通信技术新闻工作者俱乐部当日公布2025年信息与通信技术十大 新闻，40多家新闻机构近50名专业记者参与评选。 该俱乐部主席阮越富表示，2025年是越南信息与通信技术行业发展进程中的一个重要里程碑。这一 年，国家在体制机制、组织架构、网络安全、数据以及战略技术等方面出台一系列重要决策，并在全国 范围内同步落实。这不仅是加速数字化转型的一年，更是塑造越南数字国家长期发展架构的关键之年。 这十大新闻是： 一、越南国会通过一系列重要法律，为科学技术、改革创新、数字化转型及新闻与传播领域构建坚 实法律框架。 八、越南政府依法查处多名投放虚假广告、在线销售伪劣商品的关键意见领袖及公众人物。 九、越南国家信用信息中心遭网络攻 ...

Group 1 - The revised Public Security Administration Punishment Law will take effect on January 1, 2026, adding provisions for legitimate defense, stating that actions taken to prevent ongoing illegal harm that result in damage will not be considered violations of public security management and will not incur penalties [2] - The "Notice on Improving Kindergarten Charging Policies" will also be effective from January 1, 2026, specifying that kindergartens can only charge for five categories of fees, including care education fees and accommodation fees, and must establish a fee directory list, prohibiting charges outside this list [4] - A mandatory standard for electric vehicle energy consumption will be implemented on January 1, 2026, requiring companies to upgrade new products technically, with a limit of 15.1 kWh per 100 km for vehicles around 2 tons, which is expected to increase the average range of electric vehicles by approximately 7% under unchanged battery capacity [6] Group 2 - The revised Cybersecurity Law will come into effect on January 1, 2026, emphasizing national support for research in artificial intelligence and key technology development, enhancing infrastructure for training data resources and computing power, and increasing penalties for certain illegal activities [8] - The Ministry of Finance and the State Taxation Administration announced that starting January 1, 2026, individuals selling homes purchased for less than two years will be subject to a 3% value-added tax, while those selling homes purchased for two years or more will be exempt from this tax [10] - According to the People's Bank of China, starting January 1, 2026, overdue records will no longer be displayed in personal credit reports if they meet specific conditions, including being generated between January 1, 2020, and December 31, 2025, with a single overdue amount not exceeding 10,000 yuan, and full repayment by March 31, 2026 [12] Group 3 - The revised National Common Language and Writing Law will take effect on January 1, 2026, mandating that online literary programs, web dramas, online movies, and online games use the national common language and writing as the basic language [14] - The revised "Civil Case Cause Regulations" will be effective from January 1, 2026, adding causes related to data and virtual property, and refining causes related to intellectual property [15] - The People's Bank of China will implement a digital renminbi action plan starting January 1, 2026, allowing digital renminbi wallet balances to earn interest calculated like demand deposits, making China the first economy to pay interest on central bank digital currency [17]

【#新网络安全法罚款上限提至千万#】2025年10月28日，十四届全国人大常委会第十八次会议通过 了"关于修改《中华人民共和国网络安全法》的决定"，自今天（1月1日）起正式施行。与第一版相比， 新修改的网络安全法进一步明确了网络运营者的个人信息保护义务，优化了关键信息基础设施运营者的 责任体系，同时加强了与相关法律的协同衔接，构建起更为严密的责任网络。与第一版相比，新修改的 网络安全法最直观的变化就是处罚力度的显著提升。针对网络运营者不履行安全保护义务的行为，新法 区分一般情形、严重后果、特别严重后果三个层级，将最高罚款额度提升至一千万元；对直接负责的主 管人员和其他直接责任人员，最高罚款额度也从十万元提升至一百万元。北京航空航天大学法学院副教 授赵精武：因为关键信息基础设施往往承载了社会公共服务的核心支撑功能，一旦发生网络安全事件， 它的影响程度以及波及范围乃至损害结果都很难估量，这种违法的罚款上限提升，并不是单纯数额上的 变化，还会追究有关人员的责任，再加上其他行政处罚措施来共同发挥预期的震慑作用。专家介绍，新 修改的网络安全法立足实际，区分普通网络运营者与关键信息基础设施运营者，针对性设定责任条款： 对 ...

