μλ μλ¬Έμλ§μ λλΈν΄λ¦νμλ©΄ μμμ΄ μ¬μλ©λλ€.
λ²μ: Sieun Lee
κ²ν : K Bang
00:12
I'm going to be showing some of the cybercriminals'
0
12713
1632
μ λ μ¬μ΄λ² λ²μ£μλ€μ μ΅μ μ
00:14
latest and nastiest creations.
1
14345
2462
κ·Έλ¦¬κ³ μ΅μ
μ μνλ€μ
μκ°νλ €κ³ ν©λλ€.
00:16
So basically, please don't go and download
2
16807
2908
λ§νμλ©΄, μ κ° μ§κΈ
보μ¬λ릴 λ°μ΄λ¬μ€λ€μ
00:19
any of the viruses that I show you.
3
19715
2696
μ λ° λ€μ΄λ‘λ λ°μ§ λ§μΈμ.
00:22
Some of you might be wondering what a cybersecurity specialist looks like,
4
22411
3018
μ¬μ΄λ² 보μ μ λ¬Έκ°κ° λνλ μ§μ
μΈκ°
κΆκΈν΄ νμ€ λΆλ€μ μν΄
00:25
and I thought I'd give you a quick insight
5
25429
2169
μ κ²½λ ₯μ λν΄
00:27
into my career so far.
6
27598
2678
μ§§κ² μ λ¦¬ν΄ λ³Όκ²μ.
00:30
It's a pretty accurate description.
7
30276
2501
보μλ κ²μ
μλΉν μ νν μ€λͺ
μ
λλ€.
00:32
This is what someone that specializes
8
32777
1656
μ
μ± μ½λμ ν΄νΉ μ λ¬Έκ°λ
00:34
in malware and hacking looks like.
9
34433
2420
μ΄λ κ² μκ²Όμ΅λλ€.
00:36
So today, computer viruses and trojans,
10
36853
3414
μμ¦ μ»΄ν¨ν° λ°μ΄λ¬μ€μ
νΈλ‘μ΄ λͺ©λ§ μ
μ±μ½λλ
00:40
designed to do everything from stealing data
11
40267
2880
λ°μ΄ν°λ₯Ό νμΉκ³
00:43
to watching you in your webcam
12
43147
2041
μ¬λ¬λΆμ μΉμΊ μ ν΅ν΄
κ°μνλ κ²μμλΆν°
00:45
to the theft of billions of dollars.
13
45188
2778
μμμ΅ λ¬λ¬μ μ λκΉμ§
λͺ¨λ μ©λλ‘ μ¬μ©λ©λλ€.
00:47
Some malicious code today goes as far
14
47966
2195
μ΄λ€ μ
μ± μ½λλ€μ μ¬μ§μ΄
00:50
as targeting power, utilities and infrastructure.
15
50161
4143
μ κΈ° λ° μ¬νμ κ³΅κΈ μ²λ¦¬ μμ€κ³Ό
κΈ°λ° μμ€κΉμ§ 곡격ν©λλ€.
00:54
Let me give you a quick snapshot
16
54304
1961
μ΅κ·Όμ μ
μ± μ½λλ€μ΄
00:56
of what malicious code is capable of today.
17
56265
2614
μΌλ§λ κ°λ ₯νμ§
μ§§κ² λ¬μ¬λ₯Ό ν΄λ³΄μ£ .
00:58
Right now, every second, eight new users
18
58879
3070
μ§κΈ μ΄ μκ°, 맀μ΄λ§λ€
8λͺ
μ μλ‘μ΄ μ΄μ©μκ°
01:01
are joining the Internet.
19
61949
2155
μΈν°λ·μ μ°κΈ° μμν©λλ€.
01:04
Today, we will see 250,000 individual new computer viruses.
20
64104
7308
μ€λ ν루 250,000κ°μ
μλ‘μ΄ μ»΄ν¨ν° λ°μ΄λ¬μ€κ° λνλ κ²μ΄κ³
01:11
We will see 30,000 new infected websites.
21
71412
5773
30,000 κ°μ μΉμ¬μ΄νΈλ€μ΄
κ°μΌλ κ²μ
λλ€.
01:17
And, just to kind of tear down a myth here,
22
77185
2086
κ·Έλ¦¬κ³ κ·Όκ±°μλ μλ¬Έμ ν΄λͺ
νμλ©΄,
01:19
lots of people think that when you get infected
23
79271
2488
λ§μ μ¬λλ€μ΄
μ»΄ν¨ν° λ°μ΄λ¬μ€μ κ°μΌλλ 건
01:21
with a computer virus, it's because you went to a porn site.
24
81759
3451
ν¬λ₯΄λ
Έ μΉμ¬μ΄νΈμ λ€μ΄κ°μ
κ·Έλ λ€κ³ μκ°νλλ°μ.
01:25
Right? Well, actually, statistically speaking,
25
85210
2443
κ·Έλ μ£ ? νμ§λ§ μ¬μ€
ν΅κ³μ μΌλ‘ λ°μ§μλ©΄
01:27
if you only visit porn sites, you're safer.
26
87653
3125
μ¬λ¬λΆμ΄ λ°©λ¬Ένλ κ² μ€λ‘μ§
ν¬λ₯΄λ
Έ μ¬μ΄νΈλΌλ©΄ μ€νλ € λ μμ ν©λλ€.
01:30
People normally write that down, by the way. (Laughter)
27
90778
3002
λ³΄ν΅ μ΄ μκΈ°λ₯Ό λ°μ μ μΌμλλΌκ΅¬μ.
(μμ)
01:33
Actually, about 80 percent of these
28
93780
1562
μ¬μ€, μ΄ κ°μΌλλ
μΉμ¬μ΄νΈλ€μ 80%λ
01:35
are small business websites getting infected.
29
95342
3513
μμ κ·λͺ¨μ νμ¬ μΉμ¬μ΄νΈλ€μ
λλ€.
01:38
Today's cybercriminal, what do they look like?
30
98855
2285
μμ¦μ μ¬μ΄λ² λ²μ£μλ€μ,
μ΄λ»κ² μκ²ΌμκΉμ?
01:41
Well, many of you have the image, don't you,
31
101140
2426
μλ§ μ¬λ¬λΆ μ€ λ§μ λΆλ€μ
01:43
of the spotty teenager sitting in a basement,
32
103566
2176
ν μ§νμ€μμ
μ¬λλ¦ λ μλ μ²μλ
μ΄
01:45
hacking away for notoriety.
33
105742
2388
μμ μ μ
λͺ
μ νΌνΈλ¦¬κΈ° μν΄
ν΄νΉνλ μ₯λ©΄μ μμνμ€ν
λ°μ.
01:48
But actually today, cybercriminals
34
108130
1623
νμ§λ©΄ μμ¦μ μ¬μ΄λ² λ²μ£μλ€μ
01:49
are wonderfully professional and organized.
35
109753
3311
νλ₯νκ² μ λ¬Έμ μ΄κ³
μ‘°μ§μ μ
λλ€.
01:53
In fact, they have product adverts.
36
113064
2871
μ¬μ§μ΄ μμ λ€μ
μ ν κ΄κ³ λ§μ λ΄μ£ .
01:55
You can go online and buy a hacking service
37
115935
2131
μ¨λΌμΈμΌλ‘ ν΄νΉ μλΉμ€λ₯Ό κ³ μ©ν΄
01:58
to knock your business competitor offline.
38
118066
2149
λΉμ μ μ¬μ
κ²½μμλ₯Ό
μΈν°λ·μμ λ°μ΄λΌ μ μμ΅λλ€.
02:00
Check out this one I found.
39
120215
1559
μ κ° μ°Ύμ νκ°μ§ μλ₯Ό 보μΈμ.
02:01
(Video) Man: So you're here for one reason,
40
121774
1819
(λΉλμ€) λ¨μ: λΉμ μ΄ μ¬κΈ° μ°Ύμμ¨ κ²μ
νκ°μ§ μ΄μ λλ¬Έμ
λλ€.
02:03
and that reason is
41
123593
1465
κ·Έ μ΄μ λ
02:05
because you need your business competitors,
42
125058
1912
λΉμ μ μ¬μ
κ²½μμλ
02:06
rivals, haters, or whatever the reason is, or who,
43
126970
3952
λΌμ΄λ², μ
νλ¬λ€,
μλ¬΄νΌ λ¬΄μ¨ μ΄μ λ λꡬλ μ§,
02:10
they are to go down.
44
130922
1744
μΈν°λ·μ μ¬λΌμ€μ§ λͺ»νκ²
νκ³ μΆμ κ²λλ€.
02:12
Well you, my friend, you've came to the right place.
