臉書5000萬用戶信息泄露 扎克伯格發聲明認錯大綱
扎克伯格發聲明認錯
3月22日,臉書創始人兼CEO馬克•扎克伯格打破沉默,在用戶數據泄露醜聞後首次發聲,並承認對數據泄露事件負有責任。
Zuckerberg has admitted that the social network "made mistakes" that led to millions of Facebook users having their data exploited by a political consultancy.
扎克伯格承認臉書“犯了錯誤”,致使上千萬用戶數據被一家政治諮詢公司利用。
扎克伯格發表聲明稱:
"We have a responsibility to protect your data, and if we can't then we don't deserve to serve you. I started Facebook, and at the end of the day I'm responsible for what happens on our platform. "
“我們有責任保護好用戶數據,如果連這都做不到,那麼就不配向用戶提供服務。我創建了臉書,最終我要對發生在這個平臺上的事件負責。”
3月17日,美國《紐約時報》和英國《衛報》發佈報道,曝光臉書上5000萬用戶信息數據被一家名爲“劍橋分析”(Cambridge Analytica)的公司泄露。
“劍橋分析”公司分析數據、建立模型,以預測並影響政治活動中公衆的選擇。這家企業曾經受僱於美國總統唐納德•特朗普的競選團隊和推動英國脫離歐洲聯盟公民投票的“脫歐”陣營。
報道稱,2014年,27萬臉書用戶下載該平臺上一款個性分析測試的應用軟件;應用軟件開發者、英國劍橋大學心理學教授亞歷山大•科根將這些用戶及其臉書好友的數據賣給“劍橋分析”公司。數據包括臉書用戶檔案信息以及他們“點贊”的內容。
Facebook has since changed the amount of data developers can gather in this way, but a whistleblower, Christopher Wylie, says the data of about 50 million people was harvested for Cambridge Analytica before the rules on user consent were tightened up.
此後,臉書更改了開發者可通過此種方式獲取數據的數量,但事件披露者克里斯托夫•懷利稱,“劍橋分析”在“用戶同意”規定收緊之前,就已獲取了約5000萬用戶的數據。
扎克伯格22日發聲明稱,2015年,臉書從《衛報》記者那裏獲知,亞歷山大•科根將其應用程序所獲取的用戶數據共享給了“劍橋分析”。這違背了臉書關於開發者在沒有徵得用戶同意的基礎上不得分享數據的政策。他表示:
“We immediately banned Kogan's app from our platform, and demanded that Kogan and Cambridge Analytica formally certify that they had deleted all improperly acquired data. They provided these certifications.”
“臉書立即在其平臺上禁用科根的應用,並要求科根和“劍橋分析”正式證明他們已經刪除了所有違規獲得的用戶數據。科根和“劍橋分析”提供了相關證據。”
“Last week, we learned from The Guardian, The New York Times and Channel 4 that Cambridge Analytica may not have deleted the data as they had certified.”
“上週,我們從《衛報》、《紐約時報》和第四頻道瞭解到,“劍橋分析”或許並沒有像他們宣稱的那樣刪除數據。”
據英國廣播公司22日報道,“劍橋分析”否認存在任何違規操作。
For its part, Cambridge Analytica says it did delete the data when told to by Facebook.
對此,“劍橋分析”聲稱,他們根據臉書的要求刪除了這些數據。
臉書全球用戶超過20億。涉及如此龐大人羣的隱私信息安全,爆料引起廣泛關注和討論。“刪除臉書”19日成爲社交媒體“推特”上一大話題標籤。政府和評論人士批評臉書無能,呼籲引入法規,加強監管。
US senators have called on Zuckerberg to testify before Congress about how his company will protect users, while consumer watchdog the US Federal Trade Commission has reportedly opened an investigation into Facebook.
美國參議院要求扎克伯格到國會作證,說明臉書將如何保護用戶隱私。據稱,消費者監督機構美國聯邦貿易委員會已對臉書展開調查。
The head of the European Parliament also said it would investigate to see if the data was misused.
歐洲議會主席也表示,將調查泄露數據是否被濫用。
The UK's Information Commissioner Elizabeth Denham is attempting to obtain a warrant to search the offices of Cambridge Analytica.
英國信息專員伊麗莎白•德納姆正在申請對“劍橋分析”公司辦公地的搜查許可。
臉書將採取舉措防止用戶數據被濫用
扎克伯格在聲明中表示,將從這次事件中吸取教訓,進一步鞏固平臺數據的安全性,修復臉書用戶對平臺的信任:
“This was a breach of trust between Kogan, Cambridge Analytica and Facebook. But it was also a breach of trust between Facebook and the people who share their data with us and expect us to protect it. We need to fix that.”
“這次事件破壞了科根、“劍橋分析”和臉書之間的信任,但同時也是對臉書和所有將個人數據分享給我們並認爲我們能保護這些數據的用戶之間信任的一種傷害。我們需要修復它。”
“While this specific issue involving Cambridge Analytica should no longer happen with new apps today, that doesn't change what happened in the past. We will learn from this experience to secure our platform further and make our community safer for everyone going forward.”
“儘管此類特殊事件不會再發生,但這並不能改變過去已經發生的事情,我們將從這次經驗中吸取教訓,進一步鞏固平臺數據的安全性,並且在未來讓我們的社區變得更安全”
他表示,針對此次信息泄露事件,臉書將採取以下措施:
Investigate all Facebook apps that had access to large amounts of information before the platform was changed "to dramatically reduce data access" in 2014
對2014年臉書“關閉數據入口”前,所有臉書平臺上可獲取大量數據的應用程序進行調查
Conduct a full audit of any app with suspicious activity
對所有存在可疑行爲的應用進行全面審查
Ban any developer that did not agree to a thorough audit
禁止服務不同意進行徹底審查的開發者
Ban developers that had misused personally identifiable information, and "tell everyone affected by those apps"
禁止服務違規使用用戶個人身份信息的開發者,並告知“所有受影響的用戶”。
扎克伯格還承諾,爲防範用戶信息被利用,未來臉書將採取的措施包括:
Restrict developers' data access "even further" to prevent other kinds of abuse
對開發者獲取數據進行“更嚴格”的限制,以防止其他形式的濫用
Remove developers' access to a user's data if the user hadn't activated the developer's app for three months
關閉用戶近3個月內未使用過的應用程序獲得用戶數據的權限
Reduce the data that users give an app when they sign in to just name, profile photo, and email address
減少用戶登陸時嚮應用程序提供的數據信息,只限於用戶的名字、頭像照片和電子郵件地址
Require developers to obtain approval and also sign a contract in order to ask anyone for access to their posts or other private data
要求開發者在詢問用戶獲取他們的數據和其他私人信息時,不僅要獲得授權,還需要簽訂合約
