美国国家公共电台 NPR Shutdown Makes Government Websites More Vulnerable To Hackers, Experts Say
时间:2019-03-04 作者:英语课 分类:2019年NPR美国国家公共电台1月
LULU GARCIA-NAVARRO, HOST:
Hackers 1 love to try to breach 2 U.S. computer systems. This now may be easier than ever before. With so many IT and cybersecurity workers furloughed by the shutdown, security professionals say government websites are more vulnerable. NPR's Laura Sydell reports.
LAURA SYDELL, BYLINE 3: The Trump 4 administration may like to highlight American manufacturing, but try going to manufacturing.gov. The site has become unusable. You can't access any of the details offered about U.S. manufacturing. According to Netcraft, a British security firm, it's one of dozens of government sites that haven't renewed their security certificates. These certificates are a bit like a driver's license 5 - they prove you are who you say you are. Dan Kaminsky, the chief scientist at the American security firm White Ops explains.
DAN KAMINSKY: You need to know you're really talking to your hospital or to something at the Air Force or wherever. And so there are certificates that make it so you know, OK, this is really the government resource that I'm trying to access and not some bad guy.
SYDELL: In some cases, the lack of a security certificate may just make a site unusable. But Kaminsky says the lack of a certificate also makes it easier for a bad actor to redirect you to a fake site.
KAMINSKY: People might get used to ignoring the browser 6 warnings. Oh, well, you know, it's just the shutdown. And then you think, oh, you're really walking into this site. And you're really not.
SYDELL: Kaminsky offers up a worst case kind of scenario 7. Imagine if the security certificate was down for the Social Security website, and a bad actor sets up a fake one. Someone could go to that site, enter their password and give the hackers access to personal information. The shutdown also means that there are fewer IT staff. For example, according to contingency 8 plans on the White House Office of Management and Budget website, only around 2,000 employees out of more than 3,500 are working at the Cybersecurity and Infrastructure 9 Security Agency. That's one of the agencies leading the nation's cyber defenses. Rob Ragan, a partner in the cybersecurity firm Bishop 10 Fox, says there may be a lot of important tasks that aren't getting done, such as updating software with the latest security patches.
ROB RAGAN: You end up getting buried in a really big backlog 11 of issues that you may never dig yourself out of. And at that point, one of those issues may have been an indicator 12 of a compromise or a breach that may go unnoticed for months or years to come.
SYDELL: Security researchers worry that the shutdown is like putting a red blanket in front of a bull. Nations like Russia, China and Iran could see it as a signal to charge ahead. Ragan says think about the amount of information on government websites that's personal and even classified. And as the shutdown drags on, the likelihood of security lapses 13 increases, says Vikram Thakur, a technical director at the security firm Symantec.
VIKRAM THAKUR: That risk is most definitely going to go up exponentially.
SYDELL: Ironically, Thakur says fewer personnel lowers at least one kind of security risk. One of the most popular hacking 14 schemes is email phishing. That's when hackers send an email to an employee with a link that unleashes 15 malware into the system.
THAKUR: If nobody's opening email and nobody's using the work network, the chances of the success rate for attackers who are using email as their primary mode of attack kind of falls all the way through.
SYDELL: NPR reached out to the cyber division at the Department of Homeland Security for comment but didn't hear back. Democratic aides in the House say they, too, are unable to get information right now about which IT workers are on the job. However, when the shutdown ends, they want to see details. In the event of a future shutdown, Democrats 16 might move to keep IT workers on the job in the name of cybersecurity. Laura Sydell, NPR News.
- They think of viruses that infect an organization from the outside.They envision hackers breaking into their information vaults. 他们考虑来自外部的感染公司的病毒,他们设想黑客侵入到信息宝库中。 来自《简明英汉词典》
- Arranging a meeting with the hackers took weeks againoff-again email exchanges. 通过几星期电子邮件往来安排见面,他们最终同意了。 来自互联网
- We won't have any breach of discipline.我们不允许任何破坏纪律的现象。
- He was sued for breach of contract.他因不履行合同而被起诉。
- His byline was absent as well.他的署名也不见了。
- We wish to thank the author of this article which carries no byline.我们要感谢这篇文章的那位没有署名的作者。
- He was never able to trump up the courage to have a showdown.他始终鼓不起勇气摊牌。
- The coach saved his star player for a trump card.教练保留他的明星选手,作为他的王牌。
- The foreign guest has a license on the person.这个外国客人随身携带执照。
- The driver was arrested for having false license plates on his car.司机由于使用假车牌而被捕。
- View edits in a web browser.在浏览器中看编辑的效果。
- I think my browser has a list of shareware links.我想在浏览器中会有一系列的共享软件链接。
- But the birth scenario is not completely accurate.然而分娩脚本并非完全准确的。
- This is a totally different scenario.这是完全不同的剧本。
- We should be prepared for any contingency.我们应该对任何应急情况有所准备。
- A fire in our warehouse was a contingency that we had not expected.库房的一场大火是我们始料未及的。
- We should step up the development of infrastructure for research.加强科学基础设施建设。
- We should strengthen cultural infrastructure and boost various types of popular culture.加强文化基础设施建设,发展各类群众文化。
- He was a bishop who was held in reverence by all.他是一位被大家都尊敬的主教。
- Two years after his death the bishop was canonised.主教逝世两年后被正式封为圣者。
- It will take a month to clear the backlog of work.要花一个月的时间才能清理完积压的工作。
- Investment is needed to reduce the backlog of repairs.需要投资来減轻积压的维修工作。
- Gold prices are often seen as an indicator of inflation.黃金价格常常被看作是通货膨胀的指标。
- His left-hand indicator is flashing.他左手边的转向灯正在闪亮。
- He sometimes lapses from good behavior. 他有时行为失检。 来自辞典例句
- He could forgive attacks of nerves, panic, bad unexplainable actions, all sorts of lapses. 他可以宽恕突然发作的歇斯底里,惊慌失措,恶劣的莫名其妙的动作,各种各样的失误。 来自辞典例句
- The patient with emphysema is hacking all day. 这个肺气肿病人整天不断地干咳。
- We undertook the task of hacking our way through the jungle. 我们负责在丛林中开路。
- These findings qualify the common view that economic growth unleashes myriad discontents. 这些发现,纠正了一个普遍观点,即经济发展使人们尽情宣泄不满。 来自互联网
- This caster unleashes a storm of electric discharge on the enemy. 法师向敌人释放出一片电火花的风暴。 来自互联网