苹果日历应用遭“垃圾信息”攻击
时间:2016-12-02 15:44:01
来源:平和英语村 作者:平和英语村
Apple iPhone owners are reporting a rise in unwanted event invitations appearing in their calendars.
据苹果用户称,手机“日历”应用中近期不断跳出一些活动邀请的骚扰信息。
The invitations often offer discounts on designer labels, but they are from spammers, not the brands they claim to represent.
这些邀请多为品牌打折消息,但都是垃圾信息,而不是用户自己订阅的品牌信息。
Whether the recipient accepts or rejects the invitation, it notifies the spammer that the message has been received, so that more can follow.
无论用户接受或拒绝这些邀请,系统都会自动通知垃圾邮件制作者该信息已被接收,从而会有更多信息推送至用户端。
Sometimes they take the form of photo-sharing alerts.
有时,信息也会以照片共享提醒的形式发出。
Rather like spam email, the invitations are sent at random to huge email lists, and they appear as calendar notifications.
就像垃圾邮件一样,这些邀请会随机发给大量邮箱,以日历通知的形式跳出。
The flaw has existed for a while but has only recently been exploited, particularly in the run up to Black Friday.
这个缺陷已存在一段时间了,但直到最近才被非法利用,尤其是黑色星期五前这段时间。
"It’s a problem with the way the iCloud works," said Prof Alan Woodward, a cybersecurity expert at Surrey University.
“这个问题是由iCloud的工作方式引起的。”萨里大学网络安全专家Alan Woodward教授说。
"Because the calendar and photo sharing is mirrored to the cloud - even if you say you don’t want to go it still keeps a copy in the cloud.
“日历和照片共享是云端的映射——即使你不希望如此,它仍然会在云端留有备份。”
"You can turn the iCloud off, but that defeats the object of having it, or you can use a complicated work around.
“你可以把iCloud关掉,但这样就失去iCloud存在的意义了;或者你也可以采用一种复杂的变通方案。”
"What they really need is an ’ignore’ button."
“人们真正需要的是一个"忽略"按钮。”
Business lawyer and technology writer David Sparks wrote a guide to dealing with the influx of unwanted mail on his blog.
商业律师和技术作家David Sparks在博客上写了一篇应对大量涌入垃圾邮件的技术贴。
He suggested creating a special calendar specifically for the spam or moving the notifications to arrive in email form, which can then be deleted without the sender knowing.
他建议创建一个专门针对垃圾邮件的特殊日历,或将通知转成邮件形式接收,然后便可以在用户不知情的情况下直接删除。
"Most of the calendar spam I’ve seen has originated from China," he wrote.
“我见过的大多数日历垃圾消息都来自中国。”他写道。
"Somebody has a big list of email addresses and sends out calendar invites with spammy links embedded.
“有人获取了一长串邮箱地址,然后发送带有垃圾链接的日历邀请。”
"My guess is this is only going to get worse, and I really hope Apple intervenes."
“据我猜测,情况只能越来越糟,希望苹果公司能够尽早介入。”
Apple has been contacted by the BBC.
BBC已与苹果公司取得联系。
本文链接:http://www.phenglish.cn/reading/2016-12-02/205.html