James Lyne: Everyday cybercrime -- and what you can do about it

411,877 views ・ 2013-09-16

TED


Please double-click on the English subtitles below to play the video.

Prevodilac: Sonja Rodić Lektor: Mile Živković
00:12
I'm going to be showing some of the cybercriminals'
0
12713
1632
Pokazaću vam neke od najnovijih
00:14
latest and nastiest creations.
1
14345
2462
i najopasnijih kreacija sajberkriminalaca.
00:16
So basically, please don't go and download
2
16807
2908
Uglavnom, molim vas da ne skidate
00:19
any of the viruses that I show you.
3
19715
2696
bilo koji od virusa koje vam pokažem.
00:22
Some of you might be wondering what a cybersecurity specialist looks like,
4
22411
3018
Neki od vas se možda pitaju kako izgleda jedan stručnjak za sajberkriminal
00:25
and I thought I'd give you a quick insight
5
25429
2169
pa sam mislio da vam ukratko predstavim
00:27
into my career so far.
6
27598
2678
svoju dosadašnju karijeru.
00:30
It's a pretty accurate description.
7
30276
2501
Ovo je prilično tačan opis.
00:32
This is what someone that specializes
8
32777
1656
Ovako izgleda neko ko je specijalizovan
00:34
in malware and hacking looks like.
9
34433
2420
za malver i hakovanje.
00:36
So today, computer viruses and trojans,
10
36853
3414
Danas su kompjuterski virusi i trojanci
00:40
designed to do everything from stealing data
11
40267
2880
dizajnirani tako da mogu da urade bilo šta, od krađe podataka
00:43
to watching you in your webcam
12
43147
2041
preko toga da vas posmatraju kroz vašu veb kameru
00:45
to the theft of billions of dollars.
13
45188
2778
pa do krađe milijardi dolara.
00:47
Some malicious code today goes as far
14
47966
2195
U današnje vreme neki maliciozni kodovi
00:50
as targeting power, utilities and infrastructure.
15
50161
4143
kao metu imaju struju, komunalne usluge i infrastrukturu.
00:54
Let me give you a quick snapshot
16
54304
1961
Daću vam brz prikaz
00:56
of what malicious code is capable of today.
17
56265
2614
onoga za šta je danas sposoban maliciozan kod.
00:58
Right now, every second, eight new users
18
58879
3070
Ovog trenutka, svake sekunde,
01:01
are joining the Internet.
19
61949
2155
osam novih korisnika nakači se na internet.
01:04
Today, we will see 250,000 individual new computer viruses.
20
64104
7308
Danas će nastati 250.000 novih individualnih kompjuterskih virusa.
01:11
We will see 30,000 new infected websites.
21
71412
5773
Biće zaraženo ukupno 30.000 novih vebsajtova.
01:17
And, just to kind of tear down a myth here,
22
77185
2086
I samo da srušim jedan mit,
01:19
lots of people think that when you get infected
23
79271
2488
mnogi misle da je onaj ko se zarazi
01:21
with a computer virus, it's because you went to a porn site.
24
81759
3451
kompjuterskim virusom posećivao pornografske sajtove.
01:25
Right? Well, actually, statistically speaking,
25
85210
2443
Zar ne? Zapravo, statistički gledano,
01:27
if you only visit porn sites, you're safer.
26
87653
3125
ako posećujete isključivo porno sajtove, sigurniji ste.
01:30
People normally write that down, by the way. (Laughter)
27
90778
3002
Uzgred, ljudi obično pribeleže ovaj podatak. (Smeh)
01:33
Actually, about 80 percent of these
28
93780
1562
U stvari, oko 80 posto ovih slučajeva
01:35
are small business websites getting infected.
29
95342
3513
čine vebsajtovi malih preduzeća koji se zaraze.
01:38
Today's cybercriminal, what do they look like?
30
98855
2285
Kako danas izgleda jedan sajberkriminalac?
01:41
Well, many of you have the image, don't you,
31
101140
2426
Mnogi od vas, zar ne, zamišljaju
01:43
of the spotty teenager sitting in a basement,
32
103566
2176
bubuljičavog tinejdžera koji sedi u podrumu
01:45
hacking away for notoriety.
33
105742
2388
i hakuje da bi postao ozloglašen.
01:48
But actually today, cybercriminals
34
108130
1623
Međutim, sajberkriminalci su u današnje vreme
01:49
are wonderfully professional and organized.
35
109753
3311
čudesno profesionalni i organizovani.
01:53
In fact, they have product adverts.
36
113064
2871
U stvari, oni imaju i reklame za svoje proizvode.
01:55
You can go online and buy a hacking service
37
115935
2131
Možete da odete onlajn i kupite uslugu hakovanja
01:58
to knock your business competitor offline.
38
118066
2149
da biste skinuli svog poslovnog konkurenta sa interneta.
02:00
Check out this one I found.
39
120215
1559
Pogledajte jednu koju sam pronašao.
02:01
(Video) Man: So you're here for one reason,
40
121774
1819
(Video) Čovek: Dakle, ovde ste iz jednog razloga,
02:03
and that reason is
41
123593
1465
a taj razlog je
02:05
because you need your business competitors,
42
125058
1912
to što želite da vašu poslovnu konkurenciju,
02:06
rivals, haters, or whatever the reason is, or who,
43
126970
3952
rivale, one koji vas mrze ili šta god da je razlog
02:10
they are to go down.
