首页> 社区> 出国考试> 国际趣闻> Facebook员工竟能读取用户密码(双语)

  Facebook 乱七八糟的新闻真是越来越多了,其中最乱的可能就是和用户隐私有关的这些了。

  最近,他们又爆出了一个特大篓子:很多用户的密码竟然是用明文储存的,员工可以随意查看……

  Facebook is currently investigating the extent to which it accidentally logged and stored unencrypted password data, according to security expert Brian Krebs.

  据安全专家布莱恩·克雷布斯称,Facebook目前正在调查其意外记录并存储未加密密码数据的事到底有多严重。

  This is just the latest in a long line of privacy-related scandals Facebook has endured, further calling into question its ability to keep users secure.

  这只是Facebook一长串与隐私有关的丑闻中最新的一件,这让人们进一步质疑其保护用户安全的能力。

  Citing anonymous sources, the report says Facebook employees built applications that stored password data for between 200 million and 600 million users in plain text on internal servers.

  报告引用匿名人士的话说道,Facebook员工开发的应用程序在内部服务器上以纯文本形式为2亿至6亿用户存储密码数据。

  More than 20,000 Facebook employees had searchable access to those accounts. The investigation is ongoing, but already the company has found vulnerable data that dates back to 2012, writes Krebs.

  超过2万名Facebook员工可以搜索访问这些账户。这项调查仍在进行中,但是该公司已经发现了可以追溯到2012年的易受攻击的数据,克雷布斯写道。

  His source says 2,000 developers and engineers turned up plain text passwords within 9 million data queries. The company allegedly does not know how many passwords were exposed, or for how long.

  他的消息来源说,2000名开发人员和工程师在900万个数据查询中发现了纯文本密码。据称,该公司不知道有多少密码被泄露,也不知道泄露了多长时间。

  Facebook has come under scrutiny for the way it handles user data, and with whom it shares that data.

  Facebook因为其处理用户数据的方式,以及与谁共享这些数据而受到了密切关注。

  In September 2018, the company revealed an attack on its network that affected the personal data of some 50 million accounts. More recently, Facebook CEO Mark Zuckerberg vowed to take user privacy more seriously and promised more encryption and other privacy tools.

  2018年9月,该公司披露其网络受到攻击,影响了约5000万个账户的个人数据。最近,Facebook的首席执行官马克·扎克伯格发誓会更加严肃地对待用户隐私,并且承诺提供更多加密和其他保密工具。

  Critics called into question Facebook’s ability to develop a privacy-centered platform–and the consequences of such a move, since encryption could make it more difficult to track toxic content on the platform.

  批评人士对Facebook开发以隐私为中心的平台的能力,以及此举的后果提出质疑,因为加密可能会加大追踪平台上不良内容的难度。

  In a conversation with Krebs, Facebook engineer Scott Renfro said users would not likely have to change their passwords, because there was no evidence that employees searched for passwords explicitly.

  在与克雷布斯的谈话中,Facebook工程师 斯科特·弗兰洛表示,用户不太可能需要更改密码,因为没有证据表明员工会明确地搜索密码。

  In a blog post on password security, Facebook noted that it expects to notify, “hundreds of millions of Facebook Light users, tens of millions of other Facebook users, and tens of thousands of Instagram users.”

  Facebook在一篇关于密码安全的博客文章中指出,它预计会向“数以亿计的Facebook轻用户、数千万计的其他Facebook用户、和数以万计的Instagram用户”发出通知。

0

发表我的评论

发表