45
132666
2860
κ·Έλ λ€λ©΄ νμ¨,
λ± λ§λ κ³³μ μ°Ύμμ€μ
¨μ΅λλ€.
02:15
If you want your business competitors to go down,
46
135526
2416
μ¬μ
κ²½μμλ€μ μΉμ¬μ΄νΈλ₯Ό
λ€μ΄μν€κ³ μΆμΌμΈμ?
02:17
well, they can.
47
137942
1336
λ€, κ°λ₯ν©λλ€.
02:19
If you want your rivals to go offline, well, they will.
48
139278
3424
κ²½μμμ μΈν°λ·μ΄ μλκ² νκ³ μΆμΌμΈμ?
λ€, κ°λ₯ν©λλ€.
02:22
Not only that, we are providing a short-term-to-long-term
49
142702
3027
κ·ΈλΏ μλλΌ, μ°λ¦¬λ
λ¨κΈ°κ° λ° μ₯κΈ°κ°μΌλ‘
02:25
DDOS service or scheduled attack,
50
145729
2355
DDOS 곡격 νΉμ μ£ΌκΈ°μ μΈ
μ¬μ΄λ² 곡격 μλΉμ€λ₯Ό μ 곡ν©λλ€.
02:28
starting five dollars per hour for small personal websites
51
148084
3811
μμ κ°μΈ μΉμ¬μ΄νΈλ μκ°λΉ 5λΆ
02:31
to 10 to 50 dollars per hour.
52
151895
2904
κ·Έ μ΄μμ μκ°λΉ 10λΆμμ
50λΆκΉμ§ λ°μ΅λλ€.
02:34
James Lyne: Now, I did actually pay
53
154799
1323
μ μμ€ λΌμΈ: μ, μ λ μ€μ λ‘
02:36
one of these cybercriminals to attack my own website.
54
156122
2793
μ΄ μ¬μ΄λ² λ²μ£μλ€ μ€ νλλ₯Ό κ³ μ©ν΄
μ μΉμ¬μ΄νΈλ₯Ό 곡격νκ² νμ΄μ.
02:38
Things got a bit tricky when I tried to expense it at the company.
55
158915
3494
κ·Έ λΉμ©μ νμ¬ λμΌλ‘ μ§μΆνλ €λκΉ
μ½κ° μ΄λ ΅λλΌκ΅¬μ.
02:42
Turns out that's not cool.
56
162409
1714
λ¬Έμ κ° λμμ£ .
02:44
But regardless, it's amazing how many products
57
164123
3010
μ무νΌ, μμ¦μ μ¬μ΄λ² λ²μ£μλ€μ΄
02:47
and services are available now to cybercriminals.
58
167133
3112
μ νν μ μλ μ νκ³Ό
μλΉμ€μ μλ λλΌμΈ μ λλλ€.
02:50
For example, this testing platform,
59
170245
2476
μλ₯Ό λ€μ΄, μ΄ μν νλ«νΌμ
02:52
which enables the cybercriminals
60
172721
1715
μ¬μ΄λ² λ²μ£μλ€μ΄
02:54
to test the quality of their viruses
61
174436
2482
μμ μ λ°μ΄λ¬μ€λ₯Ό
μΈμμ λΏλ¦¬κΈ° μ μ
02:56
before they release them on the world.
62
176918
2452
κ·Έ μ±λ₯μ μννκ² ν΄μ€λλ€.
02:59
For a small fee, they can upload it
63
179370
1957
μ½κ°μ λμ λ΄λ©΄,
λ°μ΄λ¬μ€λ₯Ό μ
λ‘λ ν΄
03:01
and make sure everything is good.
64
181327
1666
λͺ¨λ κ² μ λλ‘ λλμ§
νμΈν μ μμ£ .
03:02
But it goes further.
65
182993
1533
νμ§λ§ μ΄κ² λ€κ° μλλλ€.
03:04
Cybercriminals now have crime packs
66
184526
2245
μ΄μ μ¬μ΄λ² λ²μ£μλ€μ
λ²μ£ μ‘°μ§μ μ΄λ€
03:06
with business intelligence reporting dashboards
67
186771
3119
κΈ°μ
μ 보 λ³΄κ³ λμ 보λλ₯Ό μ΄μ©ν΄
03:09
to manage the distribution of their malicious code.
68
189890
3476
μ
μ± μ½λ μ ν΅μ
κ΄λ¦¬νκ³ μμ΅λλ€.
03:13
This is the market leader in malware distribution,
69
193366
3528
μ¬κΈ° 보μλ κ²μ΄
μ
μ± μ½λ μ ν΅ μμ₯μ μ λ μ£ΌμμΈ
03:16
the Black Hole Exploit Pack,
70
196894
1638
"λΈλν μ΅μ€νλ‘μ΄νΈ ν©"μΌλ‘
03:18
responsible for nearly one third of malware distribution
71
198532
3659
μ§λ λ λΆκΈ°κ° λ°°ν¬λ μ
μ± μ½λμ
03:22
in the last couple of quarters.
72
202191
1974
κ±°μ μΌλΆμ μΌμ΄
μ΄κ³³μμ λΉλ‘―λμ΅λλ€.
03:24
It comes with technical installation guides,
73
204165
3009
μ΄λ€μ κΈ°μ μ μ€μΉ μ€λͺ
μ,
03:27
video setup routines,
74
207174
1045
μ€μΉ κ³Όμ μ λν μλ΄ λΉλμ€,
03:28
and get this, technical support.
75
208219
3955
κ·Έλ¦¬κ³ μ¬μ§μ΄
κΈ°μ μ μΈ κ³ κ° μ§μκΉμ§ μ 곡ν©λλ€.
03:32
You can email the cybercriminals and they'll tell you
76
212174
2388
μ¬μ΄λ² λ²μ£μμκ² μ΄λ©μΌμ 보λ΄λ©΄
03:34
how to set up your illegal hacking server.
77
214562
3622
μ΄λ»κ² λΆλ² ν΄νΉ μλ²λ₯Ό μ€μΉνλμ§
κ°λ₯΄μ³ μ€κ²λλ€.
03:38
So let me show you what malicious code looks like today.
78
218184
4284
κ·ΈλΌ μ΄μ μμ¦μ μ
μ± μ½λλ
μ΄λ»κ² μκ²Όλμ§ λ³ΌκΉμ.
03:42
What I've got here is two systems,
79
222468
2312
μ¬κΈ° 보μλ 건 λκ°μ μμ€ν
μ
λλ€.
03:44
an attacker, which I've made look all Matrix-y and scary,
80
224780
3690
νλλ 곡격μμ μμ€ν
μ
λλ€.
μν 맀νΈλ¦μ€ κ°μ΄ 무μκ² λ§λ€μ΄ λ΄€μ΄μ.
03:48
and a victim, which you might recognize from home or work.
81
228470
3302
λ€λ₯Έ νλλ νΌν΄μμ μμ€ν
μ
λλ€.
μ§μ΄λ μΌν°μμ μ΅μνμ€ μ₯λ©΄μ΄μ£ .
03:51
Now normally, these would be on different sides
82
231772
2729
μ€μ λ‘λ μ΄ λ μμ€ν
μ μ΄ μ§κ΅¬μμ
03:54
of the planet or of the Internet,
83
234501
2555
νΉμ μΈν°λ·μ λ°λνΈμ μκ² μ§λ§,
03:57
but I've put them side by side
84
237056
1396
μ λ μ΄ λμ λλν 보μ¬λλ¦¬κ² μ΅λλ€.
03:58
because it makes things much more interesting.
85
238452
2664
ν¨μ¬ λ ν₯λ―Έλ‘μ°μ€ κ±°μμ.
04:01
Now, there are many ways you can get infected.
86
241116
2055
μ, λ°μ΄λ¬μ€μ κ°μΌλλ κ²½λ‘μλ
μ¬λ¬κ°μ§κ° μμ΅λλ€.
04:03
You will have come in contact with some of them.
87
243171
2592
μ§μ μ μ΄μ΄ μλ κ²½μ°λ μκ³
04:05
Maybe some of you have received an email
88
245763
2096
νΉμ μ΄λ° μ΄λ©μΌμ
λ°μΌμ
¨μμ§λ λͺ¨λ¦
λλ€.
04:07
that says something like, "Hi, I'm a Nigerian banker,
89
247859
4085
"μλ
νμλκΉ,
μ λ λμ΄μ§λ¦¬μμ κΈμ΅μ
μμΈλ°,
04:11
and I'd like to give you 53 billion dollars
90
251944
2764
λΉμ μκ² 530μ΅ λ¬λ¬λ₯Ό
λλ¦¬κ³ μΆμ΅λλ€.
04:14
because I like your face."
91
254708
2427
λΉμ μ μΌκ΅΄μ΄ λ§μμ λ€μ΄μμ."
