維基解密曝料 蘋果三星產品成CIA竊聽器
近日,維基解密公佈了大量據稱是中情局(CIA)實施大規模網絡攻擊和間諜活動的機密文件。文件披露,中情局開發了1000多款惡意軟件系統,包括病毒、特洛伊木馬程式和其他軟件,用來入侵和控制個人電子儀器,使這些電子設備轉變爲隱蔽的竊聽設備。從手機到電視,蘋果、三星、微軟、谷歌等多家公司的產品成爲中情局鎖定的目標。針對此事,幾家相關公司紛紛做出了迴應。
維基解密爆料:中情局將全球智能設備變成竊聽器
3月7日,維基解密公佈了大量聲稱是中情局實施大規模網絡攻擊和間諜活動的機密文件。這批文件代號爲“七號保險庫”(Vault 7),據報道第一批公佈的資料“元年”(Year Zero)包含8761份文檔和文件。維基解密稱,這是“有史以來規模最大的中情局機密文件泄漏(the largest ever publication of confidential documents on the agency)”。
"The 8,761 documents and files were obtained from an isolated, high-security network at the CIA's Center for Cyber Intelligence in Langley, Va," WikiLeaks says.
維基解密稱:“這8761份文檔和文件來自弗吉尼亞州蘭利市中情局網絡情報中心內部的一個獨立且高度安全的網絡。”
這些文件顯示,中情局開發了1000多款惡意軟件系統,包括病毒、特洛伊木馬程式和其他軟件,用來入侵和控制個人電子儀器,使這些電子設備轉變爲隱蔽的竊聽設備。
Apple's iPhone, Google's Android, Microsoft's Windows and Samsung smart TVs were among CIA targets. The TVs can be placed in a "fake off" mode, so the owner falsely believes the TV is off when it is on.
蘋果手機、安卓系統、微軟視窗操作系統和三星智能電視都成爲中情局的目標。他們可以將智能電視設置爲“虛假關閉”模式,這樣用戶會誤以爲電視機已經關閉了,但其實它仍然開着。
"In 'fake off' mode the TV operates as a bug, recording conversations in the room and sending them over the Internet to a covert CIA server," WikiLeaks says.
“在這種模式下,電視機會變爲一個竊聽器,收錄房間內的對話,並通過網絡將其傳送到中情局的祕密服務器上。”
中情局也討論了入侵汽車和卡車的電子控制系統,以便對這些交通工具進行遙控。
斯諾登稱文件真實 中情局拒絕置評 FBI已展開調查
對於維基解密此次揭祕的文件,中情局前僱員愛德華•斯諾登稱,找不到可以懷疑其真實性的地方。
他在推特上寫道:
"Still working through the publication, but what @Wikileaks has here is genuinely a big deal. Looks authentic,"
“我還在研究公佈的文件,維基解密這次爆料真勁爆,它們看起來是真實的。”
"These (leaks) appear to be very, very serious," House Intelligence Committee Chairman Devin Nunes, R-Calif., told reporters at a briefing. "We are extremely concerned, and we are following it closely."
衆議院情報委員會主席努尼斯對記者表示,這次揭祕“看來非常、非常嚴重”,“我們非常擔心,我們將密切關注”。
The CIA issued a statement declining comment on the "purported" documents.
中情局發表聲明稱拒絕對“所謂”的機密文件予以評價。
The FBI opened a federal criminal investigation into the WikiLeaks disclosure on Tuseday, Fox News confirmed.
福克斯新聞確認,美國聯邦調查局已經針對維基解密此次曝光的內容展開聯邦刑事調查。
三星、微軟和谷歌迴應CIA監控事件:我們的產品是安全的
蘋果、三星、微軟、谷歌等爆料中涉及的公司紛紛對此事做出迴應,表示其產品是安全的,請客戶放心使用。
蘋果:
蘋果公司當日發表的聲明似乎從側面印證了維基解密此次公開的文件的真實性。該公司稱,維基解密文件中所列的問題中有許多已經被蘋果公司解決了。
Apple's statement was the most detailed, saying it had already addressed some of the vulnerabilities.
蘋果公司的聲明最爲詳盡,該公司稱已經解決了一些產品漏洞。
"Our products and software are designed to quickly get security updates into the hands of our customers, with nearly 80% of users running the latest version of our operating system." it said.
“我們的產品和軟件可以讓用戶儘快得到最新的安全升級,有近80%的用戶使用最新版本的操作系統。”
"While our initial analysis indicates that many of the issues leaked today were already patched in the latest iOS, we will continue work to rapidly address any identified vulnerabilities."
“初步分析顯示,今天泄露的多數問題已經在最新版本的iOS系統中得到修復,我們會繼續努力以迅速解決所有已知漏洞。”
"We always urge customers to download the latest iOS to make sure they have the most recent security update."
“我們一直敦促用戶下載最新的iOS系統以確保他們進行最新的安全更新。”
三星:
"Protecting consumers' privacy and the security of our devices is a top priority at Samsung," it said. We are aware of the report in question and are urgently looking into the matter."
“保護消費者的隱私和設備的安全性是三星的首要任務。我們已注意到所提及的報告,並正在緊急調查此事。”
谷歌:
Heather Adkins, Google's Director of Information Security and Privacy, said that it was "confident that security updates and protections in both Chrome and Android already shield users from many of these alleged vulnerabilities," that its analysis of remaining security flaws was ongoing, and that it would "implement any further necessary protections."
谷歌信息安全及隱私部門主管希瑟•阿德金斯表示他們“自信Chrome和Android的安全更新和保護已經阻止用戶避開多數所謂的漏洞,”谷歌正在分析剩餘的安全漏洞,並將“進一步採取必要的保護措施”。
微軟:
"We are aware of the report and are looking into it," a spokesman from Microsoft said.
微軟公司一位發言人表示:“我們瞭解到這份報告,並正在進行調查。”
Linux:
"Linux is a very widely used operating system, with a huge installed base all around the world, so it is not surprising that state agencies from many countries would target Linux along with the many closed source platforms that they have sought to compromise," Nicko van Someren, chief technology officer at The Linux Foundation told the BBC.
Linux基金會首席技術官尼克•範•索梅倫對英國廣播公司稱:“Linux是一種應用廣泛的操作系統,在全球擁有龐大用戶,因此許多國家政府部門將Linux系統以及其他閉源平臺作爲他們入侵的目標,這不足爲奇。”
"(But) rapid release cycles enable the open source community to fix vulnerabilities and release those fixes to users faster."
“但快速的發佈週期使得Linux開源平臺能夠迅速修復漏洞,並更迅速地向用戶發佈這些修復程序。”
