在暑期强化阶段,翻译硕士考研者要做的事情,不仅要牢固专业基础知识,还需要泛读一些报刊文章。下面,北京文都考研网小编为扩展翻译硕士考生的知识面,整理了MTI双语时事:苹果漏洞悬赏,供考生参考。
2020考研MTI双语时事:苹果漏洞悬赏
Apple has massively increased the amount it’s offering hackers for finding vulnerabilities in iPhones and Macs, up to $1 million. It’s by far the highest bug bounty on offer from any major tech company.
为了发现iphone和Mac电脑的漏洞,苹果公司大幅增加了向黑客提供的悬赏金额,最高达100万美元。这是迄今为止所有大型科技公司提供的最高查漏洞悬赏。
That’s up from $200,000, and in the fall the program will be open to all researchers. Previously only those on the company’s invite-only bug bounty program were eligible to receive rewards.
这是从20万美元起步的,今年秋天该奖励计划将对所有研究人员开放。此前只有受邀查找漏洞的人才有资格获得奖金。
As Forbes reported on Monday, Apple is also launching a Mac bug bounty, which was confirmed Thursday, but it's also extending it to watchOS and its Apple TV operating system. The announcements came in Las Vegas at the Black Hat conference, where Apple’s head of security engineering Ivan Krstić gave a talk on iOS and macOS security.
正如《福布斯》周一报道的那样,苹果也将推出Mac 漏洞赏金,这一消息在周四得到了证实,但它也将把赏金推广到watchOS及其苹果电视操作系统。这一消息来自拉斯维加斯举行的黑帽大会,苹果公司负责安全工程的负责人IvanKrstić就iOS和macOS安全问题发表了演讲。
Forbes also revealed on Monday that Apple was to give bug bounty participants “developer devices”—iPhones that let hackers dive further into iOS. They can, for instance, pause the processor to look at what’s happening with data in memory. Krstić confirmed the iOS Security Research Device program would be by application only. It will arrive next year.
《福布斯》周一还透露,苹果公司将向漏洞悬赏参与者提供“开发者设备”-iPhones,让黑客进一步深入iOS。例如,他们可以暂停处理器以查看内存中数据的变化。Krstić证实iOS安全研究设备计划仅适用于应用程序。它将于明年到货。
$1 million for an iPhone hack
一个iPhone漏洞100万美元
The full $1 million will go to researchers who can find a hack of the kernel—the core of iOS—with zero clicks required by the iPhone owner. Another $500,000 will be given to those who can find a “network attack requiring no user interaction.” There’s also a 50% bonus for hackers who can find weaknesses in software before it's released.
100万美元将全部奖给研究人员,只要他们不需要用户任何操作就能够远程进入iPhone内核,另外50万美元将提供给那些能够发现“不需要用户交互的网络攻击”的人。此外,如果黑客能在软件发布前发现漏洞,还能获得50%的奖励。
Apple is increasing those rewards in the face of an increasingly profitable private market where hackers sell the same information to governments for vast sums.
苹果公司增加奖励是为了应对利润越来越高的私人市场,在这里黑客以巨额的价格向政府出售同样的信息。
As Maor Shwartz told Forbes, the cost of a single exploit (a program that uses vulnerabilities typically to take control of a computer or phone) can fetch as much as $1.5 millon. An exploit targeting WhatsApp where no clicks are required from the user, for instance, can be sold to a government agency for that much, though such tools are rare. Only one or two a year will be sold, from a pool of around 400 researchers who focus on such high-end hacking. “It’s really hard to research them and produce a working exploit,” he said.
Maor Shwartz告诉《福布斯》,一次单一的漏洞利用(通常是利用漏洞控制计算机或电话的程序)可以获得高达150万美元。例如,针对WhatsApp且无须用户点击的漏洞利用可以以更高价卖给政府机构,不过这类工具很少见。大约有400名研究人员专攻此类高端黑客攻击,但每年只卖出一两次。他表示:“研究它们并且开发一个有用的漏洞非常困难。”
Previously, a company called Zerodium was vocal about how much it will pay researchers before handing them to its unknown government customers. In January, the secretive company announced it was offering $2 million for a remote hack of an iPhone.
此前,一家名为Zerodium的公司公开表示在自己将这些漏洞出售给不知名政府机构前将会给研究人员多少奖金。今年1月,这家神秘的公司宣布为iPhone的远程漏洞提供200万美元悬赏。
Krstić said the bug bounty had been a success to date, with 50 serious bugs reported since the 2016 launch.
苹果安全工程师Krstić称,就目前来看,漏洞悬赏制度是成功的,自2016年发布以来,已披露了50个重大漏洞。
以上是北京文都考研网给出的“2020考研MTI双语时事:苹果漏洞悬赏”,希望对参加2020考研翻译硕士学子们,在复习中有所帮助!祝2020考研成功!
推荐阅读: