TEDGlobal 2011
Misha Glenny: Hire the hackers!
美莎·格伦尼:雇佣黑客!
Filmed:
Readability: 5.1
1,438,902 views
尽管投入到网络安全的资金有数十亿之多,但其中一个问题却在很大程度上被忽视了:到底是谁编写了恶意代码?犯罪研究家美莎·格伦尼向我们介绍了全球范围一些被定罪的恶意代码案例,并发现了令人震惊的结论。
Misha Glenny - Underworld investigator
Journalist Misha Glenny leaves no stone unturned (and no failed state unexamined) in his excavation of criminal globalization. Full bio
Journalist Misha Glenny leaves no stone unturned (and no failed state unexamined) in his excavation of criminal globalization. Full bio
Double-click the English transcript below to play the video.
00:15
Now this is a very un-TED-like thing to do,
0
0
3000
这是一件非常不像TED风格的事情
00:18
but let's kick off the afternoon
1
3000
3000
但是让我们用一条来自
00:21
with a message
2
6000
2000
神秘赞助商
00:23
from a mystery sponsor.
3
8000
3000
的信息开始这个下午
00:26
Anonymous: Dear Fox News,
4
11000
2000
匿名:亲爱的福克斯新闻
00:28
it has come to our unfortunate attention
5
13000
3000
很不幸得引起了我们的注意
00:31
that both the name and nature of Anonymous
6
16000
2000
所有匿名者的名称和性质
00:33
has been ravaged.
7
18000
2000
已经被破坏
00:35
We are everyone. We are no one.
8
20000
3000
我们无所不在
00:38
We are anonymous. We are legion.
9
23000
3000
我们没有姓名,我们代表着大众
00:41
We do not forgive. We do not forget.
10
26000
3000
我们不会原谅 我们不会遗忘
00:44
We are but the base of chaos.
11
29000
3000
我们只是混乱的根源
00:49
Misha Glenny: Anonymous, ladies and gentlemen --
12
34000
3000
美莎·格伦尼:匿名者,女士们先生们--
00:52
a sophisticated group
13
37000
2000
一个老练的
00:54
of politically motivated hackers
14
39000
2000
有政治动机的黑客团体
00:56
who have emerged in 2011.
15
41000
3000
出现于2011年
00:59
And they're pretty scary.
16
44000
2000
他们非常可怕
01:01
You never know when they're going to attack next,
17
46000
3000
你不会知道他们下次什么时候发动攻击
01:04
who or what the consequences will be.
18
49000
3000
谁是受害者或后果是什么
01:07
But interestingly,
19
52000
2000
可有趣的是
01:09
they have a sense of humor.
20
54000
3000
他们很有幽默感
01:12
These guys hacked into Fox News' Twitter account
21
57000
4000
他们盗取福克斯新闻的推特帐号
01:16
to announce President Obama's assassination.
22
61000
4000
并宣布奥巴马总统被暗杀
01:20
Now you can imagine the panic that would have generated
23
65000
3000
你可以想象当时在福克斯新闻编辑室内
01:23
in the newsroom at Fox.
24
68000
2000
有多么的恐慌
01:25
"What do we do now?
25
70000
2000
“我们现在该怎么办?
01:27
Put on a black armband, or crack open the champagne?"
26
72000
3000
是该臂缠黑纱,还是开香槟庆祝?”
01:30
(Laughter)
27
75000
2000
(笑声)
01:32
And of course, who could escape the irony
28
77000
4000
当然,谁又能逃避默多克新闻集团的一员
01:36
of a member of Rupert Murdoch's News Corp.
29
81000
3000
竟成为了黑客的受害者
01:39
being a victim of hacking for a change.
30
84000
3000
这么具有讽刺意味的转变
01:42
(Laughter)
31
87000
2000
(笑声)
01:44
(Applause)
32
89000
4000
(掌声)
01:48
Sometimes you turn on the news
33
93000
3000
有时你打开新闻节目
01:51
and you say, "Is there anyone left to hack?"
34
96000
2000
你会说“还有谁没被黑吗?”
01:53
Sony Playstation Network -- done,
35
98000
3000
索尼游戏平台网络--被侵入
01:56
the government of Turkey -- tick,
36
101000
2000
土耳其政府--被侵入
01:58
Britain's Serious Organized Crime Agency -- a breeze,
37
103000
3000
英国严重有组织犯罪署--易如反掌
02:01
the CIA -- falling off a log.
38
106000
2000
美国中央情报局--轻而易举被侵入
02:03
In fact, a friend of mine from the security industry
39
108000
2000
事实上,我的一位安保行业的朋友
02:05
told me the other day
40
110000
2000
不久前告诉我
02:07
that there are two types of companies in the world:
41
112000
3000
世界上有两种公司:
02:10
those that know they've been hacked, and those that don't.
42
115000
3000
已知被侵入的和还不知道已被侵入的
02:13
I mean three companies
43
118000
3000
我知道有三家
02:16
providing cybersecurity services to the FBI
44
121000
4000
为美国联邦调查局提供网络安全服务的公司
02:20
have been hacked.