44
130922
1744
ili ko god da je u pitanju, srušite.
02:12
Well you, my friend, you've came to the right place.
45
132666
2860
Prijatelju, došao si na pravo mesto.
02:15
If you want your business competitors to go down,
46
135526
2416
Ako želiš da slomiš svoju poslovnu konkurenciju,
02:17
well, they can.
47
137942
1336
to i možeš.
02:19
If you want your rivals to go offline, well, they will.
48
139278
3424
Ako želiš da tvoji rivali budu oflajn, tako će i biti.
02:22
Not only that, we are providing a short-term-to-long-term
49
142702
3027
I ne samo to, mi obezbeđujemo i kratkoročnu i dugoročnu
02:25
DDOS service or scheduled attack,
50
145729
2355
DDOS uslugu ili isplanirani napad,
02:28
starting five dollars per hour for small personal websites
51
148084
3811
počev od pet dolara na sat za male privatne vebsajtove
02:31
to 10 to 50 dollars per hour.
52
151895
2904
preko 10 do 50 dolara na sat.
02:34
James Lyne: Now, I did actually pay
53
154799
1323
Džejms Lin: Ja sam stvarno i platio
02:36
one of these cybercriminals to attack my own website.
54
156122
2793
jednom od ovih sajberkriminalaca da napadne moj sopstveni vebsajt.
02:38
Things got a bit tricky when I tried to expense it at the company.
55
158915
3494
Stvari su postale malo nezgodne kada sam pokušao da svalim troškove na kompaniju.
02:42
Turns out that's not cool.
56
162409
1714
Ispalo je da to baš i nije kul.
02:44
But regardless, it's amazing how many products
57
164123
3010
Bez obzira, neverovatno je koliko mnogo proizvoda
02:47
and services are available now to cybercriminals.
58
167133
3112
i usluga je sada dostupno sajberkriminalcima.
02:50
For example, this testing platform,
59
170245
2476
Na primer, ova platforma za testiranje,
02:52
which enables the cybercriminals
60
172721
1715
koja omogućava sajberkriminalcima
02:54
to test the quality of their viruses
61
174436
2482
da testiraju kvalitet svojih virusa
02:56
before they release them on the world.
62
176918
2452
pre nego što ih puste u svet.
02:59
For a small fee, they can upload it
63
179370
1957
Za malu naknadu, mogu da ga aplouduju
03:01
and make sure everything is good.
64
181327
1666
i uvere se da je sve u redu.
03:02
But it goes further.
65
182993
1533
Ali ovo nije kraj.
03:04
Cybercriminals now have crime packs
66
184526
2245
Sajberkriminalci sada imaju krimi pakovanja
03:06
with business intelligence reporting dashboards
67
186771
3119
sa komandnim tablama koje pokazuju izveštaje poslovanja kompanija
03:09
to manage the distribution of their malicious code.
68
189890
3476
da bi upravljali širenjem svog štetnog koda.
03:13
This is the market leader in malware distribution,
69
193366
3528
Ovo je predvodnik na tržištu distribucije malvera,
03:16
the Black Hole Exploit Pack,
70
196894
1638
Black Hole Exploit Pack,
03:18
responsible for nearly one third of malware distribution
71
198532
3659
odgovoran za oko trećinu širenja malvera
03:22
in the last couple of quarters.
72
202191
1974
nekoliko tromesečja unazad.
03:24
It comes with technical installation guides,
73
204165
3009
Uz njega se dobije tehničko uputstvo za instalaciju
03:27
video setup routines,
74
207174
1045
postupci za podešavanje videa,
03:28
and get this, technical support.
75
208219
3955
i pazite sada: tehnička podrška.
03:32
You can email the cybercriminals and they'll tell you
76
212174
2388
Možete da pošaljete imejl sajberkriminalcima i oni će vam reći
03:34
how to set up your illegal hacking server.
77
214562
3622
kako da podesite svoj ilegalni hakerski server.
03:38
So let me show you what malicious code looks like today.
78
218184
4284
Pokazaću vam kako maliciozan kod danas izgleda.
03:42
What I've got here is two systems,
79
222468
2312
Ovde imam dva sistema,
03:44
an attacker, which I've made look all Matrix-y and scary,
80
224780
3690
napadač, koji sam napravio da podseća na Matriks i da bude pomalo strašan,
03:48
and a victim, which you might recognize from home or work.
81
228470
3302
i žrtva, koji izgleda poput onog kod kuće ili na poslu.
03:51
Now normally, these would be on different sides
82
231772
2729
U normalnim okolnostima, oni bi se nalazili na različitim stranama
03:54
of the planet or of the Internet,
83
234501
2555
planete ili interneta,
03:57
but I've put them side by side
84
237056
1396
ali ja sam ih stavio jedan do drugog
03:58
because it makes things much more interesting.
85
238452
2664
jer je tako mnogo interesantnije.
04:01
Now, there are many ways you can get infected.
86
241116
2055
Postoji mnogo načina da se zarazite.
04:03
You will have come in contact with some of them.
87
243171
2592
Sa nekima od njih ste već imali dodira.
04:05
Maybe some of you have received an email
88
245763
2096
Neki od vas su možda primili imejl
04:07
that says something like, "Hi, I'm a Nigerian banker,
89
247859
4085
koji je glasio nešto poput: "Ćao, ja sam bankar iz Nigerije,
04:11
and I'd like to give you 53 billion dollars
90
251944
2764
i želeo bih da vam dam 53 milijarde dolara
04:14
because I like your face."
