就网络安全问题,谷歌雇员的回复

     博讯的主编韦石先生表示,自己的密码非常长,而且经常重装系统,但也被设置了转发。他怀疑Google有内鬼,在终端改了他的设置。就此问题,茉莉花革命发起人与支持茉莉花的谷歌雇员取得了联络。该朋友回复表示:

这是非常不会发生的事情。在谷歌公司,只有极少数的几个人拥有权限去检查或更改用户的设置。擅自更改用户设置是非常敏感的事情,我坚信在中国的办公室没有人能够有级别使用此权限。很有可能的是,韦石先生的电脑被入侵。

我对此的建议是,韦石先生可以经常检查登录历史,并查看是否有不寻常的地方。在Gmail的页面下方,有一个名为“详细”的链接。点开此链接可以检视最近10次登录Gmail的时间、IP地址和对应的大致地理位置。比如他可能会看到:

“此帐户中另一地址登录。上一次活动时间为:3小时之前,在此电脑上。详细。”

如果韦石先生刚刚装了新的系统,并且没有做任何可能带有网络风险的活动,并发现他的转发设置被修改,请让他将“详细”中的登录历史发给我们,我们会和防威胁小组联络(我有一个同事是防威胁小组成员,他是一个黑客出身的是高级网络安全专家),并检查我们是否有必要开启内部调查程序。


This is extremely unlikely. Only very few people within Google have the access level to check or change user's settings. This is extremely sensitive issue, and I believe nobody in China office has this access. More likely, his computer is compromised somehow.

My suggestion for him is to check the access history regularly and see if there's anything special. Towards the bottom of the gmail page, there is a line like the following. click on "Details" will show recent accesses and geo location.

This account is open in 1 other location (***.**.***.**).   Last account activity: 3 hours ago on this computer.  Details

If he just had a clean installation of his computer, and has not done any activities with risk, and found his forwarding setting is modified, please take logs of the events (exact time, and other information), then I can talk to the threat team (I have a close American friend in the threats team, he's a hacker and a security guru) and see if they can conduct an internal investigation.

没有评论:

发表评论