ADM-201 dump PMP dumps pdf SSCP exam materials CBAP exam sample questions

已经可以用音乐来攻击你的手机了 – 译学馆
未登录,请登录后再发表信息
最新评论 (0)
播放视频

已经可以用音乐来攻击你的手机了

Hackers Can Now Break Into Your Phone Using Music

你的手机里有这么多重要的东西,制造商不遗余力地确保
With so much important stuff on your phone, companies have gone to great lengths to make
它们的安全
them secure.
他们从物理及数码角度采取措施阻止黑客侵入你的手机
They’ve taken steps to keep hackers from breaking into your phone, either physically
但是可听见的声音呢?
or digitally, but what about audibly?
密歇根大学和南卡罗来纳大学的研究人员发现
Researchers from the University of Michigan and the University of South Carolina have
用声音来破解手机是可能的
found it’s possible to hack your phone using sound.
这个过程可以通过欺骗手机的加速计、运动传感硬件
The process works by tricking the phone’s accelerometer, the hardware that senses movement
以及在这一节结束时你会讨厌的单词
and a word you’re going to hate by the end of this episode.
你知道当你把手机横向翻转时 它会切换到横向模式吗?
You know when you flip your phone sideways and it switches to landscape mode?
这就是加速器的效果
That’s because of the accelerometer.
说过两遍了
That’s twice we said it already.
研究人员通过在一个廉价的扬声器上播放特定的声音
The researchers tested 20 accelerometer models from 5 different manufacturers by playing
从5个不同的制造商中测试了20个加速计的模型
certain sounds over a cheap speaker.
他们发现其中65%的加速计可以通过声波攻击来操控
They found 65% of them could be manipulated with a sonic attack.
这并不算是一个新概念 以前的研究已经证明声波完全
This isn’t an entirely new concept; previous research has demonstrated that sound waves
可以使加速计失效
could be used to disable accelerometers entirely.
这项研究表明 加速计也可以用声音进行精准控制
What this research shows is that accelerometers can be finely controlled with sound too, not
而不仅仅是关闭
just shut down.
这个漏洞来自于一个简单的疏忽:制造商没有想到有人会去打加速计的注意
The vulnerability comes from a simple oversight: manufacturers didn’t expect anybody to monkey
导致这个接收输入信息的软件成了入侵者的福音
with the accelerometer, so the software that interprets the input takes it as gospel.
当然 像这样的攻击只会影响依赖于加速计的软件
Of course an attack like this can only affect software that relies on the accelerometer,
所以这并不能被用来盗取你的个人信息以及相关的东西
so it can’t be used to steal your personal info or anything like that.
科学家们证明 声音可以被用来驱动由手机控制的遥控汽车
The scientists demonstrated that sound could be used to drive an radio controlled car that
或者黑进一个处于静止状态的fitbit跑步机 让它记步
was controlled by a phone, or hack a fitbit into counting steps while it was sitting still.
懒得动的同时 你还可以欺骗自己你运动了
Just be lazy but tell yourself you worked.
这听起来并不很严重 但这不仅仅是手机这一方面
Awright so that doesn’t sound that alarming, but this could go beyond just phones.
自动驾驶汽车依赖于一套传感器运作 包括加速计 所以它们也有被黑
Self driving cars rely on a suite of sensors including accelerometers and so they could
的风险
be at risk.
任何情况下 你都不会希望有人干涉你的驾驶
You don’t want somebody meddling with how your car drives in any circumstance, but doubly
不过当你不开车的时候就不好说了
so when you’re not steering it.
研究人员预想了有人会利用这一漏洞进行其他不法用途
The researchers imagined other nefarious uses for this exploit.
举个例子 如果一个胰岛素泵依靠加速计来实现自动控制剂量 那么篡改它
For example, if an insulin pump relies on an accelerometer to automate dosage, tampering
是会致命的
with it could be fatal.
好消息是大部分的攻击都可以通过软件而不是硬件来阻止
The good news is most of these attacks can be thwarted with software rather than hardware,
研究人员联系了加速计的制造商
and the researchers contacted the manufacturers of the accelerometers with recommendations
并就如何修复他们设计中的缺陷提出了建议
on how to fix the flaws in their designs.
这项技术曾在一种被称为电容加速计的主流加速计上进行测试