04:17
Or funnycats.exe, which rumor has it
92
257135
3394
νΉμ funnycats.exe (μκΈ΄ κ³ μμ΄ λμμ)μμ.
μλ¬ΈμΌλ‘λ
04:20
was quite successful in China's recent campaign against America.
93
260529
3769
μ΅κ·Ό μ€κ΅μ΄ λ―Έκ΅μ 곡격νλλ°
μλΉν ν¨κ³Όμ μ΄μλ€κ³ νλκ΅°μ.
04:24
Now there are many ways you can get infected.
94
264298
2430
μ΄μ²λΌ κ°μΌλ μ μλ
κ²½λ‘λ λ§μ΄ μμ΅λλ€.
04:26
I want to show you a couple of my favorites.
95
266728
1987
μ κ° μ μΌ μ’μνλ
λͺκ°λ₯Ό 보μ¬λ리μ§μ.
04:28
This is a little USB key.
96
268715
2660
μ΄κ²μ μμ USB ν€μ
λλ€.
04:31
Now how do you get a USB key to run in a business?
97
271375
2157
μ΄ USB ν€κ° νμ¬ μμμ λκ² νλ €λ©΄,
μ΄λ»κ² ν΄μΌν κΉμ?
04:33
Well, you could try looking really cute.
98
273532
4125
μμ£Ό κ·μ½κ² λΆνν μλ μκ² μ§μ.
04:37
Awww.
99
277657
1938
μ΄μ .
04:39
Or, in my case, awkward and pathetic.
100
279595
2363
μλλ©΄, μ κ°μ κ²½μ°μλ,
μ΄μνκ³ μ μ²λ‘μ΄ λͺ¨μ΅μΌλ‘ μ κ·Όνκ² μ§μ.
04:41
So imagine this scenario: I walk into one of your businesses,
101
281958
4189
μλ₯Ό λ€λ©΄ μ΄λ° μν©μ μμν΄λ³΄μΈμ:
μ κ° μ¬λ¬λΆλ€ μ€ νλμ νμ¬μ μ°Ύμμ΅λλ€.
04:46
looking very awkward and pathetic, with a copy of my C.V.
102
286147
2842
μμ£Ό μ΄μνκ³ λΆμν λͺ¨μ΅μΌλ‘
μ΄λ ₯μλ₯Ό λ€κ³ μλλ°
04:48
which I've covered in coffee,
103
288989
1899
μ΄λ ₯μκ° μ»€νΌμ μ μ΄μλ κ±°μμ.
04:50
and I ask the receptionist to plug in this USB key
104
290888
3387
μ λ μ μ λ΄λΉμμκ²
μ΄ USB ν€λ₯Ό μ£Όλ©΄μ
04:54
and print me a new one.
105
294275
1949
μ΄λ ₯μλ₯Ό μλ‘ νλ¦°νΈ ν΄μ£Όμλ©΄ μλ κΉμ
νκ³ λΆννλ κ²λλ€.
04:56
So let's have a look here on my victim computer.
106
296224
3230
μ, κ·ΈλΌ μ΄μ νΌν΄μμ
μ»΄ν¨ν°λ₯Ό μ΄ν΄λ³΄μ£ .
04:59
What I'm going to do is plug in the USB key.
107
299454
3246
USB ν€λ₯Ό κΌ½μλ³΄κ² μ΅λλ€.
05:02
After a couple of seconds,
108
302700
1490
λͺμ΄ νμ
05:04
things start to happen on the computer on their own,
109
304190
2751
μ»΄ν¨ν°κ° μκΈ° λ§μλλ‘
μλνκΈ° μμν©λλ€.
05:06
usually a bad sign.
110
306941
1935
λ³΄ν΅ μ μ’μ μ§μ‘°μ£ .
05:08
This would, of course, normally happen
111
308876
1694
μ€μ λ‘ μ΄ κ³΅κ²©μ
05:10
in a couple of seconds, really, really quickly,
112
310570
2758
λͺμ΄λ§μ κ΅μ₯ν λΉ λ₯΄κ²
μΌμ΄λκ² μ§λ§
05:13
but I've kind of slowed it down
113
313328
1660
μ¬λ¬λΆμ΄ 곡격 κ³Όμ μ
μ§μ λ³΄μ€ μ μκ²
05:14
so you can actually see the attack occurring.
114
314988
2830
μλλ₯Ό μ€μ¬μ
보μ¬λλ¦¬κ² μ΅λλ€.
05:17
Malware is very boring otherwise.
115
317818
2517
μ
μ± μ½λλ κ·Έκ±° λΉΌκ³€
μ§λ£¨νκ±°λ μ.
05:20
So this is writing out the malicious code,
116
320335
2597
μ¬κΈ° μ΄λ κ² μ
μ± μ½λκ°
μ°μ΄κ³ μμ΅λλ€.
05:22
and a few seconds later, on the left-hand side,
117
322932
3797
λͺμ΄ νμ, μΌμͺ½ νΈμ 보μλ©΄
05:26
you'll see the attacker's screen get some interesting new text.
118
326729
4298
곡격μμ νλ©΄μ
ν₯λ―Έλ‘μ΄ λ¬Έμκ° λ¨μ£ .
05:31
Now if I place the mouse cursor over it,
119
331027
1931
λ§μ°μ€ 컀μλ₯Ό
μλ‘ μμ§μ¬ λ³ΌκΉμ.
05:32
this is what we call a command prompt,
120
332958
2307
μ΄κ²μ΄ λͺ
λ Ή ν둬ννΈλΌλ κ²μ
λλ€.
05:35
and using this we can navigate around the computer.
121
335265
3797
μ΄κ²μ μ΄μ©ν΄μ
μ»΄ν¨ν° μμ νμν μ μμ΅λλ€.
05:39
We can access your documents, your data.
122
339062
2159
μ¬λ¬λΆμ λ¬Έμμ λ°μ΄ν°λ₯Ό μ΄μ μκ³ ,
05:41
You can turn on the webcam.
123
341221
1501
μΉμΊ μ μΌ€ μλ μμ΄μ.
05:42
That can be very embarrassing.
124
342722
1629
κ·Έλ κ² λλ©΄ μλΉν μ°½νΌν μΌμ΄
μΌμ΄λ μλ μκ³ μ.
05:44
Or just to really prove a point,
125
344351
1723
μ΄ κ³΅κ²©μ΄ μ΄λ€κ±΄μ§
νμ€ν 보μ¬λ리μλ©΄
05:46
we can launch programs like my personal favorite,
126
346074
3121
νλ‘κ·Έλ¨μ μμν μλ μμ΅λλ€.
μ κ° μ μΌ μ’μνλ 건
05:49
the Windows Calculator.
127
349195
2805
μλμ°μ¦ κ³μ°κΈ°μμ.
05:52
So isn't it amazing how much control
128
352000
2288
곡격μκ° μ΄λ κ² κ°λ¨ν λ°©λ²μΌλ‘
05:54
the attackers can get with such a simple operation?
129
354288
2895
μΌλ§λ λ§μ κΆνμ κ°μ§ μ μλμ§
λλμ§ μμ΅λκΉ?
05:57
Let me show you how most malware
130
357183
1931
μμ¦μ λλΆλΆμ μ
μ± μ½λκ°
05:59
is now distributed today.
131
359114
2183
μ΄λ»κ² λ°°ν¬λλμ§
보μ¬λλ¦¬κ² μ΅λλ€.
06:01
What I'm going to do is open up a website
132
361297
2520
μ κ° μ§μ λ§λ
06:03
that I wrote.
133
363817
1316
μΉμ¬μ΄νΈλ₯Ό νλ²
μ΄μ΄λ³΄κ² μ΅λλ€.
06:05
It's a terrible website. It's got really awful graphics.
134
365133
4315
μμ£Ό λμ°ν μΉμ¬μ΄νΈμ£ .
보기 νλ λͺ¨μμ΄λ€μ.
06:09
And it's got a comments section here
135
369448
2194
μ¬κΈ°μλ λκΈμ°½μ΄ μμ΄μ
06:11
where we can submit comments to the website.
136
371642
3681
μΉμ¬μ΄νΈμ λκΈμ λ¬ μ μκ²
ν΄ λμμ΅λλ€.
06:15
Many of you will have used something a bit like this before.
137
375323
3007
μ¬λ¬λΆ μ€ λ§μ λΆμ΄ μ΄κ²κ³Ό λΉμ·ν κ±Έ
μ¨ λ³΄μ
¨μ κ²λλ€.