91
254708
2427
jer mi se sviđa vaše lice."
04:17
Or funnycats.exe, which rumor has it
92
257135
3394
Ili funnycats.exe, za koji se šuška
04:20
was quite successful in China's recent campaign against America.
93
260529
3769
da je imao dosta uspeha u skorašnjoj kampanji Kine protiv Amerike.
04:24
Now there are many ways you can get infected.
94
264298
2430
Postoji mnogo načina da se zarazite.
04:26
I want to show you a couple of my favorites.
95
266728
1987
Želeo bih da vam pokažem neke od mojih omiljenih.
04:28
This is a little USB key.
96
268715
2660
Ovo je jedan mali USB stik.
04:31
Now how do you get a USB key to run in a business?
97
271375
2157
Kako da uvedete USB u nečiji posao?
04:33
Well, you could try looking really cute.
98
273532
4125
Pa, mogli biste pokušati tako što ćete izgledati neodoljivo.
04:37
Awww.
99
277657
1938
Aaaa.
04:39
Or, in my case, awkward and pathetic.
100
279595
2363
Ili, u mom slučaju, nespretno i jadno.
04:41
So imagine this scenario: I walk into one of your businesses,
101
281958
4189
Zamislite ovaj scenario: ušetam u jednu od Vaših poslovnih prostorija,
04:46
looking very awkward and pathetic, with a copy of my C.V.
102
286147
2842
izgledajući veoma nespretno i jadno, sa kopijom svog CV-ja
04:48
which I've covered in coffee,
103
288989
1899
polivenom kafom,
04:50
and I ask the receptionist to plug in this USB key
104
290888
3387
i zamolim recepcionara da ubaci moj USB
04:54
and print me a new one.
105
294275
1949
i odštampa mi novi.
04:56
So let's have a look here on my victim computer.
106
296224
3230
Hajde da pogledamo moj kompjuter-žrtvu.
04:59
What I'm going to do is plug in the USB key.
107
299454
3246
Uguraću USB.
05:02
After a couple of seconds,
108
302700
1490
Nakon par sekundi,
05:04
things start to happen on the computer on their own,
109
304190
2751
stvari na kompjuteru počinju da se odvijaju same od sebe,
05:06
usually a bad sign.
110
306941
1935
što je obično loš znak.
05:08
This would, of course, normally happen
111
308876
1694
Ovo bi se, naravno, u normalnim okolnostima odigralo
05:10
in a couple of seconds, really, really quickly,
112
310570
2758
u roku od nekoliko sekundi, veoma, veoma brzo,
05:13
but I've kind of slowed it down
113
313328
1660
ali ja sam pomalo usporio stvari
05:14
so you can actually see the attack occurring.
114
314988
2830
da biste mogli da vidite kako se napad odvija.
05:17
Malware is very boring otherwise.
115
317818
2517
Malver je inače veoma dosadan.
05:20
So this is writing out the malicious code,
116
320335
2597
Ovo je ispisivanje malicioznog koda,
05:22
and a few seconds later, on the left-hand side,
117
322932
3797
i nekoliko sekundi kasnije, na levoj strani,
05:26
you'll see the attacker's screen get some interesting new text.
118
326729
4298
viećete da se na napadačevom ekranu pojavio neki novi zanimljivi tekst.
05:31
Now if I place the mouse cursor over it,
119
331027
1931
Ako pređem kursorom miša preko njega,
05:32
this is what we call a command prompt,
120
332958
2307
ovo je ono što nazivamo komandnom linijom,
05:35
and using this we can navigate around the computer.
121
335265
3797
koristeći ovo možemo da pretražujemo po kompjuteru.
05:39
We can access your documents, your data.
122
339062
2159
Možemo da pristupimo vašim dokumentima, vašim podacima.
05:41
You can turn on the webcam.
123
341221
1501
Možete da uključite veb kameru.
05:42
That can be very embarrassing.
124
342722
1629
To može da bude veoma neprijatno.
05:44
Or just to really prove a point,
125
344351
1723
Samo da dokažemo nešto,
05:46
we can launch programs like my personal favorite,
126
346074
3121
možemo da pokrenemo neki od programa kao što je moj lični favorit,
05:49
the Windows Calculator.
127
349195
2805
Windows Calculator.
05:52
So isn't it amazing how much control
128
352000
2288
Nije li čudesno koliko mnogo kontrole
05:54
the attackers can get with such a simple operation?
129
354288
2895
napadači mogu da steknu jednom ovako jednostavnom operacijom?
05:57
Let me show you how most malware
130
357183
1931
Pokazaću vam kako se najveći deo malvera danas distribuira.
05:59
is now distributed today.
131
359114
2183
Pokazaću vam kako se najveći deo malvera danas distribuira.
06:01
What I'm going to do is open up a website
132
361297
2520
Otvoriću jedan vebsajt
06:03
that I wrote.
133
363817
1316
koji sam napravio.
06:05
It's a terrible website. It's got really awful graphics.
134
365133
4315
To je užasan vebsajt. Grafika mu je stvarno odvratna.
06:09
And it's got a comments section here
135
369448
2194
Sadrži odeljak za komentare
06:11
where we can submit comments to the website.
136
371642
3681
u kom možemo da ostavimo komentar na sajtu.
06:15
Many of you will have used something a bit like this before.