This technique was also only tested on one of the major types of accelerometers, called
通过改变微小的质量就可以工作
a capacitance accelerometer, which works by moving small masses around.
常见的技术都是依赖于压电加速度计 在这种情况下
The most common technology relies on piezoelectric accelerometers instead, where microscopic
晶体会因加速而受到压力 并由芯片
crystals become stressed by acceleration and create a voltage that is interpreted by a
释放出电压
chip.
研究人员说声波可以在电容加速计中引起质量的细微改变 但是不清楚同样的技巧是否适用于这些晶体
The researchers say sound waves could move the small masses inside a capacitance accelerometer,
但是不清楚同样的技巧是否适用于这些晶体
but it’s unclear if the same trick would work on these crystals.
用声音窃听电话实际上已有很长的历史了
Hacking phones with sound actually has a long and illustrious history.
从20世纪50年代开始 就有人自称电话飞客(即PH)
Starting in the 1950s people who called themselves phreakers with (a “PH”) figured out how
他们已经知道如何只利用声音在通话系统中打免费电话
to game the telephone system to make free calls using nothing but sound.
电话系统使用精确的频率来实现通话 这就是为什么当你按下电话数字按键时
Telephone systems used precise frequencies to route calls, it’s why your phone’s
你的手机按键会产生特定的音调
buttons make specific tones when you press them.
所以只要和接电话的人在同一频率上 这些电话飞客就可以给任何
So by playing the right frequencies into the receiver, phreakers could connect to whomever
他们想打电话的人通话
they liked.
这些人就像原始的黑客 匿名以及隐藏其他一切信息
These people were like proto-hackers, with anonymous personas and everything.
其中有两个十几岁的电话飞客就是后来非常出名的斯蒂芬.沃兹尼克
Two phreakers who would later become famous were a couple teenagers named Steve Wozniak
和斯蒂芬.乔布斯
and Steve Jobs.
早在创办苹果公司之前,这两人就曾尝试创建数字电路来制造
Long before Apple, the two experimented with creating digital circuits that could create
可以黑进电话的音调
tones to hack phones.
他们第一次的商业合作就是售卖自制盗用电话线路盒 实际上曾引起
One of their first business ventures was selling homemade phreaking boxes, which actually caught
FBI的关注 尽管他们从未被抓住过
the attention of the FBI, though they never caught the Steves.
有点讽刺意味的是 在史蒂夫·乔布斯盗用电话线路的40年之后
It’s a bit ironic that 40 years after Steve Jobs toyed around with phreaking, people might
有人可能会利用声音黑进他曾参与开发的手机
be figuring out how to use sound to hack the phones he helped create.
特别鸣谢我们的赞助商 domain.com
Special thanks to our sponsor, Domain dot com.
当你在domain.com网站购买域名时 你就迈出了创建
When you buy a domain name from Domain Dot Com, you’re taking the first steps in creating
品牌和愿景的第一步
an identity and vision for your brand.
没有任何扩展域名能像以.com或者.net结尾的域名更具说服力
No domain extension will help tell your story like a DOT COM or DOT NET domain name.
当你在domain.com网站购买域名和虚拟主机的时候 别忘了
Get 15% off Domain Dot Com’s already affordable domain names and web hosting when you use
结账时使用Seeker的优惠券码 它可以给你85折优惠
coupon code SEEKER at checkout.
如果你想知道为什么用软件入侵手机很困难 看看朱利安的
If you want to learn why it’s hard to hack into a phone with software, check out Julian’s
iphone加密视频吧
video on iphone encryption here.
好吧 我知道我说了很多此加速计这个词 但没办法 没有加速度计的同义词
Ok I know I said accelerometer a lot, but I couldn’t help it, there is literally no
没有可以替代加速计这个词的同义词
synonym for accelerometer.
你觉得这个词我一共说过多少次?
How many times do you think I said it?
请在评论中告诉我们 同时订阅我们的节目
Let us know in the comments and go ahead and subscribe while you’re down there.
感谢收看Seeker
Thanks for watching Seeker!
加速计
Accelerometer.

发表评论

译制信息
视频概述

科技越来越进步,然而道高一尺,魔高一丈,单凭声音就可以黑进你的手机!(黑客)

听录译者

收集自网络

翻译译者

survivor

审核员

瞌睡虫儿

视频来源

https://www.youtube.com/watch?v=HF-uEK0fDgQ

相关推荐