谷歌:警惕政府聘请“雇佣黑客”发动网络攻击
谷歌(Google)信息隐私和安全主管希瑟•阿德金斯(Heather Adkins)表示,流氓政府正越来越多的购买“现成”的黑客攻击,这可以让它们更容易、更低价的方式发动网络攻击。
Heather Adkins, director of information privacy and security at Google, made the remarks at a conference in San Francisco on Monday. While state-sponsored cyber attacks were nothing new, she said, the number of incursions was rising.
阿德金斯是在周一旧金山的一个会议上发表这番言论的。她表示,尽管政府支持的网络攻击不再新鲜,但网络攻击的数量在增加。
“What I see increasing trendwise is the attack platforms are no longer something they need to build themselves, they can buy it off the shelf,” said Ms Adkins. As a result, smaller governments were able to launch cyber attacks inexpensively, without having to assemble their own teams of hackers, she said.
她表示:“我看到这种趋势正日益增强:它们不再需要自己打造平台,它们可以购买现成的。”她表示,因此,较小的政府能够以低廉的价格发动网络攻击,不必组建自己的黑客团队。
Security analysts have blamed Russian state-backed cyber spies for a number of recent attacks. Chinese state-backed hackers have been accused of industrial espionage. Pro-Syrian government hackers have also been identified.
安全分析人士将最近大量网络攻击归咎于得到政府支持的俄罗斯网络间谍。得到政府支持的中国黑客也被指控从事商业间谍活动。支持叙利亚政府的黑客也已被确认。
Paul Innella, chief executive of cyber security firm TDI Security, said the price for off-the-shelf hacks depended on the type of attack.
网络安全公司TDI Security首席执行官保罗•因内拉(Paul Innella)表示,现成黑客攻击的价格取决于攻击类型。
“Dedicated outcomes against known large enterprises or governments, or the ‘big heist’, command much higher paydays, usually in the tens of thousands [of US dollars],” he said.
他表示:“针对知名大企业或政府的网络攻击要价较高,通常数万美元。”
Governments often supplement their hacking capabilities with so-called “hackers-for-hire”, Mr Innella said. “It appears that the lengthy attacks committed by state-actors are handled by their own government capability while hackers-for-hire handle some more specialised attacks or a specific task that might be better served carried out from a different originating endpoint in the web.”
因内拉表示,政府通常会用所谓的“雇佣黑客”来补充自己的黑客实力。“一国政府发动的长期攻击似乎由自己的政府能力负责,而“雇佣黑客”则从事一些更专业的攻击或特别任务,从网络中不同的原始端点进行攻击可能效果更好。”