45
125000
2000
已经被侵入了
02:22
Is nothing sacred anymore, for heaven's sake?
46
127000
3000
天啊,难道已经没有什么是不可侵入的了吗?
02:25
Anyway, this mysterious group Anonymous --
47
130000
2000
总之,这个神秘的匿名组织--
02:27
and they would say this themselves --
48
132000
2000
他们自己这么称呼自己--
02:29
they are providing a service
49
134000
2000
他们提供一种服务
02:31
by demonstrating how useless companies are
50
136000
4000
来证明企业在保护我们的数据上
02:35
at protecting our data.
51
140000
3000
是多么的没用
02:38
But there is also a very serious aspect to Anonymous --
52
143000
3000
但对于匿名者还是有一个非常严重方面--
02:41
they are ideologically driven.
53
146000
3000
他们是基于意识形态的
02:44
They claim that they are battling
54
149000
2000
他们声称他们正在和卑鄙的
02:46
a dastardly conspiracy.
55
151000
3000
阴谋集团斗争
02:49
They say that governments are trying
56
154000
2000
他们说政府正试图
02:51
to take over the Internet and control it,
57
156000
3000
接管网络并加以控制
02:54
and that they, Anonymous,
58
159000
2000
同时他们,匿名者们
02:56
are the authentic voice of resistance --
59
161000
3000
才是反抗的可信的声音--
02:59
be it against Middle Eastern dictatorships,
60
164000
2000
他们反对中东独裁者
03:01
against global media corporations,
61
166000
3000
反对全球媒体
03:04
or against intelligence agencies,
62
169000
2000
或是反对情报机构
03:06
or whoever it is.
63
171000
2000
或是其他等等
03:08
And their politics are not entirely unattractive.
64
173000
4000
他们的政治理念并不是完全没有吸引力
03:12
Okay, they're a little inchoate.
65
177000
3000
好,他们只是刚刚开始
03:15
There's a strong whiff
66
180000
2000
他们大力鼓吹
03:17
of half-baked anarchism about them.
67
182000
3000
还不成熟的无政府主义
03:20
But one thing is true:
68
185000
2000
但有一个事实
03:22
we are at the beginning
69
187000
2000
我们正处在控制网络
03:24
of a mighty struggle
70
189000
2000
这场强势斗争的
03:26
for control of the Internet.
71
191000
3000
初始阶段
03:29
The Web links everything,
72
194000
2000
网络连接着一切
03:31
and very soon
73
196000
2000
且不久的将来
03:33
it will mediate most human activity.
74
198000
2000
大多数人类活动都离不开网络
03:35
Because the Internet has fashioned
75
200000
2000
因为网络已经为旧时代的进退两难
03:37
a new and complicated environment
76
202000
2000
塑造了一个全新的复杂环境
03:39
for an old-age dilemma
77
204000
3000
使得对安全的需求
03:42
that pits the demands of security
78
207000
3000
添加了
03:45
with the desire for freedom.
79
210000
3000
对于自由的渴望
03:48
Now this is a very complicated struggle.
80
213000
4000
如今这是个非常复杂的斗争
03:52
And unfortunately, for mortals like you and me,
81
217000
3000
遗憾的是,对于像你我一样的凡人
03:55
we probably can't understand it very well.
82
220000
3000
也许不会对此了解很多
03:58
Nonetheless,
83
223000
2000
尽管如此
04:00
in an unexpected attack of hubris
84
225000
2000
在数年前一次意外的
04:02
a couple of years ago,
85
227000
2000
狂妄的攻击下
04:04
I decided I would try and do that.
86
229000
3000
我决定试着去做些事情
04:07
And I sort of get it.
87
232000
4000
我获得了些成果
04:11
These were the various things that I was looking at
88
236000
2000
这些是我之前试着去弄懂的
04:13
as I was trying to understand it.
89
238000
2000
不同的事情
04:15
But in order to try and explain the whole thing,
90
240000
3000
但为了解释清整件事情
04:18
I would need another 18 minutes or so to do it,
91
243000
3000
我需要再一个18分钟
04:21
so you're just going to have to take it on trust from me on this occasion,
92
246000
5000
所以在这种情况下你要对我信任
04:26
and let me assure you that all of these issues
93
251000
2000
我向大家保证所有的这些事情
04:28
are involved in cybersecurity and control of the Internet
94
253000
3000
都与网络安全和对网络的控制多多少少
04:31
one way or the other,
95
256000
2000
有关系
04:33
but in a configuration
96
258000
2000
但是
04:35
that even Stephen Hawking would probably have difficulty
97
260000
3000
即使是史蒂夫·霍金都有困难
04:38
trying to get his head around.
98
263000
3000
去转动他的头部
04:41
So there you are.
99
266000
2000
所有就在那
04:43
And as you see, in the middle,
100
268000
2000
就像大家看到的,在中间
04:45
there is our old friend, the hacker.
