This article explains the Zero Trust security model, its advantages over traditional perimeter defenses, core technologies such as SDP, IAM, and micro‑segmentation, implementation principles, essential components, real‑world deployment scenarios, future trends, and Tencent's practical contributions to the industry.
In his 2021 Two‑Session submission, Zhou Hongyi, founder of 360, urges the Chinese government to recognize and incentivize elite hackers, strengthen cybersecurity for connected cars, and build city‑level security infrastructure to protect smart‑city systems, outlining concrete policy recommendations for each area.
JetBrains, the maker of IntelliJ IDEA and Kotlin, is under U.S. security scrutiny for a possible link to the SolarWinds supply‑chain breach, with officials questioning a TeamCity vulnerability while the company denies involvement and cites misconfiguration as the likely cause.
A recent SolarWinds breach gave hackers read‑only access to Microsoft’s internal source‑code repositories, prompting the company to stress that no production systems or user data were compromised while highlighting broader security implications for the software industry.
This week’s tech roundup covers Google’s two‑day service outage, the removal of over 60% of Pornhub videos, the launch of Rocky Linux, Linus Torvalds’ kernel submission deadline, Docker Desktop 3.0 updates, AI‑controlled U‑2 flight, major antitrust fines and the release of HarmonyOS 2.0 Beta, among other industry highlights.
Over 85,000 MySQL databases are being sold on the dark web for around $500 each, with attackers automating ransom notices via portals on sqldb.to and dbrestore.to, demanding Bitcoin payments, auctioning unpaid data after nine days, and targeting a range of database platforms since 2017.
A UN, Interpol and Trend Micro report warns that cyber criminals can exploit artificial intelligence and machine learning to launch attacks on autonomous cars, drones and IoT vehicles, potentially causing physical harm, traffic disruption, and data theft, highlighting urgent security challenges for emerging technologies.
This roundup highlights 2020's most common passwords, Chrome 87's performance surge, Gartner's cloud spending forecast, Facebook's AI hate‑speech detection, ZTE's AI‑driven energy saving, AMD's MI100 AI accelerator, curriculum‑learning NLU improvements, and EMNLP's silent‑speech breakthrough.
The article describes how Bitcoin‑based ransomware such as WannaRen encrypts victims' files, the large‑scale attacks on Chinese enterprises and institutions, the police investigations that led to the arrest of the mastermind Ju Mou and his accomplices, and practical advice for preventing such threats.
This article outlines twelve essential cybersecurity best practices for 2019, covering biometric security, tiered policies, risk‑based approaches, data backup, IoT protection, multi‑factor authentication, password management, least‑privilege principles, privileged‑user monitoring, third‑party access control, phishing defense, and employee awareness to safeguard sensitive data.
This article reviews major 2020 data breach incidents worldwide, shows how to check if your accounts appear on the dark web using HaveIBeenPwned, and offers practical advice on password reuse and recommended password‑manager tools to protect your online identities.
The article lists major 2020 data‑breach incidents worldwide, explains how to use HaveIBeenPwned to discover whether your credentials have been exposed, and offers practical advice on password hygiene and reliable password‑manager tools to protect your online accounts.
Tencent Cloud’s T‑Sec Network Intrusion Prevention System and SCDN Security Acceleration Product earned the IPv6 Best Practice Award at the 2020 Global IPv6 Summit, recognizing their advanced kernel‑level security computing, AI‑driven threat detection, and support for China’s large‑scale IPv6 digital infrastructure transformation.
The 2019 Tencent Game Security report reveals rising cheat samples on PC and mobile, dominant custom cheats, emerging subtle cheating tactics, a diversified black‑market selling fake IDs and compromised devices, rampant account theft largely through scams, and improved player reporting that boosted detection rates.
This article reviews the low average IT operations salary in China, highlights IDC's public cloud market report, examines Huawei's GaussDB shutdown, details AI server market shares, announces Debian 10.4 updates, and summarizes major tech industry news including Tencent's earnings, Microsoft‑Oracle's $10 billion cloud contract, and recent security incidents.
The article outlines ten major 2020 cybersecurity forecasts—including surging ransomware, sophisticated phishing, faster threat detection, expanding attack surfaces, emerging IoT security laws, stricter GDPR enforcement, OT security challenges, and the rise of managed security services—to help organizations prepare for the evolving threat landscape.
China’s mandatory Cybersecurity Graded Protection System 2.0, effective Dec 1 2019, classifies information systems into five security levels, imposes legally enforceable technical and management controls—including encryption, trusted computing, and cloud requirements—and outlines a five‑step assessment, registration, remediation, and supervision process for enterprises to achieve compliance quickly.
This article examines the evolution of machine intelligence, the role of general‑purpose technologies, the shift from data‑driven to intelligent‑driven security, the core paradigm of autonomous systems, and proposes a six‑level maturity model (L0‑L5) for truly intelligent cybersecurity solutions.
The article examines the fundamental nature of machine intelligence, its historical development, the shift from data‑driven to intelligence‑driven approaches, and why current AI techniques still fall short in cybersecurity, proposing a four‑component paradigm and a six‑level maturity model for truly intelligent security systems.
