聘請超級黑客、建立去中心化平臺,推特的安全問題有解嗎?

{"type":"doc","content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"本週一,Twitter 宣佈聘請著名黑客“Mudge”(真名爲 Peiter Zatko)擔任安全負責人,並賦予其廣泛的職權以提出結構及實踐層面的改革計劃。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"Zatko 在採訪時表示,他的工作是重點檢查“信息安全性、站點完整性、物理安全性、平臺完整性(涉及平臺濫用與惡意操縱等)以及工程技術等要素。”Zatko 將直接向 Twitter CEO Javk Dorsey 報告,預計將在 45 到 60 天的審查期結束後正式接掌安全管理工作。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"超級黑客救場"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"這一任命背後反映了 Twitter 迫在眉睫的安全問題。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"一年之前,美國政府指控兩名男子曾在此前任職於 Twitter 時爲沙特阿拉伯從事間諜活動,並稱他們曾泄露過沙特阿拉伯批評人士的個人信息。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"今年 7 月,一羣年輕的黑客再次騙過員工,獲得了 Twitter 內部工具的使用權。通過這些工具,他們更改了賬戶設置,並通過美國總統候選人喬·拜登、微軟創始人比爾·蓋茨以及特斯拉首席執行官埃隆·馬斯克在內的 100 多個知名賬戶發出詐騙信息,要求人們對其發送比特幣。黑客在此過程中損失了約 120,000 美元的比特幣,但 Twitter 可能遭受的影響最大。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"前 Facebook 首席安全官、現任斯坦福大學研究員,曾協助對抗大選虛假信息傳播的 Alex Stamos 表示,“今年夏季的數據泄露事件提醒我們,Twitter 必須建立起必要的基礎安全功能,來抵禦那些技術實力遠超這批黑客少年的人可能發起的網絡攻勢。”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"谷歌公司高級產品部門負責人的 Dan Kaufman 表示,“我不知道誰能真正幫助 Twitter 解決安全問題,但他(Zatko)絕對是我首先能夠想到的人選之一。”Dan Kaufman 曾是 Zatko 的上司。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"Zatko 以前是黑客智囊團 Lphpht Heavy Industries 的成員,也是黑客團體 Cult of the Dead Cow 的成員。Cult of the Dead Cow 曾因發佈 Windows 黑客工具而聲名大噪,但他們的目的在於敦促微軟提高產品安全性。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"1998 年,Zatko 就網絡安全問題在參議院委員會作證,並在 2000 年向比爾·克林頓總統介紹了 DDoS 攻擊。2010 年,Zatko 開始擔任美國國防高級研究計劃局(DARPA)的項目經理。Zatko 最近剛剛完成了對電子支付獨角獸企業 Stripe 的安全督導工作。在此之前,他加入了谷歌公司的特殊項目。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"曾在 Zatko 的安全諮詢公司供職的 Stamos 表示,Zatko 的特別之處關於能在有限的資源當中探索出可行的發展道路。“Mudge 之所以能在安全領域闖出名號,靠的就是極強的創造力。”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"Zatko 指出,他將致力於改善 Twitter 上的公開對話機制,未來可能會考慮要求人們先閱讀內容一段時間之後才能參與討論。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"“內容託管的工作將消失”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"在 Twitter 在 7 月份被攻擊後,Piplsay 一項調查顯示,60%的受訪者表示不再信任社交媒體平臺對其數據安全和隱私的保護。11 月總統大選之前,56%的受訪者表示不信任此類平臺可以抵擋選舉前的虛假信息和政治干預。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"中心化社交媒體平臺收到的詬病越來越多。Twitter 曾推出過去中心化的版本,稱爲 Peepeth。它運行在以太坊區塊鏈上。然而,儘管以太坊聯合創始人 Vitalik Buterin 等以太坊社區的關鍵人物都進行了嘗試,但仍沒有成功。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"去年 12 月,Twitter 首席執行官兼聯合創始人傑克·多爾西(Jack Dorsey)發推文稱,該公司將啓動一項名爲“Blue Sky”新平臺,最終目的是在爲社交媒體(包括 Twitter)創建一個去中心化的標準,並以此建立新的社區。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"Dorsey 表示,“Blue Sky”是與 Twitter 完全獨立的非營利組織,該小組的任務是建立人人可用的協議,Twitter 將成爲它的客戶,並在此基礎上建立引人注目的服務和業務。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"據悉,該團隊最初由五名開源架構師、工程師和設計師組成,由 Twitter 的首席技術官 Parag Agrawal 領導。不過隨着該計劃的發展,Twitter 開始爲其尋找新的領導人。Dorsey 透露,該項目可能需要幾年的時間才能完成。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","text":"“區塊鏈和比特幣指向未來,指向內容永遠存在的世界——內容不會消失,並將永久存在於每個節點上。這意味着內容託管的工作將消失。” Dorsey 表示。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"strong"}],"text":"參考鏈接:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"link","attrs":{"href":"https:\/\/www.reuters.com\/article\/idUSKBN27W2MB","title":"","type":null},"content":[{"type":"text","text":"https:\/\/www.reuters.com\/article\/idUSKBN27W2MB"}]}]},{"type":"heading","attrs":{"align":null,"level":5}},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null}}]}
發表評論
所有評論
還沒有人評論,想成為第一個評論的人麼? 請在上方評論欄輸入並且點擊發布.
相關文章