維基解密曝料 蘋果三星產品成CIA竊聽器
近日,維基解密公佈了大量據稱是中情局(CIA)實施大規模網路攻擊和間諜活動的機密檔案。檔案披露,中情局開發了1000多款惡意軟體系統,包括病毒、特洛伊木馬程式和其他軟體,用來入侵和控制個人電子儀器,使這些電子裝置轉變為隱蔽的竊聽裝置。從手機到電視,蘋果、三星、微軟、谷歌等多家公司的產品成為中情局鎖定的目標。針對此事,幾家相關公司紛紛做出了迴應。
維基解密爆料:中情局將全球智慧裝置變成竊聽器
3月7日,維基解密公佈了大量聲稱是中情局實施大規模網路攻擊和間諜活動的機密檔案。這批檔案代號為“七號保險庫”(Vault 7),據報道第一批公佈的資料“元年”(Year Zero)包含8761份文件和檔案。維基解密稱,這是“有史以來規模最大的中情局機密檔案洩漏(the largest ever publication of confidential documents on the agency)”。
"The 8,761 documents and files were obtained from an isolated, high-security network at the CIA's Center for Cyber Intelligence in Langley, Va," WikiLeaks says.
維基解密稱:“這8761份文件和檔案來自弗吉尼亞州蘭利市中情局網路情報中心內部的一個獨立且高度安全的網路。”
這些檔案顯示,中情局開發了1000多款惡意軟體系統,包括病毒、特洛伊木馬程式和其他軟體,用來入侵和控制個人電子儀器,使這些電子裝置轉變為隱蔽的竊聽裝置。
Apple's iPhone, Google's Android, Microsoft's Windows and Samsung smart TVs were among CIA targets. The TVs can be placed in a "fake off" mode, so the owner falsely believes the TV is off when it is on.
蘋果手機、安卓系統、微軟視窗作業系統和三星智慧電視都成為中情局的目標。他們可以將智慧電視設定為“虛假關閉”模式,這樣使用者會誤以為電視機已經關閉了,但其實它仍然開著。
"In 'fake off' mode the TV operates as a bug, recording conversations in the room and sending them over the Internet to a covert CIA server," WikiLeaks says.
“在這種模式下,電視機會變為一個竊聽器,收錄房間內的對話,並通過網路將其傳送到中情局的祕密伺服器上。”
中情局也討論了入侵汽車和卡車的電子控制系統,以便對這些交通工具進行遙控。
斯諾登稱檔案真實 中情局拒絕置評 FBI已展開調查
對於維基解密此次揭祕的檔案,中情局前僱員愛德華•斯諾登稱,找不到可以懷疑其真實性的地方。
他在推特上寫道:
"Still working through the publication, but what @Wikileaks has here is genuinely a big deal. Looks authentic,"
“我還在研究公佈的檔案,維基解密這次爆料真勁爆,它們看起來是真實的。”
"These (leaks) appear to be very, very serious," House Intelligence Committee Chairman Devin Nunes, R-Calif., told reporters at a briefing. "We are extremely concerned, and we are following it closely."
眾議院情報委員會主席努尼斯對記者表示,這次揭祕“看來非常、非常嚴重”,“我們非常擔心,我們將密切關注”。
The CIA issued a statement declining comment on the "purported" documents.
中情局發表宣告稱拒絕對“所謂”的機密檔案予以評價。
The FBI opened a federal criminal investigation into the WikiLeaks disclosure on Tuseday, Fox News confirmed.
福克斯新聞確認,美國聯邦調查局已經針對維基解密此次曝光的內容展開聯邦刑事調查。
三星、微軟和谷歌迴應CIA監控事件:我們的產品是安全的
蘋果、三星、微軟、谷歌等爆料中涉及的公司紛紛對此事做出迴應,表示其產品是安全的,請客戶放心使用。
蘋果:
蘋果公司當日發表的宣告似乎從側面印證了維基解密此次公開的檔案的真實性。該公司稱,維基解密檔案中所列的問題中有許多已經被蘋果公司解決了。
Apple's statement was the most detailed, saying it had already addressed some of the vulnerabilities.
蘋果公司的宣告最為詳盡,該公司稱已經解決了一些產品漏洞。
"Our products and software are designed to quickly get security updates into the hands of our customers, with nearly 80% of users running the latest version of our operating system." it said.
“我們的產品和軟體可以讓使用者儘快得到最新的安全升級,有近80%的使用者使用最新版本的作業系統。”
"While our initial analysis indicates that many of the issues leaked today were already patched in the latest iOS, we will continue work to rapidly address any identified vulnerabilities."
“初步分析顯示,今天洩露的多數問題已經在最新版本的iOS系統中得到修復,我們會繼續努力以迅速解決所有已知漏洞。”
"We always urge customers to download the latest iOS to make sure they have the most recent security update."
“我們一直敦促使用者下載最新的iOS系統以確保他們進行最新的安全更新。”
三星:
"Protecting consumers' privacy and the security of our devices is a top priority at Samsung," it said. We are aware of the report in question and are urgently looking into the matter."
“保護消費者的隱私和裝置的安全性是三星的首要任務。我們已注意到所提及的報告,並正在緊急調查此事。”
谷歌:
Heather Adkins, Google's Director of Information Security and Privacy, said that it was "confident that security updates and protections in both Chrome and Android already shield users from many of these alleged vulnerabilities," that its analysis of remaining security flaws was ongoing, and that it would "implement any further necessary protections."
谷歌資訊保安及隱私部門主管希瑟•阿德金斯表示他們“自信Chrome和Android的安全更新和保護已經阻止使用者避開多數所謂的漏洞,”谷歌正在分析剩餘的安全漏洞,並將“進一步採取必要的保護措施”。
微軟:
"We are aware of the report and are looking into it," a spokesman from Microsoft said.
微軟公司一位發言人表示:“我們瞭解到這份報告,並正在進行調查。”
Linux:
"Linux is a very widely used operating system, with a huge installed base all around the world, so it is not surprising that state agencies from many countries would target Linux along with the many closed source platforms that they have sought to compromise," Nicko van Someren, chief technology officer at The Linux Foundation told the BBC.
Linux基金會首席技術官尼克•範•索梅倫對英國廣播公司稱:“Linux是一種應用廣泛的作業系統,在全球擁有龐大使用者,因此許多國家政府部門將Linux系統以及其他閉源平臺作為他們入侵的目標,這不足為奇。”
"(But) rapid release cycles enable the open source community to fix vulnerabilities and release those fixes to users faster."
“但快速的釋出週期使得Linux開源平臺能夠迅速修復漏洞,並更迅速地向用戶釋出這些修復程式。”