101
270000
2000
有一位我们的老朋友, 黑客
04:47
The hacker is absolutely central
102
272000
3000
黑客在许多政治、
04:50
to many of the political, social
103
275000
2000
社会以及经济事件中
04:52
and economic issues affecting the Net.
104
277000
3000
都处于绝对重要的位置
04:55
And so I thought to myself,
105
280000
3000
所以我心想
04:58
"Well, these are the guys who I want to talk to."
106
283000
3000
“好,他们就是我要聊聊的家伙”
05:01
And what do you know,
107
286000
3000
你知道吗
05:04
nobody else does talk to the hackers.
108
289000
2000
没有其他人真正跟黑客交流过
05:06
They're completely anonymous, as it were.
109
291000
3000
他们完全是匿名的
05:09
So despite the fact
110
294000
2000
尽管现实中
05:11
that we are beginning to pour billions,
111
296000
3000
我们开始花费了数十亿
05:14
hundreds of billions of dollars,
112
299000
2000
数千亿美元
05:16
into cybersecurity --
113
301000
3000
在网络安全上--
05:19
for the most extraordinary technical solutions --
114
304000
4000
花费在那些最出色的技术解决方案上--
05:23
no one wants to talk
115
308000
2000
却没有人希望和
05:25
to these guys, the hackers,
116
310000
2000
那些从事各行各业
05:27
who are doing everything.
117
312000
3000
的黑客们聊聊
05:30
Instead, we prefer these really dazzling technological solutions,
118
315000
5000
反之,他们更青睐于这些着实让人眼花缭乱
05:35
which cost a huge amount of money.
119
320000
3000
且成本巨大的解决方案上
05:38
And so nothing is going into the hackers.
120
323000
3000
从没人试着走近黑客的生活
05:41
Well, I say nothing,
121
326000
2000
我说的是没有人
05:43
but actually there is one teeny weeny little research unit
122
328000
4000
但事实上,还是有一个非常小的研究机构
05:47
in Turin, Italy
123
332000
2000
在意大利都灵
05:49
called the Hackers Profiling Project.
124
334000
3000
叫做黑客分析项目
05:52
And they are doing some fantastic research
125
337000
3000
他们从事着非常棒的研究
05:55
into the characteristics,
126
340000
2000
关于黑客特征
05:57
into the abilities
127
342000
2000
才能
05:59
and the socialization of hackers.
128
344000
2000
和社会化方面
06:01
But because they're a U.N. operation,
129
346000
2000
但因为他们是联合国运作的
06:03
maybe that's why governments and corporations
130
348000
2000
所以政府和企业
06:05
are not that interested in them.
131
350000
2000
对他们兴趣不大
06:07
Because it's a U.N. operation,
132
352000
2000
因为联合国的项目
06:09
of course, it lacks funding.
133
354000
3000
当然,就缺乏资金
06:12
But I think they're doing very important work.
134
357000
3000
但是我认为他们正做着非常重要的工作
06:15
Because where we have a surplus of technology
135
360000
4000
因为在网络安全行业
06:19
in the cybersecurity industry,
136
364000
3000
其实是科技过剩的
06:22
we have a definite lack of --
137
367000
3000
我们实际缺乏的是--
06:25
call me old-fashioned --
138
370000
2000
你可以说我是保守派--
06:27
human intelligence.
139
372000
2000
人类的智慧
06:29
Now, so far I've mentioned
140
374000
2000
我到现在为止所提到的
06:31
the hackers Anonymous
141
376000
2000
匿名的黑客
06:33
who are a politically motivated hacking group.
142
378000
3000
都是政治导向型的黑客组织
06:36
Of course, the criminal justice system
143
381000
2000
当然,刑事司法系统
06:38
treats them as common old garden criminals.
144
383000
2000
把它们视为犯罪分子
06:40
But interestingly,
145
385000
2000
但有趣的是
06:42
Anonymous does not make use of its hacked information
146
387000
2000
匿名者从来不用他们所盗取的信息
06:44
for financial gain.
147
389000
2000
进行营利
06:46
But what about the real cybercriminals?
148
391000
4000
但是真正的网络罪犯又是怎样的呢?
06:50
Well real organized crime on the Internet
149
395000
3000
真正的有组织网络犯罪要
06:53
goes back about 10 years
150
398000
2000
追溯到10年前
06:55
when a group of gifted Ukrainian hackers
151
400000
5000
当乌克兰一个天才黑客组织
07:00
developed a website,
152
405000
2000
开发了一个网站
07:02
which led to the industrialization
153
407000
2000
形成了网络犯罪的
07:04
of cybercrime.
154
409000
3000
产业化
07:07
Welcome to the now forgotten realm of CarderPlanet.
155
412000
3000
欢迎来到已经被遗忘的了CarderPlanet王国
07:13
This is how they were advertising themselves
156
418000
2000
10年前在网络上他们就是这样
07:15
a decade ago on the Net.
157
420000
3000
宣传自己的
07:18
Now CarderPlanet was very interesting.
