TA的每日心情 | 慵懒
2025-5-20 09:06 |
|---|
签到天数: 4479 天 连续签到: 3 天 [LV.Master]十年《功德圆满》
|
楼主 |
发表于 2011-1-13 23:36
|
显示全部楼层
扭腰时报的蓝翔招生广告
/ P& S4 Q Z: u! {' b2 P/ t" z4 b8 @9 [ e
/ K/ H' {* g2 R1 x5 @! U2 China Schools Said to Be Tied to Online Attacks 9 h8 V& P3 k8 S- F
据称2所中国学校和网络攻击有关
$ \& J: d% l Z) M2 Q
' ^! a( B# X1 R% }By JOHN MARKOFF and DAVID BARBOZA , Y4 I6 q$ M- v! a$ i& n
作者JOHN MARKOFF和DAVID BARBOZA 2 u3 {; S# _$ D1 B* r
Published: February 18, 2010 , O/ Q; [' ?' s o1 d# `/ p
发表于:2010年2月18日 3 l% X2 \1 y% u' _
- F! g# k- P2 N2 bSAN FRANCISCO — A series of online attacks on Google and dozens of other American corporations have been traced to computers at two educational institutions in China, including one with close ties to the Chinese military, say people involved in the investigation. 7 ?. Q% m! K3 h0 F
旧金山消息——根据参与调查的消息人士称,一系列对股沟和几十家其他美国企业的网络攻击被追踪到来自于两家中国的教育机构,其中有一家和中国军方有紧密联系。 5 ~" H( a9 |& K& y
4 a, q7 D) H8 r% N1 X! NThey also said the attacks, aimed at stealing trade secrets and computer codes and capturing e-mail of Chinese human rights activists, may have begun as early as April, months earlier than previously believed. Google announced on Jan. 12 that it and other companies had been subjected to sophisticated attacks that probably came from China.
1 E, }. x4 Y6 {% l5 a消息人士也称,这些攻击旨在偷窃商业机密和电脑代码,以及捕获中国人权活动家的电邮,攻击始于2009年4月份,比所知的还要早一个月。股沟在1月12日宣布,自己和其他的一些公司已经受到来自中国的复杂的攻击。 % p: x) r# e: C- Q/ a% ?/ y3 a: O
& c/ j3 E+ ]/ `) q' q5 w3 M3 |5 b
Computer security experts, including investigators from the National Security Agency, have been working since then to pinpoint the source of the attacks. Until recently, the trail had led only to servers in Taiwan. 9 u! T- u2 j9 g8 v: U U0 v$ o5 ]
电脑安全专家们,包括美国国家安全局(NSA)的调查员们,从那时起就开始追踪攻击的来源。直至不久前,只能追踪到这些攻击来自于台湾的一些服务器。 ! i5 r+ v" {: M3 Y; b; ?2 `
% n" _: O9 ^# W0 M
If supported by further investigation, the findings raise as many questions as they answer, including the possibility that some of the attacks came from China but not necessarily from the Chinese government, or even from Chinese sources. c9 v+ l: I9 }( e7 _- n
假如进一步的调查支持来自于台湾服务器的结论,就会带来更多的问题,问题包括可能一些攻击虽然来自于中国,但并不一定来自于中国政府,甚至这些攻击并不是来自于中国。 & n8 e% D' |+ J2 N1 b
6 {% i. s" b3 O6 U, ?Tracing the attacks further back, to an elite Chinese university and a vocational school, is a breakthrough in a difficult task. Evidence acquired by a United States military contractor that faced the same attacks as Google has even led investigators to suspect a link to a specific computer science class, taught by a Ukrainian professor at the vocational school.
' d4 W& F3 x- ~; m. }对攻击的进一步追踪,发现和一家中国菁英大学和一家职业技术学校有关,是一项困难的任务的突破性进展。根据从一家和股沟一样遭到攻击美国国防承包商处得到的证据,使得调查员们怀疑攻击和一个特殊的电脑班有关,这个电脑班在蓝翔,教师是一位乌克兰的教授。 % D2 w; B: C* Q/ f- d
; X. N6 R( \2 G0 V( WThe revelations were shared by the contractor at a meeting of computer security specialists.
3 k3 r t) w% K. ?9 _2 u V5 \这是这家承包商在电脑安全专家会议中透露的。
' w* l/ u" j8 I i; S2 G' l0 D& ]1 g0 Q# f
The Chinese schools involved are Shanghai Jiaotong University and the Lanxiang Vocational School, according to several people with knowledge of the investigation who asked for anonymity because they were not authorized to discuss the inquiry.
