正文
6类顶级黑客大盘点
4. Insider (You)
内鬼
Who: Disgruntled employees, contractors, whistleblowers
身份:心怀不满的员工,承包商,举报人
Objectives: Score-settling, leaks, public good
目的:利益之争,泄露信息,公共利益
Targets: Large companies, governments
目标:大公司,政府
Signature: Document theft
特征:窃取文件
Classic Case: Maroochy Shire, an Australian district along the Sunshine Coast in Queensland, was inundated with millions of gallons of untreated sewage in 2001 when a contractor hacked and took control of 150 sewage pumping stations. He had been passed over for a job with the district. His dirty work cost Maroochy Shire upwards of $1 million.
经典案例:马谷志郡位于澳大利亚昆士兰州阳光海岸。2001年,一个承包商用黑客攻击并控制了当地150座污水泵站,导致该地区被上百万吨未处理的污水淹没。他这么干的起因是在该地区的一项业务承包中落选。结果,这次卑鄙行为让马谷志郡损失了超过100万美元。
5. Script Kiddie
脚本小子
Who: Bored youth
身份:无聊的年轻人
Objectives: Thrills, notoriety
目的:寻求刺激,博得恶名
Targets: Low-hanging fruit such as uNPRotected websites and e-mail accounts
目标:容易下手的对象,比如没有保护措施的网站和电子邮件账户
Signature: Defacing or dismantling websites
特征:丑化或破坏网站
Classic Case: An e-mail subject-lined I LOVE YOU duped people -- some of them inside the Pentagon -- in 2001. The virus it contained, which originated in the Philippines, destroyed files and simultaneously replicated itself, seeding in-boxes as it went. The so-called Love Bug caused an estimated $10 billion in digital damage and lost productivity.
经典案例:2001年,一封主题为“我爱你”的电子邮件把人们弄得晕头转向——包括一些五角大楼的人。这封信含有来自菲律宾的病毒,它在破坏文件的同时进行自我复制,在收件箱里扎根。所谓的“爱虫”所引起的数据破坏和生产力损失估计高达100亿美元。
6. Vulnerability Broker
漏洞经纪人
Who: Endgame, Netragard, Vupen
身份:Endgame公司,Netragard公司,Vupen公司
Objective: Hacking as legitimate business
目的:把黑客行为当成合法生意
Targets: Agnostic
目标:未可知
Signature: Finding so-called zero-day exploits -- ways to hack new software, selling them to governments and other deep-pocketed clients
特征:找到所谓的“零天攻击”代码(zero-day exploit)——即攻击新软件的方法,再把它们卖给政府和其他财大气粗的客户。
Classic Case: French firm Vupen hacked Google's (GOOG, Fortune 500) Chrome browser at a security conference last March. Rather than share its technique with the company (and accept a $60,000 award), Vupen has been selling the exploit to higher-paying customers.
经典案例:去年3月举行的一次安全会议上,法国公司Vupen黑掉了谷歌公司(Google)的Chrome浏览器。这家公司并没有(收下6万美元,)把这项技术和谷歌分享,而是把代码卖给了出价更高的客户。
- 上一篇
- 下一篇