06:18
Unfortunately, when this was implemented,
138
378330
1947
λΆννλ, μ΄ μΉμ¬μ΄νΈλ₯Ό λ§λ€μμ λ,
06:20
the developer was slightly inebriated
139
380277
2425
κ°λ°μκ° μ½κ° μ μ μ·¨ν΄ μμ΄μ
06:22
and managed to forget
140
382702
1242
μ½λλ₯Ό μΈ λ
06:23
all of the secure coding practices he had learned.
141
383944
2989
보μμ μν κ΄λ‘λ€μ
λ€ μμ΄λ²λ Έμ΄μ.
06:26
So let's imagine that our attacker,
142
386933
3066
μ, μ΄μ 곡격μλ₯Ό
νλ² μμν΄ λ³΄μμμ€.
06:29
called Evil Hacker just for comedy value,
143
389999
3448
μ½λ―Έλλ₯Ό μν΄ κ·Έμ μ΄λ¦μ
μ¬μ
ν ν΄μ»€λΌκ³ λΆμ¬λ³΄μ£ .
06:33
inserts something a little nasty.
144
393447
2023
κ·Έκ° μ΄ λκΈμ°½μ
μ½κ° λͺ»λ μ§μ ν΄λ΄
λλ€.
06:35
This is a script.
145
395470
1699
μ΄κ±΄ μ€ν¬λ¦½νΈμμ.
06:37
It's code which will be interpreted on the webpage.
146
397169
4077
μΉνμ΄μ§μμ ν΄λ
λλ μ½λμ
λλ€.
06:41
So I'm going to submit this post,
147
401246
2325
μ΄ λκΈμ λ¬κ³ ,
06:43
and then, on my victim computer,
148
403571
2382
μ΄μ νΌν΄μμ μ»΄ν¨ν°μμ,
06:45
I'm going to open up the web browser
149
405953
2027
μΉ λΈλΌμ°μ λ₯Ό μΌκ³
06:47
and browse to my website,
150
407980
2253
μΉμ¬μ΄νΈλ‘ κ°λ³΄κ² μ΅λλ€.
06:50
www.incrediblyhacked.com.
151
410233
3789
www.incrediblyhacked.com μμ.
06:54
Notice that after a couple of seconds,
152
414022
2124
λͺμ΄ λ€μ
06:56
I get redirected.
153
416146
1457
μλμΌλ‘ λ€λ₯Έ μΉνμ΄μ§λ‘
μ΄λνλ κ±Έ 보μΈμ.
06:57
That website address at the top there,
154
417603
1977
κ·Έ μΉμ¬μ΄νΈμ μ£Όμλ
06:59
which you can just about see, microshaft.com,
155
419580
3331
μ¬κΈ° μ μ보μ΄μκ² μ§λ§
microshaft.com μ
λλ€.
07:02
the browser crashes as it hits one of these exploit packs,
156
422911
3193
μ΄λ° "μ΅μ€νλ‘μ ν©"μ μ μνλ©΄
μΉλΈλΌμ°μ κ° κ°μκΈ° λ©μΆλ©΄μ
07:06
and up pops fake antivirus.
157
426104
4024
κ°μ§ μν° λ°μ΄λ¬μ€ μ°½μ΄ λΉλλ€.
07:10
This is a virus pretending to look like antivirus software,
158
430128
5056
μ΄κ±΄ μν°λ°μ΄λ¬μ€ μννΈμ¨μ΄μ²λΌ 보μ΄λλ‘
λ§λ€μ΄μ§ λ°μ΄λ¬μ€μ
λλ€.
07:15
and it will go through and it will scan the system,
159
435184
2365
μ΄ λ°μ΄λ¬μ€κ° μ΄μ
μ»΄ν¨ν° μ 체λ₯Ό μ€μΊν κ±°μμ.
07:17
have a look at what its popping up here.
160
437549
1508
μ¬κΈ°μ λ¬΄μ¨ μ°½μ΄ λ¨λμ§ λ³΄μΈμ.
07:19
It creates some very serious alerts.
161
439057
1748
μμ£Ό μ¬κ°ν κ²½κ³ μ°½μ
λμ°κ³ μλ€μ.
07:20
Oh look, a child porn proxy server.
162
440805
2343
μλ, μλ ν¬λ₯΄λ
Έ νλ‘μ μλ²λΌλ,
07:23
We really should clean that up.
163
443148
2432
λ°λμ μμ ν΄μΌκ² μ΄μ.
07:25
What's really insulting about this is
164
445580
1584
μ΄ λ°μ΄λ¬μ€κ° μ λ§ λͺ¨μμ μΈ μ΄μ λ
07:27
not only does it provide the attackers with access to your data,
165
447164
4238
μ΄λ₯Ό ν΅ν΄ 곡격μλ€μ
μ¬λ¬λΆμ λ°μ΄ν°λ₯Ό νμΉ λΏ μλλΌ
07:31
but when the scan finishes, they tell you
166
451402
2823
μ€μΊμ΄ λλλ©΄ μ¬λ¬λΆμκ²
07:34
in order to clean up the fake viruses,
167
454225
3123
μ΄ κ°μ§ λ°μ΄λ¬μ€λ₯Ό
μ²μνκΈ° μν΄μλ,
07:37
you have to register the product.
168
457348
2676
μ΄ κ°μ§ μνμ λ±λ‘ν΄μΌ νλ€κ³
ν κ²μ΄λΌλ κ²λλ€.
07:40
Now I liked it better when viruses were free.
169
460024
3336
λ°μ΄λ¬μ€κ° 곡μ§μΌ λκ°
μ’μλλ° λ§μ΄μ£ .
07:43
(Laughter)
170
463360
2779
(μμ)
07:46
People now pay cybercriminals money
171
466139
2526
μ΄μ μ¬λλ€μ μ¬μ΄λ² λ²μ£μλ€μκ²
07:48
to run viruses,
172
468665
2101
λμ μ£Όλ©΄μ λ°μ΄λ¬μ€λ₯Ό λλ¦¬κ² ν΄μ.
07:50
which I find utterly bizarre.
173
470766
2761
μν©μ΄ μμ£Ό μ΄μνκ² λλ²λ Έμ§μ.
07:53
So anyway, let me change pace a little bit.
174
473527
3536
μ무νΌ, μ£Όμ λ₯Ό μ‘°κΈ λ°κΏλ³ΌκΉμ.
07:57
Chasing 250,000 pieces of malware a day
175
477063
3506
λ§€μΌ 250,000κ°μ
μ
μ± μ½λλ₯Ό μ«λ κ²μ
08:00
is a massive challenge,
176
480569
1655
κ±°λν λμ μ
λλ€.
08:02
and those numbers are only growing
177
482224
2070
μ΄ μ«μλ λμ΄λκΈ°λ§ ν λΏμ΄μ£ .
08:04
directly in proportion to the length of my stress line, you'll note here.
178
484294
3879
κ·Έμ ν¨κ» μ¬κΈ° 보μλ
μ μ€νΈλ μ€ μ£Όλ¦λ κΈΈμ΄μ§κ³ μκ³ μ.
08:08
So I want to talk to you briefly
179
488173
1876
κ·Έλμ μ¬λ¬λΆμκ² μ§§κ²λλ§
08:10
about a group of hackers we tracked for a year
180
490049
3050
μ°λ¦¬κ° 1λ
λμ μ«μμ
μ€μ λ‘ μ°ΎμλΈ
08:13
and actually found --
181
493099
2007
ν΄μ»€ κ·Έλ£Ήμ κ΄ν΄
μ΄μΌκΈ°λ₯Ό ν΄λλ¦¬κ² μ΅λλ€.
08:15
and this is a rare treat in our job.
182
495106
2577
μ ν¬ μ§μ
μμλ
νμΉ μμ μ¬κ±΄μ΄μ£ .
08:17
Now this was a cross-industry collaboration,
183
497683
2483
μ΄κ²μ μ¬λ¬ λΆμΌμ
νμ
μ΄μμ΅λλ€.
08:20
people from Facebook, independent researchers,
184
500166
2389
νμ΄μ€λΆ μ§μλ€κ³Ό,
λ
립 μ°κ΅¬μλ€κ³Ό,
08:22
guys from Sophos.
185
502555
2081
μν¬μ€μ μ§μλ€μ΄
νμ ν©μ³€μ΅λλ€.
08:24
So here we have a couple of documents
186
504636
2655
μ¬κΈ° 보μλ κ²μ
μ΄ μ¬μ΄λ² λ²μ£μλ€μ΄
08:27
which our cybercriminals had uploaded
187
507291
2826
μ¬λ¬λΆλ€λ λ§μ΄ μ¬μ©νμ€
08:30
to a cloud service, kind of like Dropbox or SkyDrive,
188
510117
4377
λλ‘λ°μ€λ μ€μΉ΄μ΄ λλΌμ΄λΈ κ°μ
ν΄λΌμ°λ μλΉμ€μ
08:34
like many of you might use.