137
375323
3007
Mnogi od vas su već koristili nešto slično.
06:18
Unfortunately, when this was implemented,
138
378330
1947
Nažalost, kada je ovo bilo ubacivano,
06:20
the developer was slightly inebriated
139
380277
2425
kreator je bio pomalo pijan
06:22
and managed to forget
140
382702
1242
i uspeo je da zaboravi
06:23
all of the secure coding practices he had learned.
141
383944
2989
sve postupke sigurnog kodiranja koje je naučio.
06:26
So let's imagine that our attacker,
142
386933
3066
Hajde da zamislimo da naš napadač,
06:29
called Evil Hacker just for comedy value,
143
389999
3448
nazovimo ga Zli Haker, duhovitosti radi,
06:33
inserts something a little nasty.
144
393447
2023
ubaci nešto malo nevaljalo.
06:35
This is a script.
145
395470
1699
Ovo je skript.
06:37
It's code which will be interpreted on the webpage.
146
397169
4077
To je kod koji će biti protumačen na veb stranici.
06:41
So I'm going to submit this post,
147
401246
2325
Poslaću ovaj post,
06:43
and then, on my victim computer,
148
403571
2382
a onda ću na svom kompjuteru-žrtvi
06:45
I'm going to open up the web browser
149
405953
2027
otvoriti novi veb pretraživač
06:47
and browse to my website,
150
407980
2253
i otići na svoj sajt,
06:50
www.incrediblyhacked.com.
151
410233
3789
www.incrediblyhacked.com.
06:54
Notice that after a couple of seconds,
152
414022
2124
Primetićete da, nakon nekoliko sekundi,
06:56
I get redirected.
153
416146
1457
bivam preusmeren.
06:57
That website address at the top there,
154
417603
1977
Ona veb adresa tamo na vrhu
06:59
which you can just about see, microshaft.com,
155
419580
3331
koju taman možete i da vidite, microshaft.com,
07:02
the browser crashes as it hits one of these exploit packs,
156
422911
3193
pretraživač zakucava kada naiđe na neki od ovih eksploit paketa,
07:06
and up pops fake antivirus.
157
426104
4024
i iskače lažni antivirus.
07:10
This is a virus pretending to look like antivirus software,
158
430128
5056
Ovo je virus koji se pretvara da je pravi antivirusni softver
07:15
and it will go through and it will scan the system,
159
435184
2365
i on će proći i skenirati sistem,
07:17
have a look at what its popping up here.
160
437549
1508
pogledajte šta ovde iskače.
07:19
It creates some very serious alerts.
161
439057
1748
On stvara neka veoma ozbiljna upozorenja.
07:20
Oh look, a child porn proxy server.
162
440805
2343
O pogledajte, proksi server sa dečjom pornografijom.
07:23
We really should clean that up.
163
443148
2432
To bi stvarno trebalo iščistiti.
07:25
What's really insulting about this is
164
445580
1584
Ono što je stvarno uvredljivo u vezi sa ovim
07:27
not only does it provide the attackers with access to your data,
165
447164
4238
je to što on ne samo da dopušta napadačima pristup vašim podacima,
07:31
but when the scan finishes, they tell you
166
451402
2823
već što kada se skeniranje završi, oni vam kažu
07:34
in order to clean up the fake viruses,
167
454225
3123
da treba da registrujete proizvod
07:37
you have to register the product.
168
457348
2676
kako biste očistili lažne viruse.
07:40
Now I liked it better when viruses were free.
169
460024
3336
E pa meni se više sviđalo kada su virusi bili besplatni.
07:43
(Laughter)
170
463360
2779
(Smeh)
07:46
People now pay cybercriminals money
171
466139
2526
Ljudi sada plaćaju sajberkriminalce
07:48
to run viruses,
172
468665
2101
da upravljaju virusima,
07:50
which I find utterly bizarre.
173
470766
2761
što je meni potpuno bizarno.
07:53
So anyway, let me change pace a little bit.
174
473527
3536
Kako god, dozvolite da malo promenim tempo.
07:57
Chasing 250,000 pieces of malware a day
175
477063
3506
Juriti 250.000 komada malvera na dan
08:00
is a massive challenge,
176
480569
1655
je ogroman izazov,
08:02
and those numbers are only growing
177
482224
2070
i te cifre samo još rastu
08:04
directly in proportion to the length of my stress line, you'll note here.
178
484294
3879
direktno proporcionalno mojoj bori stresa, kao što možete primetiti.
08:08
So I want to talk to you briefly
179
488173
1876
Sad bih želeo da vam ukratko ispričam
08:10
about a group of hackers we tracked for a year
180
490049
3050
o hakerskoj grupi koju smo pratili godinu dana
08:13
and actually found --
181
493099
2007
i zaista pronašli -
08:15
and this is a rare treat in our job.
182
495106
2577
a to je retka poslastica u našem poslu.
08:17
Now this was a cross-industry collaboration,
183
497683
2483
Ovo je bila saradnja više industrija,
08:20
people from Facebook, independent researchers,
184
500166
2389
ljudi iz Fejsbuka, nezavisnih istraživača,
08:22
guys from Sophos.
185
502555
2081
momaka iz Sofosa.
08:24
So here we have a couple of documents
186
504636
2655
Ovde imamo par dokumenata
08:27
which our cybercriminals had uploaded
187
507291
2826
koje su naši sajberkriminalci aploudovali
08:30
to a cloud service, kind of like Dropbox or SkyDrive,
188
510117
4377
na oblak servis, poput Dropboksa ili Skajdrajva,
08:34
like many of you might use.
