Name: 【資訊】擔心電腦被入侵？告訴你 5 個防駭教戰守則 (Former NSA Hacker Reveals 5 Ways To Protect Yourself Online)
Uploaded: 2020-08-06T21:01:20.000Z
Duration: 3 min 29 s

反身代名詞

[Five easy ways to protect yourself from hackers.]

Mr. Robot is probably one of the most accurate portrayals of what hackers can actively do.

駭客會積極做什麼事，最正確的寫照可能會是 Robot 先生。

情態副詞

If you're interested in hacking and don't understand a lot of this, the TV show itself actually employs hackers to work on the show to depict real life hacks that could happen in real life and it's a very, very accurate portrayal of everything that we see today.

如果你對駭客這方面有興趣，但是不太了解這個領域，為了描繪現實生活中可能會發生駭客事件，電視節目雇用了真正的駭客，這與我們今日看到的事件擁有極高的正確性。

From being able to hack smartphones to getting access to a big corporation and being able to bring them to their knees from a cyber perspective.

從能夠駭入手機到能夠駭入大集團，並能用電腦出發徹底打敗他們。

So what's the top five things that you can do to make yourself more secure both at your business and your home?

所以你可以做哪五件事讓公司和家更安全呢？

Number one, use two-factor authentication or two-step verification everywhere that you can.

1. 不管在哪，都要用雙重驗證或兩步驟認證。

Your banking systems, Twitter, Facebook all support the ability for you to enable an additional security feature that you may not know.

你的銀行系統、推特和臉書都有支援這項你可能不知道的附加安全功能。

You can enable it and every time that you log in, it'll register your computer.

你可以啟動這項功能，這樣每次登入的時候，它都會記錄你的電腦。

And you can then get a text message to go into that system as a second form of verification.

你接著會得到一組能進入到系統的手機驗證碼，作為第二階段的驗證。

And why that's important is because if a hacker gets access to your password, they still have to have access to your phone to get access to your account.

這很重要，因為駭客取得你的密碼，他們仍然需要取得你的手機才能獲取你的帳戶。

And that's really important by enabling that specific security step, probably number one.

啟動這項特定的安全步驟真的很重要，應該是最重要的。

Number two, don't use the same password everywhere.

I know it's hard, but using the same password everywhere is one of probably the easiest ways that we break in as hackers.

我知道很難，但總是使用同一組密碼是很容易被駭客破解的。

So if you have the same Twitter password as your same banking information, those are things that can get you in some serious trouble.

所以如果你推特的密碼跟銀行密碼相同，你很可能會捲入一些麻煩中。

Number three, make sure that you stay up to date.

Every time you have a Windows update that says "Hey, I need to update your computer," it's usually to fix a known attack that hackers have figured out to get access to your computer.

每當你的 Windows 需要更新時，會出現：「嗨，我需要更新你的電腦。」，這其實是在修正一個駭客想出的，可以駭入你電腦的已知攻擊。

So keep up to date whether you're using a Mac, they aren't impervious to attack, or you're using Windows, same thing, update your systems.

所以保持更新，不管你是用 Mac —— 他們可不是百毒不侵的，或是 Windows，更新你的系統吧！

That's the most important thing, always keep up to date with what you're having out there.

這件事非常重要，總是更新到最新版本。

這同樣適用於第三方應用程式。

If you're using Java, Adobe, PDFs, Office documents, those are all things that you want to keep up to date and that makes it much harder for us as hackers to break in to your system.

如果你有使用 Java、Adobe、PDF 或 Office 文件，這些也要保持更新，如此一來駭客會較難侵入你的系統。

Number four, social media, be careful with how much information you actually put online.

4. 社交媒體，注意你放在網路上的資訊。

身為駭客，我們可以看見那些資訊。

Look at what you do, your spending habits, what you might be doing from a day-to-day perspective, going and buying Starbucks at a certain location.

看見你做的事、你的消費習慣、你每日可能做的事情，以及固定去的星巴克。

Those are all things that we can use to identify when you're gonna be out of the country or when you're gonna be at a business meeting.

我們可以利用這些資訊辨別你出國的時間或是參加商務會議的時間。

We can use that as a method to attack you.

我們可以利用這些資訊當作攻擊你的手段。

One of the main things that we do as hackers, especially when it comes to social engineering, is we create a sense of urgency.

身為駭客的主要工作之一，尤其是涉及到社交工程，就是我們創造急迫感。

Something that you're familiar with, but you have to take action upon.

你很熟悉這種情況，但你必須為此採取行動。

So let's just say for example, I'm a Verizon customer and I have an Amazon package that's getting delivered.

舉例來說，我是威訊通訊的消費者，我有一個正在配送的亞馬遜包裹。

Well, if I, as an attacker, know an Amazon package is getting delivered, sending a text message from a Verizon customer support service line coming from Amazon saying "Hey your package is being rerouted," you need to log into the site to get it delivered again, is something that an attacker can use.

身為駭客，如果我知道有一個亞馬遜的包裹正在配送，我會用威訊通訊的支援系統專線，代表亞馬遜寄簡訊說：「你包裹的配送路線被改變了。」你需要登入以下的網站，包裹才能再次配送，這是駭客會做的事。

So those are things that attackers can leverage is urgency, how you actually operate, and all that information that you post online are things that we can use as attacks.

駭客可以利用的事是急迫性、你工作的方式以及你放在網路上的資訊，駭客可以利用這些事作為攻擊的手段。

And last but not least, personal information.

That's one of the biggest things that attackers can leverage to get access to your data.

這是駭客能利用並取得你資料的其中一種方式。

Things like social security numbers, your credit card numbers.

例如：社交安全號碼或你的信用卡卡號。

A person is not going to call you on the phone from a banking service and ask you for that type of information.

銀行機構不會打電話詢問你這類的資訊。

So whenever you get a call, that's too good to be true, or a call that is a fraud services line, call them back.

所以當你接到好到令人難以置信的電話，或是接到詐騙專線的電話時，回撥給他們。

Look at the number on the website themselves and call it back cause a lot of times attackers will impersonate financial services.

在網路上查電話的資訊並回撥，因為駭客常常會假冒金融機構。

They'll impersonate different organizations to try to get your personal information and use that to be able to make fraudulent charges.

駭客會假冒各種不同的機構，試著要取得你的個人資訊，並利用資訊收取詐騙的費用。

So when it comes to that, your phone, verify first.

Go to their site, call the site itself, off from there and then call to an actual person that's actually at that institute itself.

去駭客的網站，打電話過去，離開網站後致電給機構中真正存在的人。