黑客市场正趋于复杂化成熟化
文章来源:未知 文章作者:enread 发布时间:2014-03-26 07:28 字体: [ ]  进入论坛
(单词翻译:双击或拖选)
Black and gray markets for computer hacking1 tools, services and byproducts such as stolen credit card numbers continue to expand, creating an increasing threat to businesses, governments and individuals, according to a new RAND Corporation study. One dramatic example is the December 2013 breach2 of retail3 giant Target, in which data from approximately 40 million credit cards and 70 million user accounts was hijacked4. Within days, that data appeared -- available for purchase -- on black market websites.
 
"Hacking used to be an activity that was mainly carried out by individuals working alone, but over the last 15 years the world of hacking has become more organized and reliable," said Lillian Ablon, lead author of the study and an information systems analyst5 at RAND, a nonprofit research organization. "In certain respects, cybercrime can be more lucrative6(赚钱的) and easier to carry out than the illegal drug trade."
 
The growth in cybercrime has been assisted by sophisticated and specialized7 markets that freely deal in the tools and the spoils of cybercrime. These include items such as exploit kits8 (software tools that can help create, distribute, and manage attacks on systems), botnets (a group of compromised computers remotely controlled by a central authority that can be used to send spam or flood websites), as-a-service models (hacking for hire) and the fruits of cybercrime, including stolen credit card numbers and compromised hosts.
 
In the wake of several highly-publicized arrests and an increase in the ability of law enforcement to take down some markets, access to many of these black markets has become more restricted, with cybercriminals vetting9 potential partners before offering access to the upper levels. That said, once in, there is very low barrier to entry to participate and profit, according to the report.
 
RAND researchers conducted more than two dozen interviews with cybersecurity and related experts, including academics, security researchers, news reporters, security vendors10 and law enforcement officials. The study outlines the characteristics of the cybercrime black markets, with additional consideration given to botnets and their role in the black market, and "zero-day" vulnerabilities (software bugs11 that are unknown to vendors and without a software patch). Researchers also examine various projections12 and predictions for how the black market may evolve.
 
What makes these black markets notable is their resilience and sophistication, Ablon said. Even as consumers and businesses have fortified13 their activities in reaction to security threats, cybercriminals have adapted. An increase in law enforcement arrests has resulted in hackers14 going after bigger targets. More and more crimes have a digital component15.
 
The RAND study says there will be more activity in "darknets," more checking and vetting of participants, more use of crypto-currencies such as Bitcoin, greater anonymity16 capabilities17 in malware, and more attention to encrypting and protecting communications and transactions. Helped by such markets, the ability to attack will likely outpace the ability to defend.
 
Hyper-connectivity will create more points of presence for attack and exploitation so that crime increasingly will have a networked or cyber component, creating a wider range of opportunities for black markets. Exploitations of social networks and mobile devices will continue to grow. There will be more hacking-for-hire, as-a-service offerings and cybercrime brokers18.
 
However, experts disagree on who will be the most affected19 by the growth of the black market, what products will be on the rise and which types of attacks will be more prevalent, Ablon said.