158
423000
2000
现在CarderPlanet变得非常有趣
07:20
Cybercriminals would go there
159
425000
2000
网络罪犯们登录网站
07:22
to buy and sell stolen credit card details,
160
427000
3000
去买卖盗来的信用卡信息
07:25
to exchange information
161
430000
2000
来换取新的
07:27
about new malware that was out there.
162
432000
3000
恶意软件的信息
07:30
And remember, this is a time
163
435000
2000
记住,这是第一次
07:32
when we're seeing for the first time
164
437000
2000
我们看到
07:34
so-called off-the-shelf malware.
165
439000
2000
所谓现成的恶意软件
07:36
This is ready for use, out-of-the-box stuff,
166
441000
3000
这已经是成品了,即装即用
07:39
which you can deploy
167
444000
2000
即使你不是一个
07:41
even if you're not a terribly sophisticated hacker.
168
446000
4000
资深的黑客 你照样可以应用
07:45
And so CarderPlanet became a sort of supermarket
169
450000
3000
于是CarderPlanet成为了一个有点像网络罪犯超市
07:48
for cybercriminals.
170
453000
2000
的地方
07:50
And its creators
171
455000
2000
它的创造者
07:52
were incredibly smart and entrepreneurial,
172
457000
2000
非常聪明且有企业家头脑
07:54
because they were faced
173
459000
2000
因为他们作为网络罪犯
07:56
with one enormous challenge as cybercriminals.
174
461000
3000
面临着一个巨大的挑战
07:59
And that challenge is:
175
464000
2000
这个挑战是:
08:01
How do you do business,
176
466000
2000
如何去经营
08:03
how do you trust
177
468000
2000
你怎么去信任
08:05
somebody on the Web who you want to do business with
178
470000
2000
在网络上你想与之交易的人
08:07
when you know that they're a criminal?
179
472000
3000
当你明知他们就是罪犯的时候?
08:10
(Laughter)
180
475000
2000
(笑声)
08:12
It's axiomatic that they're dodgy,
181
477000
2000
不说也知道他们都很狡猾
08:14
and they're going to want to try and rip you off.
182
479000
3000
而且试图诈骗你
08:17
So the family, as the inner core of CarderPlanet was known,
183
482000
3000
CarderPlanet 的内部核心人员对此很清楚
08:20
came up with this brilliant idea
184
485000
2000
于是想出了个很棒的点子
08:22
called the escrow system.
185
487000
2000
叫做托管系统
08:24
They appointed an officer
186
489000
3000
他们任命一位职员
08:27
who would mediate between the vendor and the purchaser.
187
492000
3000
负责在买卖双方进行协调
08:30
The vendor, say, had stolen credit card details;
188
495000
3000
卖方说,有一个盗来的信用卡信息
08:33
the purchaser wanted to get a hold of them.
189
498000
3000
买方如果希望买
08:36
The purchaser would send the administrative officer
190
501000
3000
需要把出价发给
08:39
some dollars digitally,
191
504000
2000
管理员
08:41
and the vendor would sell the stolen credit card details.
192
506000
3000
同时卖方把盗来的信用卡信息发给管理员
08:44
And the officer would then verify
193
509000
3000
管理员然后进行核实
08:47
if the stolen credit card worked.
194
512000
3000
看看信用卡信息是否有效
08:50
And if they did,
195
515000
2000
如果真实有效
08:52
he then passed on the money to the vendor
196
517000
2000
他就会把钱转给卖方
08:54
and the stolen credit card details to the purchaser.
197
519000
3000
同时把信用卡信息转给买方
08:57
And it was this
198
522000
2000
这是
08:59
which completely revolutionized cybercrime on the Web.
199
524000
5000
网络犯罪彻底的变革
09:04
And after that, it just went wild.
200
529000
2000
从那之后,网络犯罪变的肆无忌惮
09:06
We had a champagne decade
201
531000
2000
对于那些我们称之为Carders的人
09:08
for people who we know as Carders.
202
533000
3000
拥有那黄金十年
09:11
Now I spoke to one of these Carders
203
536000
2000
现在我和他们之中一员交谈
09:13
who we'll call RedBrigade --
204
538000
2000
我们叫他红军 --
09:15
although that wasn't even his proper nickname --
205
540000
2000
虽然那绰号不完全适合他--
09:17
but I promised I wouldn't reveal who he was.
206
542000
2000
但是我许诺了不会说出他的身份
09:19
And he explained to me how in 2003 and 2004
207
544000
3000
他还向我解释了他是如何在2003和2004年
09:22
he would go on sprees in New York,
208
547000
3000
在纽约狂欢的时候
09:25
taking out $10,000 from an ATM here,
209
550000
3000
用复制的假信用卡
09:28
$30,000 from an ATM there,
210
553000
3000
从一台ATM机上取出1万美元
09:31
using cloned credit cards.
211
556000
3000
另一台上取出3万美元
09:34
He was making, on average a week,
212
559000
3000
他平均每周盗取
09:37
$150,000 --
213
562000
3000
15万美元--
09:40
tax free of course.