《商道创投网》创业家会员·本轮融资用途是什么？ 丈八网安CEO王珩表示，本轮融资将主要用于两大方向。一方面，公司将依托现有技术积淀，构建AI 中枢式核心产品架构，推进全产品矩阵向AI原生形态演进。例如，网络靶场系统将实现靶场场景与攻 防任务的智能自动化配置，网络兵棋推演系统将全面实现AI原生转型，为用户提供更贴合实战的策略 验证与决策支撑方案。另一方面，将在扬子江数字经济产业基地设立"丈八网安华东总部"，承担华东、 华中区域的技术研发与客户服务职能，构建区域闭环。 《商道创投网》创投家会员·本轮投资原因是什么？ 盛世聚鑫表示，在硬科技国产化浪潮下，自主可控的网络安全技术已成为战略刚需。丈八网安坚持国产 化自主研发，其核心仿真引擎与AI融合的产品矩阵在关基防护领域构建了独特技术壁垒，这与投资逻 辑高度契合。泓沣资本CEO吕俊峰也表示，持续看好网络仿真赛道在数字经济与关基防护需求驱动下的 广阔前景，丈八网安在技术研发与市场拓展上的快速突破也坚定了投资信心。 《商道创投网》2025年12月31日从官方获悉：丈八网安近日完成了由江苏盛世聚鑫私募基金管理有限公 司（简称"盛世聚鑫"）、泓沣北京私募基金管理有限公司（简称 ...

Group 1: Social Security and Education - The revised Public Security Administration Punishment Law will implement penalties for behaviors affecting social security, including exam cheating and unauthorized drone flights [1] - The new notification on kindergarten fee policies mandates public disclosure of fees for public and non-profit private kindergartens, with a clear list of service charges [2] Group 2: Electric Vehicles - The first mandatory standard for electric vehicle energy consumption will require necessary technical upgrades for new products, aiming to improve the driving experience and increase the average range by approximately 7% [3] Group 3: Taxation - The new Value-Added Tax Law will come into effect, marking significant progress in establishing legal frameworks for taxation in China, covering 14 out of 18 existing tax types [4] Group 4: Language and Internet Regulation - The revised National Common Language and Writing Law will enhance education and innovation in language technology, with new regulations for online language use [5] - The updated Cybersecurity Law will address artificial intelligence risks, promoting research and infrastructure development while enhancing safety regulations [9] Group 5: Personal Credit and Employment - A one-time credit repair policy will allow for automatic adjustments to credit reports for overdue payments made between January 1, 2020, and December 31, 2025, under specific conditions [6] - The National Park Law encourages local employment for ecological management positions and promotes public participation in conservation efforts [8]

Group 1 - In 2026, the government will continue to promote large-scale equipment updates and a trade-in policy for consumer goods, expanding the program to include smart glasses and smart home products in addition to existing categories like cars and home appliances [1] - By the end of 2025, over 100 municipal and county-level business departments have begun to solicit or publicize participating companies in the trade-in program, with many regions emphasizing the need to "expand subsidy scales" and "involve more consumers" [1] Group 2 - The National Medical Insurance Administration announced that in 2026, personal account funds for employee medical insurance will be fully usable across provinces, with the launch of a "medical insurance wallet" on the national medical insurance service platform [3] - Starting January 1, a new medical insurance catalog will be implemented, adding 114 new drugs that cover key areas such as cancer, chronic diseases, and mental health [3] Group 3 - Over 200 new laws and regulations will come into effect in 2026, including a revised cybersecurity law that will impose significantly higher administrative penalties on relevant operators, raising the maximum fine to 10 million yuan [5] - Local regulations will also focus on the protection and development of local specialties and the enhancement of urban park construction [5] Group 4 - Major sporting events in 2026 include the Milan Winter Olympics in February and the FIFA World Cup in June and July, followed by the Asian Games and Youth Olympic Games in the fall, providing ample opportunities for sports enthusiasts [7] Group 5 - 2026 marks the beginning of the country's 14th Five-Year Plan, which emphasizes the integration of artificial intelligence with public welfare and increased government funding for social security [9] - Significant advancements in space exploration are anticipated, including the first unmanned test flight of the Dream Chaser and the Chang'e 7 mission to the Moon's south pole [9]

IT之家 12 月 31 日消息，据外媒 cyberinsider 报道，12 月 26 日时有一名黑客"888"在地下论坛发帖，声称其在 12 月 18 日成功 入侵了欧洲航天局（European Space Agency）的内部系统，窃取了超过 200GB 的数据，并计划出售这些内容。 根据该黑客的说法，其掌握的数据内容包括未公开的 Bitbucket 代码仓库源代码、CI / CD 流水线配置、API 接口及访问令 牌、内部文档、SQL 数据库文件、Terraform 基础设施配置，以及硬编码的凭据和配置文件等。 对此，欧洲航天局在 X 平台发文，披露公司近期的确遭黑客入侵，公司在获悉相关情况后已立即展开调查，同步加强了网络 安全防护措施，进一步对可能存在风险的设备进行加固，目前并未发现任何内部机密敏感数据外泄，此次事件仅影响了"极少 量"的外部服务器。这些服务器主要用于"支持科学界内部的合作型工程项目"。 IT之家 12 月 31 日消息，据外媒 cyberinsider 报道，12 月 26 日时有一名黑客"888"在地下论坛发帖，声称其在 12 月 18 日成功 入侵了欧洲航天局（European ...