点击收听单词发音收听单词发音  

1 hacking KrIzgm     
n.非法访问计算机系统和数据库的活动
参考例句:
  • The patient with emphysema is hacking all day. 这个肺气肿病人整天不断地干咳。
  • We undertook the task of hacking our way through the jungle. 我们负责在丛林中开路。
2 breach 2sgzw     
n.违反,不履行;破裂;vt.冲破,攻破
参考例句:
  • We won't have any breach of discipline.我们不允许任何破坏纪律的现象。
  • He was sued for breach of contract.他因不履行合同而被起诉。
3 retail VWoxC     
v./n.零售;adv.以零售价格
参考例句:
  • In this shop they retail tobacco and sweets.这家铺子零售香烟和糖果。
  • These shoes retail at 10 yuan a pair.这些鞋子零卖10元一双。
4 hijacked 54f3e68c506e45e75f9a155a27738c2f     
劫持( hijack的过去式和过去分词 ); 绑架; 拦路抢劫; 操纵(会议等,以推销自己的意图)
参考例句:
  • The plane was hijacked by two armed men on a flight from London to Rome. 飞机在从伦敦飞往罗马途中遭到两名持械男子劫持。
  • The plane was hijacked soon after it took off. 那架飞机起飞后不久被劫持了。
5 analyst gw7zn     
n.分析家,化验员;心理分析学家
参考例句:
  • What can you contribute to the position of a market analyst?你有什么技能可有助于市场分析员的职务?
  • The analyst is required to interpolate values between standards.分析人员需要在这些标准中插入一些值。
6 lucrative dADxp     
adj.赚钱的,可获利的
参考例句:
  • He decided to turn his hobby into a lucrative sideline.他决定把自己的爱好变成赚钱的副业。
  • It was not a lucrative profession.那是一个没有多少油水的职业。
7 specialized Chuzwe     
adj.专门的,专业化的
参考例句:
  • There are many specialized agencies in the United Nations.联合国有许多专门机构。
  • These tools are very specialized.这些是专用工具。
8 kits e16d4ffa0f9467cd8d2db7d706f0a7a5     
衣物和装备( kit的名词复数 ); 成套用品; 配套元件
参考例句:
  • Keep your kits closed and locked when not in use. 不用的话把你的装备都锁好放好。
  • Gifts Articles, Toy and Games, Wooden Toys, Puzzles, Craft Kits. 采购产品礼品,玩具和游戏,木制的玩具,智力玩具,手艺装备。
9 vetting a80d8b6e330219174b308e2937edab43     
n.数据检查[核对,核实]v.审查(某人过去的记录、资格等)( vet的现在分词 );调查;检查;诊疗
参考例句:
  • Scripts had to be submitted to Ministry of Information officials for vetting. 必须把脚本提交给信息部官员审查。 来自互联网
  • Their purpose in clicking deeper into a site is one of vetting. 他们深入点击网站的目的是一种诊疗。 来自互联网
10 vendors 2bc28e228525b75e14c07dbc14850c34     
n.摊贩( vendor的名词复数 );小贩;(房屋等的)卖主;卖方
参考例句:
  • The vendors were gazundered at the last minute. 卖主在最后一刻被要求降低房价。
  • At the same time, interface standards also benefIt'software vendors. 同时,界面标准也有利于软件开发商。 来自About Face 3交互设计精髓
11 bugs e3255bae220613022d67e26d2e4fa689     
adj.疯狂的,发疯的n.窃听器( bug的名词复数 );病菌;虫子;[计算机](制作软件程序所产生的意料不到的)错误
参考例句:
  • All programs have bugs and need endless refinement. 所有的程序都有漏洞,都需要不断改进。 来自《简明英汉词典》
  • The sacks of rice were swarming with bugs. 一袋袋的米里长满了虫子。 来自《简明英汉词典》
12 projections 7275a1e8ba6325ecfc03ebb61a4b9192     
预测( projection的名词复数 ); 投影; 投掷; 突起物
参考例句:
  • Their sales projections are a total thumbsuck. 他们的销售量预测纯属估计。
  • The council has revised its projections of funding requirements upwards. 地方议会调高了对资金需求的预测。
13 fortified fortified     
adj. 加强的
参考例句:
  • He fortified himself against the cold with a hot drink. 他喝了一杯热饮御寒。
  • The enemy drew back into a few fortified points. 敌人收缩到几个据点里。
14 hackers dc5d6e5c0ffd6d1cd249286ced098382     
n.计算机迷( hacker的名词复数 );私自存取或篡改电脑资料者,电脑“黑客”
参考例句:
  • They think of viruses that infect an organization from the outside.They envision hackers breaking into their information vaults. 他们考虑来自外部的感染公司的病毒,他们设想黑客侵入到信息宝库中。 来自《简明英汉词典》
  • Arranging a meeting with the hackers took weeks againoff-again email exchanges. 通过几星期电子邮件往来安排见面,他们最终同意了。 来自互联网
15 component epSzv     
n.组成部分,成分,元件;adj.组成的,合成的
参考例句:
  • Each component is carefully checked before assembly.每个零件在装配前都经过仔细检查。
  • Blade and handle are the component parts of a knife.刀身和刀柄是一把刀的组成部分。
16 anonymity IMbyq     
n.the condition of being anonymous
参考例句:
  • Names of people in the book were changed to preserve anonymity. 为了姓名保密,书中的人用的都是化名。
  • Our company promises to preserve the anonymity of all its clients. 我们公司承诺不公开客户的姓名。
17 capabilities f7b11037f2050959293aafb493b7653c     
n.能力( capability的名词复数 );可能;容量;[复数]潜在能力
参考例句:
  • He was somewhat pompous and had a high opinion of his own capabilities. 他有点自大,自视甚高。 来自辞典例句
  • Some programmers use tabs to break complex product capabilities into smaller chunks. 一些程序员认为,标签可以将复杂的功能分为每个窗格一组简单的功能。 来自About Face 3交互设计精髓
18 brokers 75d889d756f7fbea24ad402e01a65b20     
n.(股票、外币等)经纪人( broker的名词复数 );中间人;代理商;(订合同的)中人v.做掮客(或中人等)( broker的第三人称单数 );作为权力经纪人进行谈判;以中间人等身份安排…
参考例句:
  • The firm in question was Alsbery & Co., whiskey brokers. 那家公司叫阿尔斯伯里公司,经销威士忌。 来自英汉文学 - 嘉莉妹妹
  • From time to time a telephone would ring in the brokers' offices. 那两排经纪人房间里不时响着叮令的电话。 来自子夜部分
19 affected TzUzg0     
adj.不自然的,假装的
参考例句:
  • She showed an affected interest in our subject.她假装对我们的课题感到兴趣。
  • His manners are affected.他的态度不自然。
TAG标签: markets security hacking
发表评论
请自觉遵守互联网相关的政策法规,严禁发布色情、暴力、反动的言论。
评价:
表情:
验证码:点击我更换图片