189
514494
2209
μ
λ‘λν λ¬Έμλ€μ
λλ€.
08:36
At the top, you'll notice a section of source code.
190
516703
3392
μμͺ½μ μμ€ μ½λμ
μΌλΆλΆμ΄ 보μ
λλ€.
08:40
What this would do is send the cybercriminals
191
520095
2968
μ΄κ² μ¬μ΄λ² λ²μ£μλ€μκ²
08:43
a text message every day telling them how much money
192
523063
5040
λ§€μΌ κ·Έλ€μ΄ κ·Έλ
ν루 μΌλ§λ₯Ό λ²μλμ§
08:48
they'd made that day,
193
528103
1666
λ¬Έμ λ©μΈμ§λ₯Ό 보λ΄μ€λλ€.
08:49
so a kind of cybercriminal billings report, if you will.
194
529769
3296
λ§νμλ©΄ μ¬μ΄λ² λ²μ£
μμ
κΈ λ΄μμ κ°μ κ²μ΄μ£ .
08:53
If you look closely, you'll notice a series
195
533065
2757
μμΈν 보μλ©΄, μ¬κΈ°μ
08:55
of what are Russian telephone numbers.
196
535822
2983
λ¬μμ μ ν λ²νΈ λͺ©λ‘μ΄
보μ΄μ€ κ²λλ€.
08:58
Now that's obviously interesting,
197
538805
1479
λΆλͺ
ν ν₯λ―Έλ‘μ΄ λ°κ²¬μ΄μ£ .
09:00
because that gives us a way of finding our cybercriminals.
198
540284
3237
μ΄ μ¬μ΄λ² λ²μ£μλ€μ
μ°ΎμλΌ λ°©λ²μ΄λκΉμ.
09:03
Down below, highlighted in red,
199
543521
2115
μλμͺ½μ λΉ¨κ°μμΌλ‘ νμλ κ³³μ
09:05
in the other section of source code,
200
545636
1751
μμ€ μ½λμ λ€λ₯Έ λΆλΆμΌλ‘
09:07
is this bit "leded:leded."
201
547387
2743
leded:leded λΌκ³ μ νμμ΅λλ€.
09:10
That's a username,
202
550130
1289
κ·Έκ² μ¬μ©μ μ΄λ¦μ΄μμ.
09:11
kind of like you might have on Twitter.
203
551419
2859
μ¬λ¬λΆ νΈμν°μ
μμ΄λ κ°μ κ²μ
λλ€.
09:14
So let's take this a little further.
204
554278
1231
μ¬κΈ°μ μ’ λ λκ°λ³ΌκΉμ.
09:15
There are a few other interesting pieces
205
555509
2258
μ¬μ΄λ² λ²μ£μκ° μ
λ‘λν κ² μ€
09:17
the cybercriminals had uploaded.
206
557767
2275
λͺκ°μ§ ν₯λ―Έλ‘μ΄ κ² μμ΅λλ€.
09:20
Lots of you here will use smartphones
207
560042
2572
μ¬κΈ°μ κ³μ λ§μ λΆλ€μ΄
μ΄ μ»¨νΌλ°μ€μμ
09:22
to take photos and post them from the conference.
208
562614
2647
μ€λ§νΈν°μΌλ‘ μ¬μ§μ μ°κ³
μΈν°λ·μ μ¬λ¦¬μ€ κ²λλ€.
09:25
An interesting feature of lots of modern smartphones
209
565261
2837
μμ¦μ μ€λ§νΈν°μ
ν₯λ―Έλ‘μ΄ νΉμ§μ
09:28
is that when you take a photo,
210
568098
1667
μ¬μ§μ μ°μμ λ
09:29
it embeds GPS data about where that photo was taken.
211
569765
4237
μ¬μ§μ΄ μ°ν μμΉμ GPS μ 보κ°
λ΄μ₯λλ€λ κ²μ
λλ€.
09:34
In fact, I've been spending a lot of time
212
574002
2443
μ¬μ€μ, μ μ΅κ·Όμ
09:36
on Internet dating sites recently,
213
576445
2244
μΈν°λ· λ§λ¨ μ¬μ΄νΈμμ
λ§μ μκ°μ 보λμ΄μ.
09:38
obviously for research purposes,
214
578689
2411
λΉμ°ν μ°κ΅¬ λͺ©μ μ΄μ£ .
09:41
and I've noticed that about 60 percent
215
581100
3521
κ·Έλ¦¬κ³ μ κ° λ°κ²¬ν κ²μ,
μΈν°λ· λ§λ¨ μ¬μ΄νΈμ μ¬λΌμ€λ
09:44
of the profile pictures on Internet dating sites
216
584621
2823
νλ‘ν μ¬μ§μ 60%κ°
09:47
contain the GPS coordinates of where the photo was taken,
217
587444
4451
μ¬μ§μ΄ μ°ν GPS μμΉ μ 보λ₯Ό
λ΄κ³ μλ€λ κ±°μμ΄μ.
09:51
which is kind of scary
218
591895
1061
μ΄μ©λ©΄ κ½€ 무μμ΄ μΌμ΄μ£ .
09:52
because you wouldn't give out your home address
219
592956
2562
λ§μ λͺ¨λ₯΄λ μ¬λμκ²
09:55
to lots of strangers,
220
595518
1449
μ¬λ¬λΆμ μ§ μ£Όμλ₯Ό
곡κ°νκ³ μΆμ§λ μμμμ.
09:56
but we're happy to give away our GPS coordinates
221
596967
1994
νμ§λ§ μ°λ¦¬λ 15λ―Έν° μ€μ°¨λ΄λ‘
09:58
to plus or minus 15 meters.
222
598961
4029
μ°λ¦¬μ GPS μμΉλ₯Ό
λ§μκ» κ³΅κ°νκ³ μκ³
10:02
And our cybercriminals had done the same thing.
223
602990
3234
μ΄ μ¬μ΄λ² λ²μ£μλ€λ
λ§μ°¬κ°μ§μμ΅λλ€.
10:06
So here's a photo which resolves to St. Petersburg.
224
606224
3204
κ·Έλ κ² μ¬κΈ° μνΈνν
λ₯΄λΆλ₯΄ν¬μμ
μ°μ μ¬μ§μ΄ μμ΄μ.
10:09
We then deploy the incredibly advanced hacking tool.
225
609428
3686
κ·Έλ¦¬κ³ μ ν¬λ μμ£Ό
κ³ κΈ ν΄νΉ λꡬλ₯Ό μ¬μ©νμ΅λλ€.
10:13
We used Google.
226
613114
2395
ꡬκΈμ΄μ.
10:15
Using the email address, the telephone number
227
615509
2225
μ΄λ©μΌ μ£Όμμ μ ν λ²νΈ
10:17
and the GPS data, on the left you see an advert
228
617734
3549
GPS λ°μ΄ν°λ₯Ό μ΄μ©ν΄μ,
μΌμͺ½μ 보μλ€μνΌ
10:21
for a BMW that one of our cybercriminals is selling,
229
621283
3669
μ°λ¦¬μ μ¬μ΄ λ²λ²μ£μκ° μμ μ BMW λ₯Ό
νλ €κ³ λ΄λμ κ΄κ³ λ₯Ό μ°Ύμλμ΄μ.
10:24
on the other side an advert for the sale of sphynx kittens.
230
624952
5348
λ°λμͺ½μ 보μλ©΄
μ€νν¬μ€ κ³ μμ΄ μλΌλ₯Ό νλ κ΄κ³ κ° μμ£ .
10:30
One of these was more stereotypical for me.
231
630300
3100
μ΄λ€ μ€ νλλ μ’ λ μ§λΆνμ΄μ.
10:33
A little more searching, and here's our cybercriminal.
232
633400
3989
μ½κ°μ κ²μ νμ
μ¬κΈ° μ°λ¦¬μ μ¬μ΄λ² λ²μ£μκ° λνλ©λλ€.
10:37
Imagine, these are hardened cybercriminals
233
637389
3546
μμν΄λ³΄μΈμ, μ΄λ€μ
κ²½νλ§μ μ¬μ΄λ² λ²μ£μλ€μ
λλ€.
10:40
sharing information scarcely.
234
640935
1868
μμ μ μ 보λ₯Ό μ 곡μ νμ§ μμ£ .
10:42
Imagine what you could find
235
642803
1148
κ·Έλ°λ°λ μ΄ μ λλΌλ©΄,
μ΄κ³³μ μλ νλΆ νλΆμ λν΄μλ
10:43
about each of the people in this room.
236
643951
1703
μΌλ§λ λ§μ μ 보λ₯Ό μ°Ύμ μ μκ² μ΄μ.