214
565000
2000
当然是免税的
09:42
And he said
215
567000
3000
他还说
09:45
that he had so much money
216
570000
2000
他有很多钱
09:47
stashed in his upper-East side apartment at one point
217
572000
2000
藏匿在上东侧的公寓内
09:49
that he just didn't know what to do with it
218
574000
2000
他都不知道用这些钱干什么
09:51
and actually fell into a depression.
219
576000
2000
事实上还很沮丧
09:53
But that's a slightly different story,
220
578000
2000
现在形势不同了
09:55
which I won't go into now.
221
580000
2000
我不会去做了
09:57
Now the interesting thing about RedBrigade
222
582000
3000
现在关于红军有趣的是
10:00
is that he wasn't an advanced hacker.
223
585000
2000
他并不是一个高级的黑客
10:02
He sort of understood the technology,
224
587000
2000
他略懂技术
10:04
and he realized that security was very important
225
589000
3000
同时意识到安全非常重要
10:07
if you were going to be a Carder,
226
592000
3000
如果你想成为Carder的一员
10:10
but he didn't spend his days and nights
227
595000
2000
但是他不会日以继夜干着
10:12
bent over a computer, eating pizza,
228
597000
2000
在电脑前工作,吃着批萨
10:14
drinking coke and that sort of thing.
229
599000
2000
喝着可乐之类的事情
10:16
He was out there on the town
230
601000
2000
他在一个镇上
10:18
having a fab time enjoying the high life.
231
603000
2000
享受着高质量生活
10:20
And this is because
232
605000
2000
这是因为
10:22
hackers are only one element
233
607000
3000
黑客只是网络犯罪业
10:25
in a cybercriminal enterprise.
234
610000
3000
的一个环节
10:28
And often they're the most vulnerable element of all.
235
613000
5000
而且他们通常是所有环节中最脆弱的
10:34
And I want to explain this to you
236
619000
2000
这点我想通过向大家介绍6位
10:36
by introducing you to six characters
237
621000
2000
我做调查时遇到的人
10:38
who I met
238
623000
2000
来进行
10:40
while I was doing this research.
239
625000
3000
解释
10:43
Dimitry Golubov, aka SCRIPT --
240
628000
3000
迪米特里·戈卢博夫,亦称“脚本”--
10:46
born in Odessa, Ukraine in 1982.
241
631000
3000
1982年生于乌克兰奥德萨市
10:49
Now he developed his social and moral compass
242
634000
3000
上世纪90年代,他在黑海港口的生活
10:52
on the Black Sea port during the 1990s.
243
637000
3000
塑造了他的人生观
10:55
This was a sink-or-swim environment
244
640000
3000
那是一个生死完全靠自己的环境
10:58
where involvement in criminal or corrupt activities
245
643000
4000
那种环境中,犯罪、腐败行为
11:02
was entirely necessary
246
647000
2000
是生存的
11:04
if you wanted to survive.
247
649000
2000
必要条件
11:06
As an accomplished computer user,
248
651000
2000
最为一名熟练的电脑使用者
11:08
what Dimitry did
249
653000
2000
迪米特里所做的是
11:10
was to transfer the gangster capitalism of his hometown
250
655000
4000
把他家乡的强盗资本主义那一套
11:14
onto the Worldwide Web.
251
659000
2000
移植到了互联网上
11:16
And he did a great job in it.
252
661000
2000
他干的非常棒
11:18
You have to understand though
253
663000
2000
你要知道
11:20
that from his ninth birthday,
254
665000
2000
从他9岁生日开始
11:22
the only environment he knew
255
667000
2000
他所处的环境就只有
11:24
was gangsterism.
256
669000
2000
强盗
11:26
He knew no other way of making a living
257
671000
2000
除此之外他根本不懂如何用其他方法
11:28
and making money.
258
673000
2000
维持生计
11:30
Then we have Renukanth Subramaniam,
259
675000
2000
下一位是 瑞努坎斯·撒布莱姆尼安
11:32
aka JiLsi --
260
677000
2000
亦称JiLsi --
11:34
founder of DarkMarket,
261
679000
2000
黑市创始人
11:36
born in Colombo, Sri Lanka.
262
681000
2000
生于斯里兰卡的科伦坡
11:38
As an eight year-old,
263
683000
2000
在他八岁时
11:40
he and his parents fled the Sri Lankan capital
264
685000
2000
他随父母逃离了斯里兰卡首都
11:42
because Singhalese mobs were roaming the city,
265
687000
3000
因为僧伽罗人在他们的城市里搜寻并杀害
11:45
looking for Tamils like Renu to murder.
266
690000
3000
像他全家这样的泰米尔族人
11:48
At 11, he was interrogated by the Sri Lankan military,
267
693000
2000
11岁的时候,他被斯里兰卡军方审讯
11:50
accused of being a terrorist,
268
695000
2000
并控告其为恐怖分子
11:52
and his parents sent him on his own to Britain
269
697000
4000
他的父母把他一个人送到了英国
11:56
as a refugee seeking political asylum.
