美国有线新闻 CNN Log4J漏洞大流行:《我的世界》已受影响(在线收听

There is a bug in popular computer software and if hackers are able to take advantage of it, they could use that bug to break into computer systems worldwide.

在流行的计算机软件中有一个漏洞,如果黑客能够利用它,他们可以利用这个漏洞闯入世界各地的计算机系统。

The problem was discovered in software known as Log4j.

这个问题是在名为Log4j的软件中发现的。

It's a library that keeps track of error messages in computer programs, but Log4j has a security flaw.

它是一个跟踪计算机程序中的错误信息的库,但是Log4j有一个安全缺陷。

One that could make it possible for hackers to take control of servers, and because the software is so widely used throughout the technology industry, attackers could go after its flaw in countless places.

这会让黑客控制服务器成为可能,而且由于该软件在科技行业的广泛使用,攻击者可能会在无数地方寻找它的缺陷。

This could affect some pretty big companies, Amazon Apple, Google, Linkedin, Tesla, Twitter.

这可能会影响一些大公司,亚马逊,苹果,谷歌,领英,特斯拉,推特。

The game Minecraft has already been affected.

游戏《我的世界》已经受到了影响。

Its owner is Microsoft and it's had to put a patch or fix in place to lock the hackers back out.

它的所有者是微软,它必须安装补丁或修复程序才能将黑客拒之门外。

So now other technology companies and businesses are being told to figure out if they've been affected by the software flaw.

所以现在其他技术公司和企业被告知要弄清楚他们是否受到了这个软件漏洞的影响。

And if so, to quickly take the steps necessary to fix it.

如果受到影响的话,就要迅速采取必要的措施来解决问题。

What makes things more complicated is that computer engineers didn't know about it and therefore prepare for it until news broke late last week that hackers were using the flaw to break into networks.

让事情变得更复杂的是,直到上周晚些时候有消息称,黑客正在利用该漏洞侵入网络,计算机工程师才知道这一点,因此才做了准备。

And in the first 72 hours after the flaw became public, cybersecurity firm Check Point said 800,000 attempts were made to take advantage of it.

在漏洞公开后的72小时内,网络安全公司Check Point表示,试图利用该漏洞的有80万起。

The timing wasn't good either.

时机也不好。

Check Point and the technology website CNET, said with the holidays approaching, information technology specialists maybe taking time off.

Check Point和科技网站CNET表示,随着假期的临近,信息技术专家可能会休假。

That could make it harder for companies to move quickly to patch the flaw.

这可能会让企业更难以迅速采取行动修补漏洞。

Before they started moving to do that, hundreds of millions of devices might have been vulnerable to the bug.

在他们开始这么做之前,数以亿计的设备可能会受到这个漏洞的影响。

What can individual users do? Not much.

个人用户可以做什么? 并不多。

According to CNET, people could just make sure they update their devices, software and applications whenever they're prompted to do it.

根据CNET的说法,每次人们被提示的时候,人们可以确保更新他们的设备、软件和应用程序。

But that's a security step that computer users are encouraged to take anyway.

但无论如何,这是鼓励计算机用户采取的安全措施。

Most of us are walking a tightrope when it comes to protecting ourselves from the hackers, living on the edge thinking oh I won't fall.

当涉及到保护自己免受黑客攻击时,我们大多数人都在走钢丝,生活在边缘,想着哦,我不会掉下去的。

That's why it's so important to protect yourself.

这就是为什么保护自己如此重要。

Just like you do a safety check before you perform a big stunt, you need to do a security check on your computer to make sure you're running the latest version of your operating system.

就像你在表演大特技之前做安全检查一样,你需要对你的计算机进行安全检查,以确保你运行的是最新版本的操作系统。

And you also have to do a backup of your most important files just in case, but if all that security lets you down encrypt your files with or Bitlocker.

为了以防万一,你还必须备份最重要的文件,但如果所有的安全措施都让你失望,就用Bitlocker加密文件。

And to be on solid ground, always run anti-virus software.

为了更稳固,每次都要运行杀毒软件。

I'm going to log to log, but you probably feel like you're going from log in to log in, password to password.

我将登陆两遍,但你可能会觉得你要从登录到登录,密码到密码。

There are so many opportunities for the hackers to get their hands on those.

黑客们有很多机会可以染指这些东西。

So you should use two-step sign in.

所以你应该使用两步登录。

That way every time you have to answer your password, you also get a code sent to your phone.

这样,每次你必须输入你的密码,你也会收到一个发送到你手机上的密码。

So even if the hackers steal your password, they won't get their hands on your Smartphone.

所以,即使黑客窃取了你的密码,他们也不能染指你的智能手机。

  原文地址:http://www.tingroom.com/lesson/cnn2021/540178.html