189
514494
2209
koje mnogi od vas možda koriste.
08:36
At the top, you'll notice a section of source code.
190
516703
3392
Na vrhu se da primetiti odeljak izvornog koda.
08:40
What this would do is send the cybercriminals
191
520095
2968
On bi sajberkriminalcima svakog dana poslao
08:43
a text message every day telling them how much money
192
523063
5040
tekstualnu poruku u kojoj bi pisalo koliko su novca
08:48
they'd made that day,
193
528103
1666
zaradili tog dana,
08:49
so a kind of cybercriminal billings report, if you will.
194
529769
3296
znači neka vrsta sajberkriminalnog izvoda s računa, da tako kažem.
08:53
If you look closely, you'll notice a series
195
533065
2757
Ako pažljivije pogledate, primetićete niz
08:55
of what are Russian telephone numbers.
196
535822
2983
ruskih telefonskih brojeva.
08:58
Now that's obviously interesting,
197
538805
1479
To je očigledno zanimljivo,
09:00
because that gives us a way of finding our cybercriminals.
198
540284
3237
jer nam to pruža način da pronađemo naše sajberkriminalce.
09:03
Down below, highlighted in red,
199
543521
2115
Dole ispod, markirano crvenom,
09:05
in the other section of source code,
200
545636
1751
u drugom delu izvornog koda,
09:07
is this bit "leded:leded."
201
547387
2743
je ovaj delić "leded:leded."
09:10
That's a username,
202
550130
1289
To je korisničko ime,
09:11
kind of like you might have on Twitter.
203
551419
2859
poput onoga koje možda koristite na Tviteru.
09:14
So let's take this a little further.
204
554278
1231
Idemo malo dalje.
09:15
There are a few other interesting pieces
205
555509
2258
Postoji još nekoliko zanimljivih stvarčica
09:17
the cybercriminals had uploaded.
206
557767
2275
koje su sajberkriminalci aploudovali.
09:20
Lots of you here will use smartphones
207
560042
2572
Mnogi od ovde prisutnih će upotrebiti inteligentne telefone
09:22
to take photos and post them from the conference.
208
562614
2647
da slikaju i postave slike sa konferencije na internet.
09:25
An interesting feature of lots of modern smartphones
209
565261
2837
Zanimljiva opcija mnogih modernih inteligentnih telefona
09:28
is that when you take a photo,
210
568098
1667
je da kada nešto uslikate
09:29
it embeds GPS data about where that photo was taken.
211
569765
4237
telefon umetne GPS podatke o mestu na kom je ta fotografija nastala.
09:34
In fact, I've been spending a lot of time
212
574002
2443
U stvari, nedavno sam proveo dosta vremena
09:36
on Internet dating sites recently,
213
576445
2244
na sajtovima za upoznavanje preko interneta,
09:38
obviously for research purposes,
214
578689
2411
u svrhu istraživanja, naravno,
09:41
and I've noticed that about 60 percent
215
581100
3521
i primetio sam da oko 60 procenata
09:44
of the profile pictures on Internet dating sites
216
584621
2823
profilnih slika na sajtovima za upoznavanje
09:47
contain the GPS coordinates of where the photo was taken,
217
587444
4451
sadrži GPS koordinate mesta gde je fotografija nastala,
09:51
which is kind of scary
218
591895
1061
što je pomalo zastrašujuće
09:52
because you wouldn't give out your home address
219
592956
2562
jer ne biste podelili svoju kućnu adresu
09:55
to lots of strangers,
220
595518
1449
sa mnoštvom stranaca,
09:56
but we're happy to give away our GPS coordinates
221
596967
1994
ali zato rado odajemo svoje GPS koordinate
09:58
to plus or minus 15 meters.
222
598961
4029
plus ili minus 15 metara.
10:02
And our cybercriminals had done the same thing.
223
602990
3234
Naši sajberkriminalci su uradili istu stvar.
10:06
So here's a photo which resolves to St. Petersburg.
224
606224
3204
Ovde je slika koja vodi do Sankt Petersburga.
10:09
We then deploy the incredibly advanced hacking tool.
225
609428
3686
Mi onda razvijamo neverovatno napredan hakerski alat.
10:13
We used Google.
226
613114
2395
Koristili smo Gugl.
10:15
Using the email address, the telephone number
227
615509
2225
Koristeći imejl adresu, telefonski broj
10:17
and the GPS data, on the left you see an advert
228
617734
3549
i GPS podatke, levo vidite oglas
10:21
for a BMW that one of our cybercriminals is selling,
229
621283
3669
za BMW koji prodaje jedan od naših sajberkriminalaca,
10:24
on the other side an advert for the sale of sphynx kittens.
230
624952
5348
na drugoj strani oglas za prodaju sfinks mačića.
10:30
One of these was more stereotypical for me.
231
630300
3100
Jedan od ovih mi je bio stereotipniji.
10:33
A little more searching, and here's our cybercriminal.
232
633400
3989
Još malo istrage i eto našeg sajberkriminalca.
10:37
Imagine, these are hardened cybercriminals
233
637389
3546
Zamislite, ovo su okoreli sajberkriminalci
10:40
sharing information scarcely.
234
640935
1868
koji jedva da dele informacije.