270
701000
3000
作为难民寻求政治庇护
11:59
At 13,
271
704000
2000
13岁时
12:01
with only little English and being bullied at school,
272
706000
3000
仅会一点点英文的他在学校被欺负
12:04
he escaped into a world of computers
273
709000
3000
于是他逃进了电脑的世界
12:07
where he showed great technical ability,
274
712000
2000
这是个能展示他伟大才能的地方
12:09
but he was soon being seduced
275
714000
3000
但是他不久就被网上的人
12:12
by people on the Internet.
276
717000
2000
怂恿
12:14
He was convicted of mortgage and credit card fraud,
277
719000
3000
他因抵押贷狂和信用卡欺诈被定罪
12:17
and he will be released from Wormwood Scrubs jail in London
278
722000
3000
他将于2012年从伦敦Wormwood Scrubs监狱
12:20
in 2012.
279
725000
2000
被释放
12:22
Matrix001,
280
727000
4000
马提克斯001
12:26
who was an administrator at DarkMarket.
281
731000
3000
一位黑市管理员
12:29
Born in Southern Germany
282
734000
2000
生于德国南部
12:31
to a stable and well-respected middle class family,
283
736000
2000
一个稳定而且受人尊重的中产家庭中
12:33
his obsession with gaming as a teenager
284
738000
3000
他青年时期沉迷于游戏 并因此
12:36
led him to hacking.
285
741000
2000
开始了黑客行为
12:38
And he was soon controlling huge servers around the world
286
743000
4000
不久就控制了世界上大量的服务器
12:42
where he stored his games
287
747000
2000
并在这些服务器上储存
12:44
that he had cracked and pirated.
288
749000
2000
盗版来的破解版游戏
12:46
His slide into criminality
289
751000
2000
他逐步滑向了
12:48
was incremental.
290
753000
2000
犯罪的深渊
12:50
And when he finally woke up to his situation
291
755000
3000
当他终于意识到自己所处的境地
12:53
and understood the implications,
292
758000
2000
清楚了自己的所作所为时
12:55
he was already in too deep.
293
760000
3000
他早已深陷其中
12:58
Max Vision, aka ICEMAN --
294
763000
2000
Max Vision,亦称 冰人--
13:00
mastermind of cardersMarket.
295
765000
2000
cardersMarket的幕后操纵者
13:02
Born in Meridian, Idaho.
296
767000
2000
生于密烈地安,爱达荷州
13:04
Max Vision was one of the best penetration testers
297
769000
4000
他是最好的侵入测试人员之一
13:08
working out of Santa Clara, California
298
773000
3000
在90年代后期加利福尼亚州圣克拉拉
13:11
in the late 90s for private companies
299
776000
2000
供职于私营企业,并以自由形式
13:13
and voluntarily for the FBI.
300
778000
3000
服务于美国联邦调查局
13:16
Now in the late 1990s,
301
781000
2000
在90年代后期
13:18
he discovered a vulnerability
302
783000
2000
他开始为美国政府的
13:20
on all U.S. government networks,
303
785000
3000
所有网络服务
13:23
and he went in and patched it up --
304
788000
2000
他参与并为其进行补丁工作--
13:25
because this included nuclear research facilities --
305
790000
4000
因为这其中包括了原子研究设施--
13:29
sparing the American government
306
794000
2000
节约了美国政府
13:31
a huge security embarrassment.
307
796000
2000
大笔安全维护费用
13:33
But also, because he was an inveterate hacker,
308
798000
3000
但同时,因为他毕竟是个黑客出身
13:36
he left a tiny digital wormhole
309
801000
2000
他留了个微小数字漏洞
13:38
through which he alone could crawl.
310
803000
2000
只有他自己了解
13:40
But this was spotted by an eagle-eye investigator,
311
805000
3000
但是这些都被叫鹰眼的调查员发现
13:43
and he was convicted.
312
808000
2000
他因此被定罪
13:45
At his open prison,
313
810000
2000
在开放式监狱中
13:47
he came under the influence of financial fraudsters,
314
812000
2000
他被金融犯所影响
13:49
and those financial fraudsters
315
814000
2000
同时那些金融犯
13:51
persuaded him to work for them
316
816000
2000
教唆他出狱后为其
13:53
on his release.
317
818000
2000
工作
13:55
And this man with a planetary-sized brain
318
820000
3000
这位拥有天才头脑的家伙
13:58
is now serving a 13-year sentence
319
823000
2000
正在在加利福尼亚服13年的
14:00
in California.
320
825000
2000
刑期
14:02
Adewale Taiwo, aka FeddyBB --
321
827000
3000
阿德瓦勒·泰沃, 亦称FeddyBB--
14:05
master bank account cracker
322
830000
2000
著名银行账户黑客
14:07
from Abuja in Nigeria.
323
832000
3000
生于尼日利亚阿布贾
14:10
He set up his prosaically entitled newsgroup,
324
835000
3000
他成立了自己的银行诈骗组织
14:13
bankfrauds@yahoo.co.uk
325
838000
5000
bankfrauds@yahoo.co.uk
14:18
before arriving in Britain
326
843000
2000
在2005年
14:20
in 2005
327
845000
2000
进入
14:22
to take a Masters in chemical engineering
328
847000
2000
英国曼彻斯特大学学习
14:24
at Manchester University.
