2017考研英语拓展阅读:高颜值有风险
来源 :中华考试网 2016-05-23
中2017考研英语拓展阅读:高颜值有风险
Data stolen from a dating website aimed at "beautiful people only" has been traded online.
近日,有不法份子从一家仅针对“美人”的约会网站盗取资料,并在网上进行交易。
The details of more than a million members including their weight, height, job, and phone numbers were discovered unencrypted online in December 2015.
2015年12月,超过100万人的个人资料在网上公开流出,其中包括身高、体重、工作以及手机号码。
They have now been sold on the black market, said security expert Troy Hunt.
安全专家特洛伊亨特说,这些信息目前在黑市进行非法交易。
The firm said the data belonged to members who joined before July 2015 and that no passwords or financial information were included.
该公司称,这些数据来源于2015年七月以前加入该网站的成员,其中不包含任何密码和财务信息。
Security researcher Chris Vickery, who originally discovered it, told the BBC the firm acted quickly after he notified them - but by then, data had already been sold on.
网络安全研究院克里斯维克里最先发现了这个问题。他告诉BBC,当他通知该公司后他们应对非常迅速-但那时数据已经开始进行交易了。
"They published it openly to the world with no protection whatsoever," he said.
他说:“他们未加任何保护措施就向全世界公开了这些信息。”
Beautiful People originally claimed the content was from a test server but Mr Vickery said the data itself was still genuine.
Beautiful People最初声称,这些内容来源于一个测试服务器,但维克里说不管怎样,这些数据都是真实的。
"Whether or not it’s in the test database makes no difference if it’s real data," he added.
“如果这些是真实资料,它们是不是在测试数据库中并没有什么区别。”他补充。
It also transpired that a second researcher had identified the same weakness on the same day.
另一位网络安全研究员在当天发现了同样的漏洞。
"The breach involves data that was provided by members prior to mid-July 2015. No more recent user data or any data relating to users who joined from mid-July 2015 onward is affected," Beautiful People said in a statement.
“这个漏洞涉及的数据均为2015年7月中旬以前加入的会员,近期的用户数据或者2015年7月中旬以后加入的会员数据并没有受到影响。”Beautiful People发表声明。
"As far as we were aware, at that time [in December 2015], only the two security researchers who informed us of the breach had access to this data."
“我们发现时[2015年12月],只有两位通知我们该漏洞的网络安全研究员接触过这些数据。”
Public information
公开信息
Now the compromised data appears to have been sold on the black market, security expert Troy Hunt told Forbes.
安全专家特洛伊亨特告诉福布斯,现在这些被盗用的信息似乎已经在黑市进行交易。
"Now it’s public, cybercriminals have the opportunity to use this information to steal personal identities or more," said David Emm, principal security researcher at Kaspersky Lab.
“现在这些信息是公开的,网络罪犯有机会利用这些信息盗取个人身份甚至更多内容,”巴基斯坦实验室首席网络安全研究员大卫埃姆说。
"Unfortunately, once a breach of this nature has been made, there is not much that can be done."
“不幸的是,一旦产生这种性质的漏洞,就已经无法挽回了。”
Cybercriminals use the genuine identities to synthesise new ones, and they tend to act within a month of receiving stolen data, said John Lord, managing director at identity data intelligence firm GBG.
身份数据情报公司GBG总经理约翰洛德说,网络罪犯利用真实身份合成新身份,而且通常在获取数据一个月以内行动。
"Organisations need to take action and use more data, analytical insights and triangulation of multiple-identity proofing techniques to minimise the potential effects of identity theft for both the user and the businesses serving them," he said.
“组织机构需要采取行动,使用更多数据、运用分析洞察力以及多方身份认证的方法来将身份盗窃的影响降到最低,不论是对于用户还是对于服务他们的企业。”他说。
Beauty secrets
美人的秘密
People hoping to join the Beautiful People website submit photographs which are then rated by existing members of the opposite sex for 48 hours.
任何希望加入Beautiful People网站的人需在网站提交个人照片,48小时以内会由网站现有异性成员进行评分。
If they get enough positive votes, they are then granted membership.
只有得到足够多的好评他们才能获得会员身份。
The firm claims more than 700 marriages have taken place between people who met on its website.
这家公司声称超过700多对男女因为在这家网站认识而步入婚姻殿堂。