据报道,今年年初发起的一次大型网络攻击已经影响到了全球的政府和企业。
Agencies and companies sought to secure their computer networks after the United States and other nations confirmed that a widely used network software program had been hacked. The software is a network management system called SolarWinds.
在美国和其它国家证实一款广泛应用的网络软件程序被黑客入侵之后,各机构和企业开始寻求对其计算机网络的保护。该软件是一种名为SolarWinds的网络管理系统。
SolarWinds is an American company that provides network and technical support services to hundreds of thousands of organizations worldwide. Users of its software products include most Fortune 500 companies and government agencies in North America, Europe, Asia and the Middle East. In the U.S., users include the military, the State Department and the White House.
SolarWinds是一家向全球上万家组织提供网络和技术支持服务的美国公司。其软件产品的用户包括大多数《财富》世界500强企业以及北美、欧洲、亚洲和中东地区的政府机构。在美国的用户包括美国军队、国务院以及白宫。
The incident led the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to issue a rare "emergency directive." The directive states that a "compromise of (SolarWind products) poses unacceptable risks to the security of federal networks."
该事件导致美国网络安全和基础设施安全局发布了罕见了“紧急指令。”该指令指出,SolarWinds产品的危害对联邦网络安全构成了无法接受的风险。
CISA said the directive was issued so that government agencies and private companies could investigate possible hacking of their organizations and take steps to secure their computer networks.
美国网络安全和基础设施安全局表示,发布该指令是为了让政府机构和私营企业调查对他们可能的黑客攻击,并采取措施保护其计算机网络的安全。
The national cybersecurity agencies of Britain and Ireland issued similar warnings.
英国和爱尔兰的国家网络安全机构也发布了类似的警告。
The hack is believed to have started as early as March. Experts say the attackers were able to secretly add computer code designed to steal information from network systems.
据信这次黑客入侵最早于3月份开始。专家表示,攻击者能够偷偷添加旨在窃取网络系统信息的计算机代码。
The attack was discovered after cybersecurity company FireEye confirmed that it was a victim of hacking. FireEye made that attack public earlier this month. While investigating its own hacking, it found that the attack was extremely widespread.
网络安全公司FireEye确认自己也是黑客攻击的受害者之后,才发现了这次攻击。FireEye公司在本月初公开了这次攻击。该公司在调查自身被入侵时发现这次攻击极为广泛。
A FireEye vice president, Charles Carmakal, said the company was aware of many "high-value targets that have been compromised." The company said it was attempting to help a number of organizations deal with possible attacks. Carmakal said he expects many more organizations to learn in the coming days that they, too, were hacked.
FireEye公司副总裁查尔斯·卡玛卡表示,该公司意识到许多“高价值目标已经遭到损害。”该公司称其试图帮助许多组织应对可能的攻击。卡玛卡表示,他预期未来会有更多组织发现自己也受到了攻击。
U.S. officials said Sunday that federal agencies – including the Treasury and Commerce departments - were affected by the attack. The officials provided few details.
美国官员周日表示,包括财政部和商务部在内的联邦机构受到了这次攻击的影响。有关官员没有提供太多细节。
Hackers' identity unknown
黑客身份未知
The identity of the hackers remains unclear.
黑客身份仍然不清楚。
SolarWinds said it was advised that an "outside nation state" had attacked its systems. Neither the U.S. government nor the affected companies have publicly said which nation state they think is responsible.
SolarWinds公司称其被告知“外部国家”攻击了该系统。美国政府和受影响企业都没有公开表示他们认为哪个国家应该对此负责。
One U.S. government official told The Associated Press Monday that Russian hackers are suspected. The official wanted to remain unnamed because of an ongoing investigation.
美国政府一位官员对美联社表示,怀疑是俄罗斯黑客所为。由于调查还在进行,这位官员希望保持匿名。
Unnamed sources told The Washington Post the attack is believed to have been carried out by Russian government hackers. The attackers - identified as APT29 or Cozy Bear - are thought to be part of Russia's foreign intelligence service.
一位不愿透露姓名的消息人士对《华盛顿邮报》表示,据信这次攻击是俄罗斯政府黑客所为。确定为APT29或Cozy Bear的攻击者被视为俄罗斯对外情报部门的一部分。
In Moscow, a government spokesman rejected the idea that Russia was involved in the hacking.
莫斯科方面的政府发言人否认俄罗斯卷入了这次攻击。
Suzanne Spaulding is a former U.S. cybersecurity official who is now an adviser at the Washington-based Center for Strategic and International Studies. She told the AP the cyberattack is "a reminder that offense is easier than defense and we still have a lot of work to do."
苏珊娜·斯波尔丁是美国前网络安全官员,目前是位于华盛顿的战略与国际研究中心的顾问。她对美联社表示,这次网络攻击提醒我们,进攻容易防守难,我们还有许多工作要做。
Ben Buchanan is an expert on cyberattacks at Georgetown University in Washington D.C. He wrote the book "The Hacker and The State." Buchanan called the hacking incident "impressive, surprising and alarming."
本·布坎南是华盛顿特区乔治敦大学的一名网络攻击方面的专家。他著有《黑客和国家》一书。布坎南称这次黑客事件“令人印象深刻、惊讶和震惊。”
Neither SolarWinds nor U.S. cybersecurity officials have publicly identified which organizations were affected. Experts say that just because a company or agency uses a SolarWinds product does not necessarily mean they were hacked. The code placed by the attackers is thought to have been added at the same time as a new software version was released by SolarWinds between March and June.
SolarWinds和美国网络安全官员都没有公开确定哪些组织受到了影响。专家表示,因为企业或机构使用了SolarWinds的产品,并不一定就意味着他们被黑客入侵了。攻击者放置的代码被认为是在SolarWinds今年3月到6月发布新软件版本同一时间添加进去的。
I'm Bryan Lynn.
我是布莱恩·林恩。(51VOA.COM原创翻译,禁止转载,违者必究!)