! I9 J7 ?+ q( Y8 D8 g据几位要求匿名的消息人士称,这两所卷入的中国高校是上海交通大学和蓝翔职业技术学校,他们要求匿名是因为他们违背授权讨论当前的调查。
; E: D* @8 W$ t7 _
3 t1 w" C9 [+ ]$ w% x) SJiaotong has one of China’s top computer science programs. Just a few weeks ago its students won an international computer programming competition organized by I.B.M. — the “Battle of the Brains” — beating out Stanford and other top-flight universities. , w2 f/ |# I9 f" a" C6 J
交大有一个中国最尖端的电脑课程。就在几周前,交大的学生在IBM公司组办的“头脑战争”电脑程序竞赛中获胜,打得斯坦福和其他高校的才子才女们满地找牙。 . k1 D0 _/ i- l" ~
9 }0 S, Q% a7 ^' H: }# Y
Lanxiang, in east China’s Shandong Province, is a huge vocational school that was established with military support and trains some computer scientists for the military. The school’s computer network is operated by a company with close ties to Baidu, the dominant search engine in China and a competitor of Google. & J- D0 Q5 u% k* i' A* ^ `
蓝翔,位于中国山东省,是一家军方支持创办的职业学校,为军方培训电脑科学家。此校的网络由一家与百度存在紧密联系的公司运转,百度是中国首屈一指的搜索引擎,也是股沟的竞争对手。
! P$ S; F& |$ y8 ]: g; E( q- c' A9 L" Z1 J8 m9 i# x
Within the computer security industry and the Obama administration, analysts differ over how to interpret the finding that the intrusions appear to come from schools instead of Chinese military installations or government agencies. Some analysts have privately circulated a document asserting that the vocational school is being used as camouflage for government operations. But other computer industry executives and former government officials said it was possible that the schools were cover for a “false flag” intelligence operation being run by a third country. Some have also speculated that the hacking could be a giant example of criminal industrial espionage, aimed at stealing intellectual property from American technology firms.
. C/ a% {3 s8 k) ~在电脑安全业内以及奥巴马政府中,分析师对发现入侵似乎来源于学校而非中国军方或政府机构有着不同的解读。一些分析师已经在私下传阅一份文件,断定该职校是政府的幌子。不过其他的电脑行业的执行官们和前任的政府官员们说,这所职校可能是个“伪装”,可能是第三国的情报机构(译注,卧槽,蓝翔牛逼了)。有些人也怀疑,黑客行为可能是一个犯罪的商业间谍行为案例,目标是偷窃美国科技企业的知识产权。 " y* a2 v4 y9 Q4 V0 W
$ M5 s) ?' c# Q4 uIndependent researchers who monitor Chinese information warfare caution that the Chinese have adopted a highly distributed approach to online espionage, making it almost impossible to prove where an attack originated.
9 c# J; w( b" i- u" A2 b负责监视中国信息战的独立调查员警告说,中国已经采取了一套高度分散的网络间谍方法,使得证明网络攻击的来源几乎是不可能的。 4 V: ?5 e5 m& _( c- S0 g
7 u: G( |3 e. @8 M9 d7 w% y+ `
“We have to understand that they have a different model for computer network exploit operations,” said James C. Mulvenon, a Chinese military specialist and a director at the Center for Intelligence Research and Analysis in Washington. Rather than tightly compartmentalizing online espionage within agencies as the United States does, he said, the Chinese government often involves volunteer “patriotic hackers” to support its policies.
0 o: E! B9 w$ l) O“我们必须要明白,他们有一套不同的网络破解程序模型” James C. Mulvenon说,他是一位研究中国军方的专家,是华盛顿的情报研究与分析中心(Center for Intelligence Research and Analysis)的主任。和美国采用专业机构进行网络间谍行动的做法不同,中国政府常起用“爱国黑客”来支持自己的政策。 0 C% w, j" J8 V r( `" t
]7 r* g L2 k$ P$ L4 w2 m
Spokesmen for the Chinese schools said they had not heard that American investigators had traced the Google attacks to their campuses.
1 Y( r5 Q$ y) ?2 T7 _. m中国这两所学校的发言人称,他们没有听说过美国调查追踪到攻击起源自本校。 9 D. s# [# N+ H
8 Y% A6 a4 n9 L! R
If it is true, “We’ll alert related departments and start our own investigation,” said Liu Yuxiang, head of the propaganda department of the party committee at Jiaotong University in Shanghai.
0 C4 Z( s6 G" v! }: O5 g4 F假如这是真的,那么“我们将会警告相关部门,开始我们的调查”交大的宣传部党委书记Liu Yuxiang说。 4 s1 A5 j; u+ D$ E+ y- t: K5 N
9 A3 u \% Y1 o. F5 ?* z1 `( rBut when asked about the possibility, a leading professor in Jiaotong’s School of Information Security Engineering said in a telephone interview: “I’m not surprised. Actually students hacking into foreign Web sites is quite normal.” The professor, who teaches Web security, asked not to be named for fear of reprisal. 7 J2 ]+ [! g7 o* q- {: a
但是被问到有没有可能是真的的时候,一位交大信息安全工程的著名教授在电话采访中说:“我不奇怪。实际上学生黑外国网站很平常。”这位教授教的课程是网站安全,因为担心被报复,所以要求匿名。 2 X9 p- Q6 f1 o; J
k0 P& D$ C5 f
“I believe there’s two kinds of situations,” the professor continued. “One is it’s a completely individual act of wrongdoing, done by one or two geek students in the school who are just keen on experimenting with their hacking skills learned from the school, since the sources in the school and network are so limited. Or it could be that one of the university’s I.P. addresses was hijacked by others, which frequently happens.”