10:42
Imagine what you could find
235
642803
1148
Zamislite samo šta biste mogli pronaći
10:43
about each of the people in this room.
236
643951
1703
o svakoj osobi u ovoj prostoriji.
10:45
A bit more searching through the profile
237
645654
1806
Malo više pretraživanja po profilu
10:47
and there's a photo of their office.
238
647460
1860
i eto fotografije njihove kancelarije.
10:49
They were working on the third floor.
239
649320
2048
Radili su na trećem spratu.
10:51
And you can also see some photos
240
651368
2199
A možete da vidite i neke od slika
10:53
from his business companion
241
653567
1175
njegovog poslovnog partnera
10:54
where he has a taste in a certain kind of image.
242
654742
4839
kome se sviđa određena vrsta fotografije.
10:59
It turns out he's a member of the Russian Adult Webmasters Federation.
243
659581
3995
Ispostavlja se da je on član Ruske federacije sajtova za odrasle.
11:03
But this is where our investigation starts to slow down.
244
663576
3017
Ali tu naša istraga počinje da se usporava.
11:06
The cybercriminals have locked down their profiles quite well.
245
666593
3943
Sajberkriminalci su prilično dobro zaključali svoje profile.
11:10
And herein is the greatest lesson
246
670536
2035
U ovome se krije najveća lekcija
11:12
of social media and mobile devices for all of us right now.
247
672571
4578
iz društvenih medija i mobilnih uređaja za sve nas sada.
11:17
Our friends, our families and our colleagues
248
677149
3730
Naši prijatelji, naše porodice i naše kolege
11:20
can break our security even when we do the right things.
249
680879
4689
mogu da probiju naše zaštite čak i kada radimo ispravne stvari.
11:25
This is MobSoft, one of the companies
250
685568
2780
Ovo je MobSoft, jedna od kompanija
11:28
that this cybercriminal gang owned,
251
688348
2166
koju je posedovala ova banda sajberkriminalaca,
11:30
and an interesting thing about MobSoft
252
690514
1589
i zanimljiva stvar u vezi sa MobSoftom
11:32
is the 50-percent owner of this
253
692103
2871
je što je vlasnik 50 posto ove kompanije
11:34
posted a job advert,
254
694974
1947
postavio oglas za posao,
11:36
and this job advert matched one of the telephone numbers
255
696921
3380
i što se taj oglas poklapao sa jednim od telefonskih brojeva
11:40
from the code earlier.
256
700301
2152
iz prethodnog koda.
11:42
This woman was Maria,
257
702453
2125
Ova žena se zove Marija,
11:44
and Maria is the wife of one of our cybercriminals.
258
704578
2880
a Marija je supruga jednog od naših sajberkriminalaca.
11:47
And it's kind of like she went into her social media settings
259
707458
3520
Činilo se kao da je ušla u svoja podešavanja na društvenoj mreži
11:50
and clicked on every option imaginable
260
710978
2795
i kliknula na svaku moguću opciju
11:53
to make herself really, really insecure.
261
713773
3697
da bi učinila sebe veoma, veoma nezaštićenom.
11:57
By the end of the investigation,
262
717470
1567
Do okončanja istrage,
11:59
where you can read the full 27-page report at that link,
263
719037
3559
o kojoj možete da pročitate pun izveštaj od 27 strana na ovom linku,
12:02
we had photos of the cybercriminals,
264
722596
2034
imali smo fotografije sajberkriminalaca,
12:04
even the office Christmas party
265
724630
2895
čak i božićne žurke u kancelariji
12:07
when they were out on an outing.
266
727525
1866
kada su bili napolju na izletu.
12:09
That's right, cybercriminals do have Christmas parties,
267
729391
3249
Tako je, izgleda da sajberkriminalci
12:12
as it turns out.
268
732640
1588
imaju božićne žurke.
12:14
Now you're probably wondering what happened to these guys.
269
734228
2235
Verovatno se pitate šta se desilo ovim momcima.
12:16
Let me come back to that in just a minute.
270
736463
2937
Dozvolite mi da se na to vratim za minut.
12:19
I want to change pace to one last little demonstration,
271
739400
2747
Želeo bih da pređem na poslednju malu demonstraciju,
12:22
a technique that is wonderfully simple and basic,
272
742147
3969
tehniku koja je čudesno jednostavna i bazična,
12:26
but is interesting in exposing how much information
273
746116
3065
ali je zanimljiva za otkrivanje koliko mnogo informacija
12:29
we're all giving away,
274
749181
1776
svi mi odajemo,
12:30
and it's relevant because it applies to us as a TED audience.
275
750957
4278
i relevantna je jer je primenljiva na nas kao TED publiku.
12:35
This is normally when people start kind of shuffling in their pockets
276
755235
2450
Ovde ljudi obično počnu da kopaju po džepovima
12:37
trying to turn their phones onto airplane mode desperately.
277
757685
4218
očajnički pokušavajući da prebace svoje telefone u mod letenja.
12:41
Many of you all know about the concept
278
761903
1686
Mnogima od vas je poznat koncept
12:43
of scanning for wireless networks.
279
763589
2343
skeniranja u potrazi za bežičnim mrežama.
12:45
You do it every time you take out your iPhone or your Blackberry
280
765932
3401
Činite to svaki put kad izvadite svoj Ajfon ili Blekberi
12:49
and connect to something like TEDAttendees.
281
769333
4020
i konektujete se na nešto poput TEDAttendees.