This article outlines twelve essential cybersecurity practices for 2019, covering biometric authentication, tiered security policies, risk‑based approaches, regular backups, IoT security, multi‑factor authentication, password management, least‑privilege principles, privileged‑user monitoring, third‑party access control, phishing awareness, and employee training.
The 7th Internet Security Conference in Beijing gathered international experts to discuss the merging of cyberspace and physical space, the heightened impact of 5G and industrial IoT on cyber attacks, and collaborative strategies among China, Israel, Russia, and Singapore to build a comprehensive security ecosystem.
In a recent World Intelligence Summit address, Zhou Hongyi warned that AI systems lacking humanistic thinking can become tragic, raised ethical questions about control of unmanned systems and facial‑recognition flaws, and urged pre‑launch security testing by hacker firms while announcing a new cybersecurity hub in Tianjin.
The article explains how situational awareness—covering pre‑attack, during‑attack, and post‑attack stages—leverages big data, AI, threat intelligence, UEBA and visualization to turn security platforms into proactive “security brains,” while also critiquing current product implementations and market practices.
This article presents a comprehensive collection of network security mind maps covering introductory concepts, scanning and defense techniques, monitoring, password cracking, deception attacks, denial-of-service, buffer overflow, web, trojan, virus threats, and future trends, guiding learners through a structured technical roadmap.
Effective intrusion detection for large enterprises hinges on combining signature‑based pattern matching with baseline anomaly modeling, gathering comprehensive host and network logs, focusing on the GetShell foothold, managing alert fatigue, and integrating AI‑enhanced feature engineering while maintaining robust operational foundations and continuous expertise development.
At the World Internet Conference in Wuzhen, leading figures such as Ma Huateng, Shen Xiangyang, Shen Nanpeng, Lei Jun, Steve Mollenkopf, Zhou Hongyi, Sun Pishu, Jing Xiandong, and Eugene Kaspersky shared insights on deep‑water internet challenges, AI's pivotal role, mobile‑first strategies, blockchain trust, and evolving cybersecurity, outlining the next era of digital transformation.
The ISC 2018 conference highlighted the growing importance of big data and artificial intelligence security, presenting JD's research on anti‑scraping techniques, AI‑driven defenses against black‑market attacks, and a service‑oriented approach to protecting user data across enterprises.
According to recent Forrester and Forbes reports, 2018 will see AI overtaking big-data hype, driving five key trends—from heightened cybersecurity in healthcare to expanded IoT, plug-and-play AI solutions, the rise of chief digital officers, and smarter community policing—each reshaping how organizations leverage data.
In the first half of 2018, the gaming industry faced a dramatic rise in DDoS attacks—accounting for nearly 40% of incidents and reaching a 1.23 Tbps peak on Tencent Cloud—driven largely by UDP‑based and MEMCACHED reflection floods, prompting comprehensive mitigation strategies such as BGP high‑defense, traffic filtering, and industry‑specific protections.
In the first half of 2018 DDoS attacks surged, with IoT‑based SSDP and newly dominant Memcached reflection amplifications reaching 1.7 Tbps, gaming becoming the top‑targeted sector, SYN and HTTP floods rising, attack infrastructure shifting abroad, and automated, low‑cost services enabling teenage operators, prompting recommendations for high‑bandwidth cloud and BGP defenses.
The article reports on DEFCON China 2018 held in Beijing, describing the conference’s significance, keynotes by Jeff Moss, diverse security topics ranging from mobile and system security to deep‑learning workshops, detailed accounts of specific talks on account hijacking and decentralized networks, and the cultural aspects such as badge colors and puzzles.
This article presents a detailed mind‑map of network security, covering introductory concepts, scanning and defense, monitoring, password cracking, deception attacks, denial‑of‑service, buffer overflow, web and trojan attacks, computer viruses, and future trends, each illustrated with explanatory images.
This guide compiles essential papers, tools, virtual machines, datasets, and training sites to help learners deepen their understanding of computer and network security through both theoretical study and hands‑on practice.
This article provides a curated list of introductory resources—including programming fundamentals, control‑system basics, and industry‑specific videos—to help newcomers and professionals alike begin their journey into industrial control system cybersecurity.
The article explains what Distributed Denial of Service (DDoS) attacks are, why they are a persistent resource‑war in cyberspace, outlines new hybrid attack trends, the expanding range of compromised devices, and discusses evolving defense approaches from local cleaning to cloud‑based anti‑DDoS services.
This article breaks down the monthly expenses hackers incur for tools, services, and infrastructure, then reveals how much they can earn through ransomware, malicious certificates, fake antivirus, IP reputation abuse, web shells, and user data trading, highlighting the lucrative yet risky nature of cybercrime.
This article explains what DDoS attacks are, highlights famous large‑scale incidents, examines their financial and reputational impact on businesses, and outlines practical mitigation strategies that cloud providers and organizations can adopt to detect and survive such attacks.
The article explains what DDoS attacks are, illustrates real incidents like the Hammer phone launch and Apple iPhone 6s pre‑order outage, and details how the ADS solution uses anti‑spoofing, protocol analysis, behavior profiling, dynamic fingerprinting, and bandwidth control to accurately identify and mitigate malicious traffic.
