谷歌(Google)信息隱私和安全主管希瑟•阿德金斯(Heather Adkins)表示,流氓政府正越來(lái)越多的購(gòu)買(mǎi)“現(xiàn)成”的黑客攻擊,這可以讓它們更容易、更低價(jià)的方式發(fā)動(dòng)網(wǎng)絡(luò)攻擊。
Heather Adkins, director of information privacy and security at Google, made the remarks at a conference in San Francisco on Monday. While state-sponsored cyber attacks were nothing new, she said, the number of incursions was rising.
阿德金斯是在周一舊金山的一個(gè)會(huì)議上發(fā)表這番言論的。她表示,盡管政府支持的網(wǎng)絡(luò)攻擊不再新鮮,但網(wǎng)絡(luò)攻擊的數(shù)量在增加。
“What I see increasing trendwise is the attack platforms are no longer something they need to build themselves, they can buy it off the shelf,” said Ms Adkins. As a result, smaller governments were able to launch cyber attacks inexpensively, without having to assemble their own teams of hackers, she said.
她表示:“我看到這種趨勢(shì)正日益增強(qiáng):它們不再需要自己打造平臺(tái),它們可以購(gòu)買(mǎi)現(xiàn)成的。”她表示,因此,較小的政府能夠以低廉的價(jià)格發(fā)動(dòng)網(wǎng)絡(luò)攻擊,不必組建自己的黑客團(tuán)隊(duì)。
Security analysts have blamed Russian state-backed cyber spies for a number of recent attacks. Chinese state-backed hackers have been accused of industrial espionage. Pro-Syrian government hackers have also been identified.
安全分析人士將最近大量網(wǎng)絡(luò)攻擊歸咎于得到政府支持的俄羅斯網(wǎng)絡(luò)間諜。得到政府支持的中國(guó)黑客也被指控從事商業(yè)間諜活動(dòng)。支持?jǐn)⒗麃喺暮诳鸵惨驯淮_認(rèn)。
Paul Innella, chief executive of cyber security firm TDI Security, said the price for off-the-shelf hacks depended on the type of attack.
網(wǎng)絡(luò)安全公司TDI Security首席執(zhí)行官保羅•因內(nèi)拉(Paul Innella)表示,現(xiàn)成黑客攻擊的價(jià)格取決于攻擊類(lèi)型。
“Dedicated outcomes against known large enterprises or governments, or the ‘big heist’, command much higher paydays, usually in the tens of thousands [of US dollars],” he said.
他表示:“針對(duì)知名大企業(yè)或政府的網(wǎng)絡(luò)攻擊要價(jià)較高,通常數(shù)萬(wàn)美元。”
Governments often supplement their hacking capabilities with so-called “hackers-for-hire”, Mr Innella said. “It appears that the lengthy attacks committed by state-actors are handled by their own government capability while hackers-for-hire handle some more specialised attacks or a specific task that might be better served carried out from a different originating endpoint in the web.”
因內(nèi)拉表示,政府通常會(huì)用所謂的“雇傭黑客”來(lái)補(bǔ)充自己的黑客實(shí)力。“一國(guó)政府發(fā)動(dòng)的長(zhǎng)期攻擊似乎由自己的政府能力負(fù)責(zé),而“雇傭黑客”則從事一些更專(zhuān)業(yè)的攻擊或特別任務(wù),從網(wǎng)絡(luò)中不同的原始端點(diǎn)進(jìn)行攻擊可能效果更好。”