索尼影業(yè)員工向《財(cái)富》匿名披露公司被黑全過程
????感恩節(jié)之前的那個(gè)星期一,我們都照常上班。有些同事來到公司,打開電腦開始工作。大約在上午8點(diǎn)15分,電腦突然黑屏死機(jī)。 ????黑客讓整個(gè)網(wǎng)絡(luò)陷入了癱瘓狀態(tài),那周剩余的幾天,我們基本上都無(wú)法工作。不過由于那個(gè)星期是假期,這倒也沒有太大影響。但事情進(jìn)展到星期二和星期三的時(shí)候,人們已漸漸明白:這并不是一起單純的黑客行為。 ????在感恩節(jié)期間,我還拿這件事開玩笑來著。大家都以為過段時(shí)間工作就能恢復(fù)正常,我們還有許多文件要處理,年底之前還有很多工作要完成。 ????直到第二周的周一周二,我們才意識(shí)到事情的嚴(yán)重性。我們被告知,電腦可能需要幾個(gè)星期才能修復(fù)。隨著遭竊密的信息被披露,一切就更加明白無(wú)疑了。到了周三周四的時(shí)候,公司的人開始說:趕快通知銀行、修改你的密碼、開一個(gè)新的支票賬戶。 ????我怒不可遏。一旦涉及到個(gè)人,這感覺就不一樣了:開什么玩笑?周圍那些有家室的同事臉上寫滿了擔(dān)心,這關(guān)系到他們一生的積蓄、養(yǎng)老金和孩子們的未來。 ????所有這些信息我們都是通過外界博客、網(wǎng)站這些渠道獲知的。邁克爾(索尼影業(yè)首席執(zhí)行官)和艾米(公司聯(lián)席主席)提供的信息反而不多。 ????公司給每個(gè)員工配備了身份保護(hù)服務(wù)All Clear ID,這是一家安防監(jiān)控公司的產(chǎn)品,但有些人說LifeLock的保護(hù)服務(wù)更好,于是我決定自己買一個(gè)。每月服務(wù)費(fèi)要29.99美元,但這個(gè)錢非花不可。 ????那個(gè)周末,我給自己所有的銀行賬戶、信用卡都設(shè)置了警報(bào)系統(tǒng),每筆交易后我都會(huì)收到短信,每當(dāng)要付費(fèi)時(shí),那些手機(jī)應(yīng)用都會(huì)在屏幕上給我推送通知。 ????我把所有銀行和信用卡的密碼都換了,一共五個(gè),然后是401(k)退休金賬戶、醫(yī)療保險(xiǎn)賬戶、三個(gè)電郵賬號(hào)和Facebook。還有亞馬遜、eBay、PayPal和其他購(gòu)物網(wǎng)站的密碼。加起來大概有25到30個(gè)。 ????幾天后,我們用借來的筆記本電腦、筆和紙重新創(chuàng)建PPT和數(shù)據(jù)庫(kù)。幾乎做生意要用到的一切都得重做:各種Word文檔、合同、PDF文件。我們不停手地盡可能做著補(bǔ)救工作。但盡管如此,人們總有幾天需要離開辦公室處理私人事務(wù)。 ????繼而,我還想確保自己不會(huì)被莫名扣掉500塊錢。我已經(jīng)決定再也不用公司電腦登陸自己的理財(cái)賬戶。如果要處理某些緊急事情,我會(huì)用自己的手機(jī)或者回家完成。不值得去冒那個(gè)險(xiǎn)。 ????還有些同事有點(diǎn)反應(yīng)過度,他們甚至更換了自己的護(hù)照什么的。對(duì)我來說,錢和財(cái)產(chǎn)安全是最重要的。 ????這件事給我敲了一記警鐘——我用不用擔(dān)心有人會(huì)盜用我的醫(yī)保賬戶?還有,公司高層對(duì)于事情的處理令人失望。他們?yōu)槭裁床粸閱T工提供更多的幫助?為什么不聘用網(wǎng)絡(luò)安全顧問? ????所有關(guān)于此事的新聞報(bào)道里,你都能讀到公司員工士氣低落,我不想這么說。工作還得繼續(xù),但是這件事給人們提了個(gè)醒:你該時(shí)時(shí)注意身后,小心駛得萬(wàn)年船。(財(cái)富中文網(wǎng)) ????*鑒于黑客事件當(dāng)前的敏感性,此員工姓名已被隱去。 ????譯者:南風(fēng) ????審校:Patti |
????The Monday before Thanksgiving, we all came to work. Some people had turned on their computers and were working. At around 8:15 a.m., that black screen of death came on. ????They shut down the entire network. We couldn’t really work the rest of the week, which seemed OK because it was a holiday week. But as Tuesday and Wednesday progressed, it became clear that this wasn’t a simple hack. ????Over Thanksgiving, I joked about it. We all thought it might take a while to get our work life back—files, things we have to do before the end of the year. ????It wasn’t until Monday or Tuesday of the following week when we realized the extent of it. That’s when we got word that it might take weeks to get back up. Things became more clear when it was revealed what information was released. Around Wednesday or Thursday, people started saying: call your bank, change your passwords, set up a new checking account. ????I was completely irate. Once it got personal, it was just, are you kidding me? Seeing the faces of colleagues with families—they’re worried about their life savings, their retirement funds, their kids. ????And the blogs were the ones giving us all the information. We got more information from blogs and websites than we did from Michael [Lynton, CEO of Sony Pictures Entertainment] and Amy [Pascal, co-chair of Sony Pictures Entertainment]. ????The company provided us with All Clear ID, which is a security monitoring firm, but some people said that LifeLock was the way to go, and I decided to get it. There’s a reason you pay [$29.99 a month] for it. ????That weekend, I set up alerts on all my bank accounts and credit cards. I get a text message about every transaction, and the [smartphone] apps send me notifications on my home screen anytime there’s a charge. ????I changed every single password. Five for banking and credit cards. Then for my 401(k), health insurance, three email accounts, and Facebook. I changed them for Amazon, eBay, PayPal, and other shopping sites. In all, it was probably 25 to 30. ????A few days later, we were on loaner laptops, pen and paper, recreating PowerPoints, re-creating databases. All the things you’d need when you’re working on any kind of business deal. Word documents, contracts, PDFs. We chugged along. We did as much as we could. But there were certain days that people had to leave the office to do what they had to do personally. ????Going forward, I want to know that I won’t get a random $500 charge. I decided that I’m never going to access any of my financial accounts on my work computer ever again. If I need to do something urgently, I’ll use my smartphone, or I’ll go home and do it. It’s not worth the risk. ????Some people have gone a little overboard, changing their passports and things like that. For me, money and keeping my finances secure is most important. ????It’s taken a toll, mentally—do I have to worry about someone getting a random medical procedure with my benefits? And there’s the frustration at the way the top top brass handled the situation. Why didn’t they provide more for the employees? Why didn’t they bring in security consultants? ????You read all these reports about morale being low. I wouldn’t say it’s low. You chug along. But it is like, wow, you always have to look over your shoulder. This is forever. ????*The employee’s name has been withheld due to the sensitivity of the ongoing situation. |