329
849000
2000
化学工程硕士之前
14:26
He impressed in the private sector,
330
851000
3000
在私营企业中
14:29
developing chemical applications for the oil industry
331
854000
3000
他不仅在石油化学方面表现出色
14:32
while simultaneously running
332
857000
2000
同时运作着
14:34
a worldwide bank and credit card fraud operation that was worth millions
333
859000
3000
一家全球性的银行账户和信用卡欺诈网络,资产高达百万
14:37
until his arrest in 2008.
334
862000
4000
直至2008年被捕
14:41
And then finally, Cagatay Evyapan,
335
866000
2000
最后一位,卡格特·艾维亚潘
14:43
aka Cha0 --
336
868000
2000
外号 Cha0--
14:45
one of the most remarkable hackers ever,
337
870000
2000
曾经最牛的黑客之一
14:47
from Ankara in Turkey.
338
872000
2000
生于土耳其安卡拉
14:49
He combined the tremendous skills of a geek
339
874000
3000
他是有着天才头脑的科学怪人
14:52
with the suave social engineering skills
340
877000
4000
同时又兼有高级罪犯所具有的
14:56
of the master criminal.
341
881000
3000
优雅的社会工程技巧
14:59
One of the smartest people I've ever met.
342
884000
3000
我所见过的最聪明的人之一
15:02
He also had the most effective
343
887000
2000
他拥有
15:04
virtual private network security arrangement
344
889000
2000
警方所遇到过的全球网络罪犯中
15:06
the police have ever encountered
345
891000
2000
最有效的
15:08
amongst global cybercriminals.
346
893000
2000
虚拟私人网络安全管理方案
15:10
Now the important thing
347
895000
2000
最重要的是
15:12
about all of these people
348
897000
2000
关于所有这些人
15:14
is they share certain characteristics
349
899000
2000
他们都共有同一种特性
15:16
despite the fact that they come from very different environments.
350
901000
4000
尽管他们来自完全不同的生活环境
15:20
They are all people who learned their hacking skills
351
905000
3000
但都是在十几岁的时候
15:23
in their early to mid-teens.
352
908000
3000
学习的黑客技术
15:26
They are all people
353
911000
2000
并且都
15:28
who demonstrate advanced ability
354
913000
2000
在数学和科学领域展现了
15:30
in maths and the sciences.
355
915000
3000
高超的才能
15:33
Remember that, when they developed those hacking skills,
356
918000
2000
记住一点,当他们开始开发自己的黑客技术之时
15:35
their moral compass had not yet developed.
357
920000
4000
都还没有成熟的价值观
15:39
And most of them, with the exception of SCRIPT and Cha0,
358
924000
3000
他们中的大多数,除了SCRIPT 和 Cha0
15:42
they did not demonstrate
359
927000
4000
都没有展示出
15:46
any real social skills in the outside world --
360
931000
3000
真正的社会技能--
15:49
only on the Web.
361
934000
2000
仅在网络中展现了
15:51
And the other thing is
362
936000
2000
另一个问题是
15:53
the high incidence of hackers like these
363
938000
2000
黑客高发于
15:55
who have characteristics which are consistent
364
940000
3000
具有唐氏综合症
15:58
with Asperger's syndrome.
365
943000
3000
的人群中
16:01
Now I discussed this
366
946000
2000
我和西蒙·拜龙·库何教授
16:03
with Professor Simon Baron-Cohen
367
948000
2000
讨论过这个问题
16:05
who's the professor of developmental psychopathology at Cambridge.
368
950000
4000
他是剑桥大学发展心理学的教授
16:09
And he has done path-breaking work on autism
369
954000
4000
在自闭症方面作了开创性的研究
16:13
and confirmed, also for the authorities here,
370
958000
2000
并且确认
16:15
that Gary McKinnon --
371
960000
2000
加里·麦金农--
16:17
who is wanted by the United States
372
962000
2000
被美国因侵入五角大楼
16:19
for hacking into the Pentagon --
373
964000
2000
通缉的罪犯--
16:21
suffers from Asperger's
374
966000
2000
患有唐氏综合症
16:23
and a secondary condition
375
968000
2000
和中度的
16:25
of depression.
376
970000
2000
抑郁症
16:27
And Baron-Cohen explained
377
972000
2000
拜龙·库何解释到
16:29
that certain disabilities
378
974000
2000
某些缺陷
16:31
can manifest themselves in the hacking and computing world
379
976000
3000
可以让他们在黑客和电脑世界中展现
16:34
as tremendous skills,
380
979000
2000
惊人的技能
16:36
and that we should not be throwing in jail
381
981000
2000
同时我们不应该把
16:38
people who have such disabilities and skills
382
983000
3000
拥有这些缺陷和技能的人关进监狱
16:41
because they have lost their way socially
383
986000
3000
因为他们已经失去了社交能力
16:44
or been duped.