10:45
A bit more searching through the profile
237
645654
1806
νλ‘νμ μ’ λ λ€μ§λ©΄
10:47
and there's a photo of their office.
238
647460
1860
κ·Έλ€μ μ¬λ¬΄μ€ μ¬μ§μ΄ λΉλλ€.
10:49
They were working on the third floor.
239
649320
2048
3μΈ΅μμ μΌνκ³ μλ€μ.
10:51
And you can also see some photos
240
651368
2199
κ·Έμ μ¬μ
λμ
μλ€μ΄ μ°μ
10:53
from his business companion
241
653567
1175
μ¬μ§λ€λ λ³΄μ€ μ μκ³ μ.
10:54
where he has a taste in a certain kind of image.
242
654742
4839
νΉμ μ’
λ₯μ μ¬μ§μ
μ’μνλ κ² κ°κ΅°μ.
10:59
It turns out he's a member of the Russian Adult Webmasters Federation.
243
659581
3995
μκ³ λ³΄λ κ·Έλ λ¬μμ μ±μΈ μΉλ§μ€ν° μ°ν©μ
μΌμμ΄μμ΅λλ€.
11:03
But this is where our investigation starts to slow down.
244
663576
3017
νμ§λ§ μ¬κΈ°μλΆν°
μ‘°μ¬μ μ§μ μ΄ λλ €μ§λλ€.
11:06
The cybercriminals have locked down their profiles quite well.
245
666593
3943
μ΄ μ¬μ΄λ² λ²μ£μλ€μ μμ μ νλ‘νμ
κ½€ μ μ§μΌλ¨μ΄μ.
11:10
And herein is the greatest lesson
246
670536
2035
κ·ΈλΌ μ¬κΈ°μ μμ
λ―Έλμ΄μ
무μ λ¨λ§κΈ°λ₯Ό μ¬μ©ν λ
11:12
of social media and mobile devices for all of us right now.
247
672571
4578
κ°μ₯ μ€μν κ΅νμ λλ¦¬κ² μ΅λλ€.
11:17
Our friends, our families and our colleagues
248
677149
3730
μ°λ¦¬κ° μ무리 μ² μ νκ² λ³΄μμ μ§μΌλ
11:20
can break our security even when we do the right things.
249
680879
4689
μ°λ¦¬μ μΉκ΅¬, κ°μ‘±, νΉμ λλ£λ€μ΄
κ·Έ 보μμ νκ΄΄ν μ μλ€λ κ²λλ€.
11:25
This is MobSoft, one of the companies
250
685568
2780
μ΄κ²μ μ΄ μ¬μ΄λ² λ²μ£μ μ§λ¨μ΄
11:28
that this cybercriminal gang owned,
251
688348
2166
μμ ν νμ¬ μ€ νλμΈ
λ§μννΈμ
λλ€.
11:30
and an interesting thing about MobSoft
252
690514
1589
λ§μννΈμ ν₯λ―Έλ‘μ΄ μ μ
11:32
is the 50-percent owner of this
253
692103
2871
μ΄ νμ¬μ 50%μ μμ μ£Όκ°
11:34
posted a job advert,
254
694974
1947
κ΅¬μΈ κ΄κ³ λ₯Ό μ¬λ Έκ³
11:36
and this job advert matched one of the telephone numbers
255
696921
3380
κ·Έ κ΅¬μΈ κ΄κ³ μ μ νλ²νΈκ°
11:40
from the code earlier.
256
700301
2152
μ°λ¦¬κ° μ½λμμ μ°Ύμ
μ νλ²νΈ μ€ νλμ μΌμΉνλ€λ κ²μ
λλ€.
11:42
This woman was Maria,
257
702453
2125
μ¬κΈ° 보μλ 건
λ§λ¦¬μλΌλ μ¬μμΈλ°μ.
11:44
and Maria is the wife of one of our cybercriminals.
258
704578
2880
λ§λ¦¬μλ μ°λ¦¬κ° μ«λ
μ¬μ΄λ² λ²μ£μλ€ μ€ νλͺ
μ μλ΄μμ΅λλ€.
11:47
And it's kind of like she went into her social media settings
259
707458
3520
μ΄ μ¬μλ μμ
λ―Έλμ΄ μ€μ μμ
11:50
and clicked on every option imaginable
260
710978
2795
λͺ¨λ μ΅μ
μ μ£λ€ ν΄λ¦ν κ² κ°μμ΄μ.
11:53
to make herself really, really insecure.
261
713773
3697
보μμ μΌλ‘ μμ ν λ
ΈμΆλ μνμμ£ .
11:57
By the end of the investigation,
262
717470
1567
μ λ§ν¬λ₯Ό νκ³ κ°μλ©΄
11:59
where you can read the full 27-page report at that link,
263
719037
3559
μ ν¬ μ‘°μ¬ λ³΄κ³ μμ
27 νμ΄μ§ μ λ¬Έμ μ½μΌμ€ μ μλλ°μ.
12:02
we had photos of the cybercriminals,
264
722596
2034
μ‘°μ¬μ λ§μ§λ§μ―€μ
μ΄ μ¬μ΄λ² λ²μ£μλ€μ μ¬μ§μ μ°Ύμλμ΅λλ€.
12:04
even the office Christmas party
265
724630
2895
νμ¬ ν¬λ¦¬μ€λ§μ€ νν°λ
12:07
when they were out on an outing.
266
727525
1866
λ¨μ²΄ μΌμ νλ₯Ό κ°κ³ μλ μ¬μ§μ΄μ.
12:09
That's right, cybercriminals do have Christmas parties,
267
729391
3249
κ·Έλ μ΅λλ€, μ¬μ΄λ² λ²μ£μλ€λ
12:12
as it turns out.
268
732640
1588
ν¬λ¦¬μ€λ§μ€ νν°λ₯Ό νλ΅λλ€.
12:14
Now you're probably wondering what happened to these guys.
269
734228
2235
μ΄μ―€μμ μ¬λ¬λΆμ
μ΄λ€μ΄ μ΄λ»κ² λλμ§ κΆκΈνμ€ν
λ°μ.
12:16
Let me come back to that in just a minute.
270
736463
2937
그건 μ μ λ€μ λ§μλλ¦¬κ² μ΅λλ€.
12:19
I want to change pace to one last little demonstration,
271
739400
2747
λ§μ§λ§ μμ μλ²μ
νλλ₯Ό 보μ¬λλ¦¬κ³ μ.
12:22
a technique that is wonderfully simple and basic,
272
742147
3969
μμ£Ό κ°λ¨νκ³ κΈ°λ³Έμ μΈ κΈ°μ μ΄μ§λ§
12:26
but is interesting in exposing how much information
273
746116
3065
μ°λ¦¬κ° μΌλ§λ λ§μ μ 보λ₯Ό
λ
ΈμΆνκ³ μλμ§
12:29
we're all giving away,
274
749181
1776
보μ¬μ£Όλ ν₯λ―Έλ‘μ΄ μμ
λλ€.
12:30
and it's relevant because it applies to us as a TED audience.
275
750957
4278
λ TED μ°ΈμμμΈ
μ°λ¦¬λ€μκ² μ μ ν μμ΄μ§μ.
12:35
This is normally when people start kind of shuffling in their pockets
276
755235
2450
μ΄μ―€μμ μ¬λλ€μ
μ£Όλ¨Έλλ₯Ό λ€μ 거리며
12:37
trying to turn their phones onto airplane mode desperately.
277
757685
4218
νμ¬μ μΌλ‘ ν΄λ μ νλ₯Ό
λΉν λͺ¨λλ‘ μ ννλ €κ³ νμ£ .
12:41
Many of you all know about the concept
278
761903
1686
ν΄λ κΈ°κΈ°κ° λ¬΄μ λ€νΈμν¬λ₯Ό μ°ΎκΈ° μν΄
12:43
of scanning for wireless networks.
279
763589
2343
μ£Όλ³μ νμνλ κΈ°μ μ
μκ³ κ³μ€ κ²λλ€.
12:45
You do it every time you take out your iPhone or your Blackberry
280
765932
3401
μ¬λ¬λΆμ μμ΄ν°μ΄λ λΈλλ² λ¦¬λ₯Ό κΊΌλΌ λλ§λ€
μλμΌλ‘ μΌμ΄λλ μΌμ΄μ£ .
12:49
and connect to something like TEDAttendees.
281
769333
4020
κ·Έλ¦¬κ³ TEDAttendees κ°μ λ€νΈμν¬μ μ°κ²°λ κ²λλ€.