- f1 @ g+ J& {: H7 s+ G+ c“我相信有两种情况,”教授说,“一种是完全独立的个人的错误行为,是一两个调皮的学生在试验学到的黑客技术,因为因为学校的网络资源只对专门的人开放。或者可能是学校的IP地址被别人劫持了,这是司空见惯的事情。”
( z K8 P* J3 V$ G; z" a0 H& z9 m- b( J/ K4 Z: P) I& u
At Lanxiang Vocational, officials said they had not heard about any possible link to the school and declined to say if a Ukrainian professor taught computer science there. 0 e: n$ V. W$ Y9 l
在蓝翔职校,一位校领导称,他们没听说过学校可能和攻击有关的事,拒绝回答是否有一位乌克兰的教授在教电脑课。 , Z& M$ l& @8 q2 I: m
3 D1 D" ~1 [- Z" E3 i
A man named Mr. Shao, who said he was dean of the computer science department at Lanxiang but refused to give his first name, said, “I think it’s impossible for our students to hack Google or other U.S. companies because they are just high school graduates and not at an advanced level. Also, because our school adopts close management, outsiders cannot easily come into our school.” Y# S! a" i9 F* x& l0 h
一位Shao先生,自称是蓝翔的电脑科学系系主任,拒绝提供自己的全名,说:“我认为我们的学生不可能黑股沟或别的美国公司,因为这些学生只是一些高中生,不是高手。而且因为我们的学校是封闭式管理,所以外来人员不可能跑进来上网。” * k( S; o v$ ]6 ?
: j4 ?) e I! kMr. Shao acknowledged that every year four or five students from his computer science department were recruited into the military.
/ t; \ ~& _ C/ g R( Q" pShao先生承认,每年都有四五位计算机系的学生进入军方。 : q0 `/ p8 S. i6 _
; H9 r( x) ^1 ?' P# WGoogle’s decision to step forward and challenge China over the intrusions has created a highly sensitive issue for the United States government. Shortly after the company went public with its accusations, Secretary of State Hillary Rodham Clinton challenged the Chinese in a speech on Internet censors, suggesting that the country’s efforts to control open access to the Internet were in effect an information-age Berlin Wall.
$ K W1 W) ~" o- @* w+ H. {) C( E在网络入侵问题上,股沟决定站出来不惜挑战中国,对美国政府产生了一个高度敏感的问题。在股沟公开了自己的指责之后,国务卿希拉里?克林顿就在互联网审查方面发表了会触怒中国的演说,希拉里说,中国控制网络访问的行为相当于柏林墙。 / O+ [; u) K' n# G- I
A/ k% Y. e( }& G3 l5 C% OA report on Chinese online warfare prepared for the U.S.-China Economic Security Review Commission in October 2009 by Northrop Grumman identified six regions in China with military efforts to engage in such attacks. Jinan, site of the vocational school, was one of the regions.
0 G; s( g- q* I: [2009年10月,Northrop Grumman给美中经济安全委员会(U.S.-China Economic Security Review Commission)的一份关于中国网络战的报告中称,识别出中国军方在6个地区进行这类攻击。蓝翔位于济南,济南就是6个地区中的一个。
, `$ Y0 `6 e* x5 J
z! {0 X7 w% vExecutives at Google have said little about the intrusions and would not comment for this article. But the company has contacted computer security specialists to confirm what has been reported by other targeted companies: access to the companies’ servers was gained by exploiting a previously unknown flaw in Microsoft’s Internet Explorer Web browser.
Z. z4 o- h& X# o股沟的执行官对入侵三敛其口,不愿对本文发表评论。不过公司已经联络了电脑安全工程师,确认了其他公司的报告:这些公司的服务器是利用一个微软浏览器的未知漏洞而被破解的。 ) ]5 I3 k8 s3 K0 a8 B6 F2 i
4 b6 o0 O- o: e5 w) ?
Forensic analysis is yielding new details of how the intruders took advantage of the flaw to gain access to internal corporate servers. They did this by using a clever technique — called man-in-the-mailbox — to exploit the natural trust shared by people who work together in organizations.
+ f3 `0 y& j7 @) p! r! f争辩中的分析透露出入侵者怎样利用漏洞获得网络公司服务器的访问权限的。他们使用一个聪明的技术,这个技术叫“信箱里的人”,利用了公司同事之间的信任。
+ o+ W R* J% t
6 G1 z' s- J- i2 O9 rAfter taking over one computer, intruders insert into an e-mail conversation a message containing a digital attachment carrying malware that is highly likely to be opened by the second victim. The attached malware makes it possible for the intruders to take over the target computer.
4 Q+ v$ I0 n" O在黑了一台电脑后,入侵者在这台电脑的电邮对话里插入一条消息,消息里有一个第二个受害者很容易不小心点开的附件,里面有malware病毒。入侵者靠malware病毒黑目标电脑。 |
|
发表于 2011-1-13 22:07
置顶卡
变色卡
千斤顶
发表于 2011-1-13 22:45
发表于 2011-1-13 23:01