12:53
But what you might not know
282
773353
1747
Ali ono što možda ne znate
12:55
is that you're also beaming out a list of networks
283
775100
4751
je da vi emitujete i listu mreža
12:59
you've previously connected to,
284
779851
2422
na koje ste se prethodno konektovali,
13:02
even when you're not using wireless actively.
285
782273
4147
čak i kada aktivno ne koristite wireless.
13:06
So I ran a little scan.
286
786420
1727
Ja sam izvršio malo skeniranje.
13:08
I was relatively inhibited compared to the cybercriminals,
287
788147
2926
Bio sam relativno suzdržan u poređenju sa sajberkriminalcima,
13:11
who wouldn't be so concerned by law,
288
791073
2544
koji se ne bi toliko zabrinjavali oko zakona,
13:13
and here you can see my mobile device.
289
793617
2587
i ovde možete da vidite moj mobilni uređaj.
13:16
Okay? So you can see a list of wireless networks.
290
796204
2654
Okej? Znači možete da vidite listu bežičnih mreža.
13:18
TEDAttendees, HyattLB. Where do you think I'm staying?
291
798858
4627
TEDAttendees, HyattLB. Šta mislite, gde sam odseo?
13:23
My home network, PrettyFlyForAWifi,
292
803485
3493
Moja kućna mreža PrettyFlyForAWifi,
13:26
which I think is a great name.
293
806978
1765
što je sjajno ime, po mom mišljenju,
13:28
Sophos_Visitors, SANSEMEA, companies I work with.
294
808743
2767
Sophos_Visitors, SANSEMEA, kompanije sa kojima radim.
13:31
Loganwifi, that's in Boston. HiltonLondon.
295
811510
3308
Loganwifi, to je u Bostonu. HiltonLondon.
13:34
CIASurveillanceVan.
296
814818
2441
CIASurveillanceVan.
13:37
We called it that at one of our conferences
297
817259
1609
Tako smo je nazvali na jednoj od naših konferencija.
13:38
because we thought that would freak people out,
298
818868
1736
jer smo mislili da će to zastrašiti ljude,
13:40
which is quite fun.
299
820604
1994
što je prilično zabavno.
13:42
This is how geeks party.
300
822598
4658
Tako se štreberi zabavljaju.
13:47
So let's make this a little bit more interesting.
301
827256
2207
Hajde da učinimo ovo malo zanimljivijim.
13:49
Let's talk about you.
302
829463
2538
Hajde da pričamo o vama.
13:52
Twenty-three percent of you have been to Starbucks
303
832001
2110
Dvadeset tri posto vas je nedavno bilo u Starbaksu
13:54
recently and used the wireless network.
304
834111
3115
i koristili ste wireless mrežu.
13:57
Things get more interesting.
305
837226
1164
Stvari postaju još zanimljivije.
13:58
Forty-six percent of you I could link to a business,
306
838390
2446
Četrdeset šest posto vas bih mogao da povežem sa poslom,
14:00
XYZ Employee network.
307
840836
2870
XYZ mreža za zaposlene.
14:03
This isn't an exact science, but it gets pretty accurate.
308
843706
4179
Ovo nije egzaktna nauka, ali prilično je tačno.
14:07
Seven hundred and sixty-one of you I could identify a hotel you'd been to recently,
309
847885
4469
Za 761 od vas mogao bih da identifikujem hotel u kom ste nedavno bili,
14:12
absolutely with pinpoint precision somewhere on the globe.
310
852354
3839
sa potpunom preciznošću negde na zemaljskoj kugli.
14:16
Two hundred and thirty-four of you, well, I know where you live.
311
856193
3948
Za 234 vas, pa, znam gde živite.
14:20
Your wireless network name is so unique
312
860141
2319
Ime vaše wireless mreže je toliko jedinstveno
14:22
that I was able to pinpoint it
313
862460
1549
da sam mogao da je lociram
14:24
using data available openly on the Internet
314
864009
2667
koristeći podatke otvoreno dostupne na internetu
14:26
with no hacking or clever, clever tricks.
315
866676
4248
bez hakovanja ili pametnih trikova.
14:30
And I should mention as well that
316
870924
1820
Trebalo bi takođe i da napomenem
14:32
some of you do use your names,
317
872744
1542
da neki od vas koriste svoja imena,
14:34
"James Lyne's iPhone," for example.
318
874286
2596
"Ajfon Džejmsa Lina", na primer.
14:36
And two percent of you have a tendency to extreme profanity.
319
876882
4358
A dva posto od vas ima tendenciju ka ekstremnoj vulgarnosti.
14:41
So something for you to think about:
320
881240
2004
Dakle, nešto o čemu bi trebalo da razmislite:
14:43
As we adopt these new applications and mobile devices,
321
883244
3913
Dok usvajamo sve te nove aplikacije i mobilne uređaje,
14:47
as we play with these shiny new toys,
322
887157
2317
dok se igramo tim sjajnim novim igračkama,
14:49
how much are we trading off convenience
323
889474
3822
u kolikoj meri mi menjamo
14:53
for privacy and security?
324
893296
2890
privatnost i sigurnost za udobnost?
14:56
Next time you install something,
325
896186
2058
Sledeći put kad nešto instalirate,
14:58
look at the settings and ask yourself,
326
898244
2304
pogledajte podešavanja i zapitajte se,
15:00
"Is this information that I want to share?