(μμ£Ό: TED μ°Έκ°μλ€μ μν 무μ λ€νΈμν¬)
12:53
But what you might not know
282
773353
1747
νμ§λ§ μ¬λ¬λΆμ΄
μλ§ λͺ¨λ₯΄μ€ κ²μ
12:55
is that you're also beaming out a list of networks
283
775100
4751
μ΄λ μ¬λ¬λΆμ΄
μ΄μ μ μ°κ²°νλ
12:59
you've previously connected to,
284
779851
2422
λ€νΈμν¬μ λͺ©λ‘λ
μ‘μΆλλ€λ κ²μ
λλ€.
13:02
even when you're not using wireless actively.
285
782273
4147
μ§μ 무μ μΈν°λ·μ
μ°κ³ κ³μμ§ μλ λμλμ.
13:06
So I ran a little scan.
286
786420
1727
μ κ° μ κΉ μ€μΊμ ν΄λ΄€μ΅λλ€.
13:08
I was relatively inhibited compared to the cybercriminals,
287
788147
2926
λ²μ μκ΄νμ§ μλ
μ¬μ΄λ² λ²μ£μλ€μ λΉνλ©΄
13:11
who wouldn't be so concerned by law,
288
791073
2544
μ λ λΉκ΅μ μ‘°μ¬μ€λ½κ² μ€μΊνλλ°μ.
13:13
and here you can see my mobile device.
289
793617
2587
μ¬κΈ° μ 무μ κΈ°κΈ°κ° μμ΅λλ€.
13:16
Okay? So you can see a list of wireless networks.
290
796204
2654
보μ΄μμ£ ?
무μ λ€νΈμν¬ λͺ©λ‘μ΄ λ¨λ κ±°μ.
13:18
TEDAttendees, HyattLB. Where do you think I'm staying?
291
798858
4627
TEDAttendees, HyattLB (μμ£Ό: λ‘±λΉμΉ νμΌνΈ νΈν
)
μ κ° μ΄λμ λ¬΅κ³ μλμ§ μμκ² μ£ ?
13:23
My home network, PrettyFlyForAWifi,
292
803485
3493
PrettyFlyforAWifi λ μ μ§μ λ€νΈμν¬μμ.
13:26
which I think is a great name.
293
806978
1765
λ©μ§ λ€νΈμν¬ μ΄λ¦μ΄λΌκ³ μκ°ν΄μ.
13:28
Sophos_Visitors, SANSEMEA, companies I work with.
294
808743
2767
Sophos_Visitors, SANSEMEA,
μ κ° μΌνλ νμ¬λ€λ λμ€λ€μ.
13:31
Loganwifi, that's in Boston. HiltonLondon.
295
811510
3308
Loganwifi, 보μ€ν€μ μμ΄μ. HiltonLondon.
(μμ£Ό: λ°λ ννΌ νΈν
)
13:34
CIASurveillanceVan.
296
814818
2441
CIASurveillanceVan.
(μμ£Ό: CIA κ°μ μ°¨λ)
13:37
We called it that at one of our conferences
297
817259
1609
μ 건 μ ν¬ μ»¨νΌλ°μ€μ
무μ λ€νΈμν¬μΈλ°
13:38
because we thought that would freak people out,
298
818868
1736
μ¬λλ€μ λλΌκ² ν΄μ£Όλ €κ³
μ λ° μ΄λ¦μ λΆμ¬λ΄€μ΄μ.
13:40
which is quite fun.
299
820604
1994
μ¬λ°μμμ.
13:42
This is how geeks party.
300
822598
4658
μ΄κ² κ΄΄μ§λ€μ΄ νν°νλ λ°©λ²μ΄μ£ .
13:47
So let's make this a little bit more interesting.
301
827256
2207
μ΄κ±Έ μ’ λ ν₯λ―Έλ‘κ² ν΄λ΄
μλ€.
13:49
Let's talk about you.
302
829463
2538
μ¬λ¬λΆμ λν΄ μκΈ°ν΄λ³΄μ£ .
13:52
Twenty-three percent of you have been to Starbucks
303
832001
2110
μ¬λ¬λΆ μ€ 23%κ°
μ΅κ·Ό μ€νλ²
μ€λ₯Ό λ°©λ¬Έν΄
13:54
recently and used the wireless network.
304
834111
3115
κ·Έκ³³μ 무μ μΈν°λ·μ μ¬μ©νμ
¨κ΅°μ.
13:57
Things get more interesting.
305
837226
1164
μ¬κΈ°μ λ μ¬λ°μ΄μ§λλ€.
13:58
Forty-six percent of you I could link to a business,
306
838390
2446
μ¬λ¬λΆ μ€ 46%λ
μ΄λ€ νμ¬μ
14:00
XYZ Employee network.
307
840836
2870
μ§μ μ μ© λ¬΄μ λ€νΈμν¬μ
μ°κ²°ν κΈ°λ‘μ΄ μμμ΅λλ€.
14:03
This isn't an exact science, but it gets pretty accurate.
308
843706
4179
κ³Όνμ²λΌ λ± λ§λ 건 μλμ§λ§
μλΉν μ νν©λλ€.
14:07
Seven hundred and sixty-one of you I could identify a hotel you'd been to recently,
309
847885
4469
μ¬λ¬λΆ μ€ 761λͺ
μ
μ΄ μ§κ΅¬μμμ μ νν μ΄λμ μλ
14:12
absolutely with pinpoint precision somewhere on the globe.
310
852354
3839
μ΄λ νΈν
μ μ΅κ·ΌκΉμ§ λ¨Έλ¬Όλ λμ§
μ°ΎμλΌ μ μμμ΅λλ€.
14:16
Two hundred and thirty-four of you, well, I know where you live.
311
856193
3948
μ¬λ¬λΆ μ€ 234λͺ
μ
μ κ° μ§ μμΉλ₯Ό μκ³ μμ΅λλ€.
14:20
Your wireless network name is so unique
312
860141
2319
μ¬λ¬λΆμ 무μ λ€νΈμν¬ λͺ
μΉμ μ μΌν΄μ
14:22
that I was able to pinpoint it
313
862460
1549
ν΄νΉμ΄λ κΈ°λ°ν λ°©λ²μ μ°μ§ μκ³ λ
14:24
using data available openly on the Internet
314
864009
2667
μΈν°λ·μ 곡κ°λ λ°μ΄ν°λ§ κ°μ§κ³ λ
14:26
with no hacking or clever, clever tricks.
315
866676
4248
κ·Έ μμΉλ₯Ό μ νν μ°ΎμλΌ μ μμμ΄μ.
14:30
And I should mention as well that
316
870924
1820
νκ°μ§ λ λ§μλ릴 κ²μ
14:32
some of you do use your names,
317
872744
1542
μ΄λ€ λΆλ€μ κΈ°κΈ°μ
μμ μ μ€λͺ
μ μ΄λ¦λΆμ¬ μ£Όλκ΅°μ.
14:34
"James Lyne's iPhone," for example.
318
874286
2596
"μ μμ€ λΌμΈμ μμ΄ν°" μ΄λ° μμΌλ‘μ.
14:36
And two percent of you have a tendency to extreme profanity.
319
876882
4358
κ·Έλ¦¬κ³ μ¬λ¬λΆλ€ μ€ 2%λ
μ¬ν λΉμμ΄λ₯Ό μ¦κ²¨ μ°μλ κ² κ°λκ΅°μ.
14:41
So something for you to think about:
320
881240
2004
μκ°ν΄λ³΄μκΈ° λ°λλλ€.
14:43
As we adopt these new applications and mobile devices,
321
883244
3913
μλ‘μ΄ μ΄ν리μΌμ΄μ
κ³Ό
무μ κΈ°κΈ°λ€μ μ¬μ©νκΈ° μμν λ,
14:47
as we play with these shiny new toys,
322
887157
2317
μ°λ¦¬κ° μ΄ λ°μ§μ΄λ
μ μ₯λκ°λ€μ μ΄ λ,
14:49
how much are we trading off convenience
323
889474
3822
μΌλ§λ λ§μ κ°μΈ μ¬μνκ³Ό 보μμ
14:53
for privacy and security?
324
893296
2890
νΈλ¦¬ν¨κ³Ό λ§λ°κΎΈκ³ μμ΅λκΉ?
14:56
Next time you install something,
325
896186
2058
λ€μ λ²μ λκ° μ€μΉνμ€ λλ,
14:58
look at the settings and ask yourself,
326
898244
2304
μ€μ μ μ 보μκ³
μμ μκ² λ¬Όμ΄λ³΄μΈμ.
15:00
"Is this information that I want to share?
327
900548
3552
"μ΄κ² μ λ§ λ΄κ° λλκ³ μΆμ μ 보μΈκ°?
15:04
Would someone be able to abuse it?"
328
904100
2890
λκ΅°κ°κ° μ΄κ±Έ μ
μ©ν μ μλκ°?"