384
989000
2000
且容易被骗
16:46
Now I think we're missing a trick here,
385
991000
3000
我觉得这个问题上我们得不偿失
16:49
because I don't think people like Max Vision should be in jail.
386
994000
3000
因为我不认为像Max Vision这样的人应该被抓进监狱
16:52
And let me be blunt about this.
387
997000
2000
我说的直接一点
16:54
In China, in Russia and in loads of other countries
388
999000
3000
在中国,俄罗斯和许多国家
16:57
that are developing cyber-offensive capabilities,
389
1002000
3000
都在发展网络攻击能力
17:00
this is exactly what they are doing.
390
1005000
2000
这就是他们在做的
17:02
They are recruiting hackers
391
1007000
2000
他们雇用黑客
17:04
both before and after they become involved
392
1009000
3000
不论从事网络犯罪还是间谍活动的黑客
17:07
in criminal and industrial espionage activities --
393
1012000
3000
或是还未参与的--
17:10
are mobilizing them
394
1015000
2000
把他们组织起来
17:12
on behalf of the state.
395
1017000
2000
为国家工作
17:14
We need to engage
396
1019000
2000
我们要雇用他们
17:16
and find ways of offering guidance
397
1021000
2000
同时找到一种方法
17:18
to these young people,
398
1023000
2000
为这些年轻人提供指导
17:20
because they are a remarkable breed.
399
1025000
2000
因为他们都是了不起的人
17:22
And if we rely, as we do at the moment,
400
1027000
2000
如果我们像现在这样仅仅依靠
17:24
solely on the criminal justice system
401
1029000
3000
刑事司法系统
17:27
and the threat of punitive sentences,
402
1032000
3000
和惩罚性的刑罚
17:30
we will be nurturing a monster we cannot tame.
403
1035000
3000
将会培养出我们无法驯服的怪兽
17:33
Thank you very much for listening.
404
1038000
2000
谢谢大家的倾听
17:35
(Applause)
405
1040000
13000
(掌声)
17:48
Chris Anderson: So your idea worth spreading
406
1053000
2000
克里斯·安德森:你的想法很值得推广
17:50
is hire hackers.
407
1055000
2000
即雇用黑客
17:52
How would someone get over that kind of fear
408
1057000
4000
可是如何让人消除这样的顾虑呢
17:56
that the hacker they hire
409
1061000
2000
所雇用的黑客
17:58
might preserve that little teensy wormhole?
410
1063000
2000
也许会带来微小的隐患
18:00
MG: I think to an extent,
411
1065000
2000
MG:我认为在一定程度上
18:02
you have to understand
412
1067000
2000
你应该了解
18:04
that it's axiomatic among hackers that they do that.
413
1069000
3000
他们明白自己在做什么
18:07
They're just relentless and obsessive
414
1072000
3000
只是对于所作的事情已经
18:10
about what they do.
415
1075000
2000
无法自拔
18:12
But all of the people who I've spoken to
416
1077000
2000
但我所交流过触犯了法律底线
18:14
who have fallen foul of the law,
417
1079000
2000
的所有黑客
18:16
they have all said, "Please, please give us a chance
418
1081000
3000
他们都说“求求你,请给我们一次机会
18:19
to work in the legitimate industry.
419
1084000
3000
为合法的领域工作
18:22
We just never knew how to get there, what we were doing.
420
1087000
3000
因为我们以前根本不知道如何用于正道,才做了那些
18:25
We want to work with you."
421
1090000
2000
我们希望为你效力”
18:27
Chris Anderson: Okay, well that makes sense. Thanks a lot Misha.
422
1092000
3000
克里斯·安德森:好,这就说的通了,非常感谢美莎
18:30
(Applause)
423
1095000
3000
(掌声)
ABOUT THE SPEAKER
Misha Glenny - Underworld investigatorJournalist Misha Glenny leaves no stone unturned (and no failed state unexamined) in his excavation of criminal globalization.
Why you should listen
In minute detail, Misha Glenny's 2008 book McMafia illuminates the byzantine outlines of global organized crime. Whether it's pot smugglers in British Columbia, oil/weapons/people traffickers in Eastern Europe, Japanese yakuza or Nigerian scammers, to research this magisterial work Glenny penetrated the convoluted, globalized and franchised modern underworld -- often at considerable personal risk.
The book that resulted is an exhaustive look at an unseen industry that Glenny believes may account for 15% of the world's GDP.
Legal society ignores this world at its peril, but Glenny suggests that conventional law enforcement might not be able to combat a problem whose roots lie in global instability.
While covering the Central Europe beat for the Guardian and the BBC, Glenny wrote several acclaimed books on the fall of Yugoslavia and the rise of the Balkan nations. He's researching a new book on cybercrime, of which he says: "The key to cybercrime is what we call social engineering. Or to use the technical term for it, there's one born every minute."
Watch TED's exclusive video Q&A with Glenny: "Behind the Scenes of McMafia" >>
Misha Glenny | Speaker | TED.com