327
900548
3552
"Da li su ovo informacije koje želim da delim?
15:04
Would someone be able to abuse it?"
328
904100
2890
Da li bi neko mogao da ih zloupotrebi?"
15:06
We also need to think very carefully
329
906990
2072
Takođe, trebalo bi veoma pažljivo razmisliti
15:09
about how we develop our future talent pool.
330
909062
4141
o tome kako razvijamo svoje talente u budućnosti.
15:13
You see, technology's changing at a staggering rate,
331
913203
2979
Vidite, tehnologija se menja vrtoglavim tempom
15:16
and that 250,000 pieces of malware
332
916182
3176
i tih 250.000 komada malvera
15:19
won't stay the same for long.
333
919358
2872
neće još dugo ostati isti.
15:22
There's a very concerning trend
334
922230
2198
Postoji veoma zabrinjavajući trend
15:24
that whilst many people coming out of schools now
335
924428
3193
da dok mnogi ljudi trenutno izlaze iz škola
15:27
are much more technology-savvy, they know how to use technology,
336
927621
4412
sa mnogo boljim poznavanjem tehnologije, oni umeju da koriste tehnologije,
15:32
fewer and fewer people are following the feeder subjects
337
932033
3613
sve manje i manje ljudi prati dodatne predmete
15:35
to know how that technology works under the covers.
338
935646
4324
da bi znali kako ta tehnologija funkcioniše iza kulisa.
15:39
In the U.K., a 60 percent reduction since 2003,
339
939970
4385
U UK, broj maturanata koji su pohađali dodatne predmete iz IT-ja
15:44
and there are similar statistics all over the world.
340
944355
3775
opao je 60 posto u odnosu na 2003, a statistike su slične u celom svetu.
15:48
We also need to think about the legal issues in this area.
341
948130
4076
Moramo da razmislimo i o pravnim problemima u ovom području.
15:52
The cybercriminals I talked about,
342
952206
1527
Sajberkriminalci o kojima sam pričao,
15:53
despite theft of millions of dollars,
343
953733
2139
uprkos krađi miliona dolara,
15:55
actually still haven't been arrested,
344
955872
2109
još uvek nisu uhapšeni,
15:57
and at this point possibly never will.
345
957981
3559
i moguće je da nikada neće ni biti.
16:01
Most laws are national in their implementation,
346
961540
3500
Većina zakona se primenjuje u nacionalnim okvirima,
16:05
despite cybercrime conventions, where the Internet
347
965040
3999
uprkos prirodi sajberkriminala, pošto je internet
16:09
is borderless and international by definition.
348
969039
3106
bez granica i internacionalan po svojoj definiciji.
16:12
Countries do not agree, which makes this area
349
972145
2833
Države se ne slažu, što čini ovo područje
16:14
exceptionally challenging from a legal perspective.
350
974978
3617
izuzetno problematičnim iz pravne perspektive.
16:18
But my biggest ask is this:
351
978595
4360
Ali, moje najveće pitanje je ovo:
16:22
You see, you're going to leave here
352
982955
1642
vidite, vi ćete izaći odavde
16:24
and you're going to see some astonishing stories in the news.
353
984597
3717
i videćete neke neverovatne priče u vestima.
16:28
You're going to read about malware doing incredible
354
988314
2174
Čitaćete kako malver radi neverovatne
16:30
and terrifying, scary things.
355
990488
3261
i zastrašujuće, užasne stvari.
16:33
However, 99 percent of it works
356
993749
3929
Međutim, 99 posto toga funkcioniše
16:37
because people fail to do the basics.
357
997678
4190
jer ljudi ne obave osnovne stvari.
16:41
So my ask is this: Go online,
358
1001868
3022
Dakle, moja molba je sledeća: idite na internet,
16:44
find these simple best practices,
359
1004890
2645
pronađite ove jednostavne postupke
16:47
find out how to update and patch your computer.
360
1007535
2554
saznajte kako da apdejtujete i nadogradite svoj kompjuter.
16:50
Get a secure password.
361
1010089
1551
Postavite sigurnu lozinku.
16:51
Make sure you use a different password
362
1011640
1530
Pobrinite se da koristite drugačiju lozinku
16:53
on each of your sites and services online.
363
1013170
3351
na svakom od sajtova i onlajn servisa.
16:56
Find these resources. Apply them.
364
1016521
3243
Pronađite ova sredstva. Primenite ih.
16:59
The Internet is a fantastic resource
365
1019764
2611
Internet je fantastičan resurs
17:02
for business, for political expression,
366
1022375
2065
za biznis, političko izražavanje,
17:04
for art and for learning.
367
1024440
2331
za umetnost i za učenje.
17:06
Help me and the security community
368
1026771
3182
Pomozite meni i društvu za bezbednost
17:09
make life much, much more difficult
369
1029953
3468
zagorčajte život sajberkriminalcima.
17:13
for cybercriminals.
370
1033421
1952
zagorčajte život sajberkriminalcima.
17:15
Thank you.
371
1035373
1328
Hvala vam.
17:16
(Applause)
372
1036701
4539
(Aplauz)
About this website

This site will introduce you to YouTube videos that are useful for learning English. You will see English lessons taught by top-notch teachers from around the world. Double-click on the English subtitles displayed on each video page to play the video from there. The subtitles scroll in sync with the video playback. If you have any comments or requests, please contact us using this contact form.

https://forms.gle/WvT1wiN1qDtmnspy7