15:06
We also need to think very carefully
329
906990
2072
λ μ°λ¦¬λ λ―Έλμ μ¬λ₯μλ μΌκΎΌλ€μ
15:09
about how we develop our future talent pool.
330
909062
4141
μ΄λ»κ² ν€μλκ° κ²μΈμ§
μ£Όμ κΉκ² κ³ λ €ν΄μΌ ν©λλ€.
15:13
You see, technology's changing at a staggering rate,
331
913203
2979
μ°λ¦¬μ κΈ°μ λ ₯μ
λ―ΏκΈ° μ΄λ €μ΄ μλλ‘ λ°μ νκ³ μκ³ ,
15:16
and that 250,000 pieces of malware
332
916182
3176
μ§κΈ μλ 250,000 κ°μ μ
μ± μ½λλ
15:19
won't stay the same for long.
333
919358
2872
κ·Έλλ‘ λ¨Έλ¬Όλ¬ μμ§λ μμ κ²λλ€.
15:22
There's a very concerning trend
334
922230
2198
νμ¬ λ§€μ° μ°λ €λλ νμμ
15:24
that whilst many people coming out of schools now
335
924428
3193
μ€λλ νκ΅λ₯Ό μ‘Έμ
νκ³
μ¬νμ λμ€λ μ μμ΄λ€μ
15:27
are much more technology-savvy, they know how to use technology,
336
927621
4412
μ λ³΄λ€ ν¨μ¬ κΈ°μ κ³Ό μΉκ·Όνκ³
λ μ¬μ©ν μ€ μμ§λ§
15:32
fewer and fewer people are following the feeder subjects
337
932033
3613
μ μ λ μ μ μ«μμ μ¬λλ€λ§μ΄
15:35
to know how that technology works under the covers.
338
935646
4324
κ·Έ κΈ°μ μ κ·Όλ³Έμ μΈ μ§μμ
λ°°μ°κ³ μλ€λ κ²μ
λλ€.
15:39
In the U.K., a 60 percent reduction since 2003,
339
939970
4385
μκ΅μμλ κ³ λ±νκ΅ A λ 벨 IT κ³Όλͺ© μκ°μμ΄
2003λ
λΆν° μ§κΈκΉμ§ 60%λ μ€μμ΅λλ€.
15:44
and there are similar statistics all over the world.
340
944355
3775
μ΄κ±΄ μ μΈκ³μ μΌλ‘ λΉμ·ν μΆμΈμ
λλ€.
15:48
We also need to think about the legal issues in this area.
341
948130
4076
λ λ²μ μΈ λ¬Έμ λ€μ λν΄
μκ°ν΄λ΄μΌ ν©λλ€.
15:52
The cybercriminals I talked about,
342
952206
1527
μ κ° μκΉ λ³΄μ¬λλ Έλ
μ¬μ΄λ² λ²μ£μλ€μ
15:53
despite theft of millions of dollars,
343
953733
2139
μλ°±λ§ λ¬λ¬λ₯Ό νμ³€μ§λ§
15:55
actually still haven't been arrested,
344
955872
2109
μ¬μ€ μμ§λ 체ν¬λμ§ μμκ³
15:57
and at this point possibly never will.
345
957981
3559
μλ§ μμ 체ν¬λμ§ μμ κ²μ
λλ€.
16:01
Most laws are national in their implementation,
346
961540
3500
κ±°μ λͺ¨λ λ²μ΄ κ΅λ΄μμλ§ μ μ©λκ³ ,
16:05
despite cybercrime conventions, where the Internet
347
965040
3999
μΈν°λ·μ κ·Έ μ체κ°
κ΅κ²½μ΄ μκ³ κ΅μ μ μ΄λΌλ
16:09
is borderless and international by definition.
348
969039
3106
μ¬μ΄λ² λ²μ£μ κ΄λ‘μλ λΆκ΅¬νκ³
16:12
Countries do not agree, which makes this area
349
972145
2833
λλΌλ€μ΄ μλ‘ ν©μνμ§ μκΈ° λλ¬Έμ
16:14
exceptionally challenging from a legal perspective.
350
974978
3617
μ¬μ΄λ² 보μμ λ²μ μΈ λ©΄μμ
λλ¨ν μ΄λ ΅μ΅λλ€.
16:18
But my biggest ask is this:
351
978595
4360
νμ§λ§ μ κ° μ¬λ¬λΆμκ² λ리λ
κ°μ₯ ν° λΆνμ μ΄κ±°μμ:
16:22
You see, you're going to leave here
352
982955
1642
μ¬λ¬λΆμ μ΄κ³³μ λ λ νμλ
16:24
and you're going to see some astonishing stories in the news.
353
984597
3717
λ΄μ€μμ μμ£Ό λλλ§ν
μμλ€μ μ νμ€ κ²λλ€.
16:28
You're going to read about malware doing incredible
354
988314
2174
μ
μ± μ½λκ° μΌλ§λ
λ―Ώμ μ μμ΄ λ¬΄μκ³
16:30
and terrifying, scary things.
355
990488
3261
곡ν¬μ€λ¬μ΄ κ²°κ³Όλ₯Ό
λ³μ μ μλμ§ λ³΄μ€ κ²λλ€.
16:33
However, 99 percent of it works
356
993749
3929
νμ§λ§ κ·Έλ° μ¬κ±΄μ 99%λ
16:37
because people fail to do the basics.
357
997678
4190
μ¬λλ€μ΄ κΈ°λ³Έμ μΈ κ±Έ νμ§ μμμ
μΌμ΄λλ κ²λλ€.
16:41
So my ask is this: Go online,
358
1001868
3022
κ·Έλ¬λ λΆνλ립λλ€:
μΈν°λ·μ μ μνμ
μ,
16:44
find these simple best practices,
359
1004890
2645
μ΄ κ°λ¨νκ³ κ°μ₯ μ’μ
λ°©λ²λ€μ μ°ΎμΌμΈμ.
16:47
find out how to update and patch your computer.
360
1007535
2554
μ»΄ν¨ν°λ₯Ό μ λ μ
λ°μ΄νΈνκ³
ν¨μΉλ₯Ό μ€μΉνλ κ±Έ λ°°μ°μΈμ.
16:50
Get a secure password.
361
1010089
1551
μμ ν λΉλ° λ²νΈλ₯Ό λ§λμΈμ.
16:51
Make sure you use a different password
362
1011640
1530
λͺ¨λ μ¬μ΄νΈμ μ¨λΌμΈ μλΉμ€μμ
16:53
on each of your sites and services online.
363
1013170
3351
κ°κ° λ€λ₯Έ ν¨μ€μλλ₯Ό μ¬μ©νμΈμ.
16:56
Find these resources. Apply them.
364
1016521
3243
μ΄λ° μ 보λ₯Ό μ°Ύμ보μκ³ ,
μ μ©νμκΈ° λ°λλλ€.
16:59
The Internet is a fantastic resource
365
1019764
2611
μΈν°λ·μ μ¬μ
μ νκ³ ,
μ μΉμ μ견μ νννκ³ ,
17:02
for business, for political expression,
366
1022375
2065
μμ κ³Ό λ°°μμ μν
17:04
for art and for learning.
367
1024440
2331
νμμ μΈ μμμ
λλ€.
17:06
Help me and the security community
368
1026771
3182
μ μ μ¬μ΄λ² 보μ μ
κ³λ₯Ό λμμ
17:09
make life much, much more difficult
369
1029953
3468
μ¬μ΄λ² λ²μ£μλ€μ΄ νλνλ κ²
17:13
for cybercriminals.
370
1033421
1952
ν¨μ¬ λ λ§μ΄ μ΄λ ΅κ² λ§λμλ€.
17:15
Thank you.
371
1035373
1328
κ°μ¬ν©λλ€.
17:16
(Applause)
372
1036701
4539
(λ°μ)
New videos
Original video on YouTube.com
μ΄ μΉμ¬μ΄νΈ μ 보
μ΄ μ¬μ΄νΈλ μμ΄ νμ΅μ μ μ©ν YouTube λμμμ μκ°ν©λλ€. μ μΈκ³ μ΅κ³ μ μ μλλ€μ΄ κ°λ₯΄μΉλ μμ΄ μμ μ λ³΄κ² λ κ²μ λλ€. κ° λμμ νμ΄μ§μ νμλλ μμ΄ μλ§μ λλΈ ν΄λ¦νλ©΄ κ·Έκ³³μμ λμμμ΄ μ¬μλ©λλ€. λΉλμ€ μ¬μμ λ§μΆ° μλ§μ΄ μ€ν¬λ‘€λ©λλ€. μ견μ΄λ μμ²μ΄ μλ κ²½μ° μ΄ λ¬Έμ μμμ μ¬μ©νμ¬ λ¬Έμνμμμ€.