Interview know Chuang Yu: we first qualitative 12306 leakage incident
Source: Internet
Author: User
KeywordsInterview first
New Year's Day approaching, the spring Festival will come, the train ticket booking into the peak season, but on the morning of December 25, a Chinese railway ticketing website 12306 of the vulnerability report appeared in a well-known platform, the report said that 12306 sites have "a large number of user data leakage" of high-risk loopholes, For a time caused the Internet users of extreme panic and the industry's extensive attention. But it is puzzling that different internet companies or security companies have a very different interpretation of the event. Industry experts said that obviously very simple an Internet security incident, but by the major companies to use as a hype their own products or attack the products of the tool, it is against the original intention of security. and innocent netizens in countless so-called "authoritative report" before more unprepared, and even netizens said "no longer dare to go to 12306 booking." "In all of the 12306 Information Disclosure incident analysis, know that the first published a report by the company, including the Southern Metropolis newspaper and other authoritative media adopted." The report said: "The first time after the security research team in-depth analysis, the basic conclusion is that hackers use" collision "behavior to obtain the user's sensitive information. Even so, the Internet is still the voice of the questioning, that the conclusion is hasty, even the more extreme emotional users and peers think that 12306 sites have greater security risks, which makes all anxious to buy the holiday return tickets to the hundreds of millions of netizens nervous. Until the police announced the "leak incident" suspect arrested, and confirmed that the suspect through the collection of other Internet platform leaked user name plus password information on 12306 sites to "pool" match to obtain the so-called "leaked information", the incident was the truth, and the network of all kinds of curse and war just vanished. It is understood that the first time that 12306 sites have security risks, know the creation of the security research team quickly to the incident as a "pool", and to the whole society to disclose, and through the media to remind netizens "different Internet platform as far as possible do not use the same username and account password, in order to reduce the" pool " The risk of disclosing privacy information. Know Chuang Yu Chief safety Engineer (CSO) Zhou Jingping ("Black elder brother"), know that Chuang Yu do so much in fact is not to be in front of other peers dazzle technology, also do not need to argue with other opponents of the relevant conclusions of the right and wrong. He said: "In the first time through the most scientific and rigorous analysis methods, to find out the most potential network security risks, and the truth to inform the public, is the most important." "Treat security incidents, do not do things in a competitive way, and do not do security for safety." We engage in network security, the ultimate goal should be to use our security technology, how to benefit netizens, protect their online consumption, trading is not threatened, this is the real white hat. "Zhou Jingping said. "In fact, our idea is very simple, when we learned that the network threat exists, quickly into the depth of cobwebs research and excavation, to obtain the truth of the incident and public, to enhance the public's network security awareness and defense level." ”"We think white hats should do this," said Zhao, the founder and CEO of the company. "We want to do this on the Internet and use our security technology to protect the interests of every netizen." ”
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.