防不胜防的僵尸网络 Where cyber space meets the Wild West

Four months ago Microsoft scored a cyber coup. Its digital sleuths identified a “botnet”, or fake server, that had installed malware on computers worldwide, and then it worked with the Federal Bureau of Investigation and others to shut it down. To their alarm they discovered that no fewer than 12m — yes 12m — PCs were infected, according to Tom Burt, the company’s deputy general counsel.

4个月前，微软(Microsoft)在网络世界取得了一次成功。该公司的数字化侦察器发现了一个在世界各地许多计算机中安插了恶意软件的“僵尸网络”（也就是假服务器），随后与美国联邦调查局(FBI)及其他方面合作关闭了该网络。微软副总法律顾问汤姆•伯特(Tom Burt)称，让他们担心的是，他们发现有至少1200万台——没错，就是1200万——个人电脑已被感染。

If you are tempted to shout “hooray”, that is understandable. After all, botnets pose a particularly pernicious threat since they are fiendishly hard to find. And cyber attacks in general are increasing explosively, costing global businesses $400bn a year, according to data from Microsoft.

如果你不禁大声叫好，是可以理解的。毕竟，因为“僵尸网络”极其难以被发现，它们构成了极其可怕的威胁。微软数据还显示，总体来看，网络攻击数量呈爆炸式增长，每年对全球企业造成4000亿美元的损失。

There is a catch, though. Microsoft and the FBI now hope to bring the cyber hackers who created that botnet to court. But since this botnet was not entirely run from US soil — and those 12m infected computers sit everywhere around the world, from China and India to Chile and the US — the saga could be about to plunge into a legal grey zone.

然而，有一个难题。微软和FBI现在希望将创建这个“僵尸网络”的网络黑客诉诸公堂。但是，由于这个“僵尸网络”并不完全在美国境内运行，同时那1200万台被病毒感染的电脑分散在从中国、印度到智利和美国的世界各地，这件奇功接下来可能会陷入法律灰色地带。

“Think of a situation where you have a botnet in Singapore run by hackers in Bulgaria who cause damage to somebody in America,” Mr Burt told a Financial Times conference in Washington this week. “Who has jurisdiction? What laws are used?” Nobody knows. In cyber space, as in the global financial system a decade ago, a plethora of criminal activity is in danger of falling between the cracks because national rules are ill suited to a fast-moving digital world.

“试想这样一个情境——保加利亚的黑客在新加坡运营的‘僵尸网络’对美国某个人造成了损害，”伯特不久前在英国《金融时报》于华盛顿举办的一场会议上称，“谁拥有司法管辖权？适用哪国法律？”没人知道。在网络空间，就像10年前的全球金融体系一样，非常多的犯罪活动都可能会逃脱制裁，因为各国法律没跟上快速发展的数字化世界。

Investors and politicians around the world should take note — and worry. Deeply. In the past couple of years, western governments and businesses have made considerable strides in building defences against cyber crime. This week in Washington, for example, the Department of Homeland Security is launching an “automated information-sharing” program for utility companies. The aim is to ensure that, “when adversaries try something” against one US utility company, everyone else is alerted, according to Suzanne Spaulding, an undersecretary at the department.

世界各地的投资者和政界人士应该留意，并为此感到担忧——严重担忧。过去几年，西方政府和企业在构建网络犯罪防御网方面取得了长足的进展。例如，不久前在华盛顿，美国国土安全部(DHS)为公用事业企业启动了一项“信息自动分享”计划。DHS副部长苏珊娜•斯波尔丁(Suzanne Spaulding)称，该计划的目的是确保当有人对一家美国公用事业企业图谋不轨时，每个人都会收到警报。

In truth, such information-sharing is still imperfect. John Carlin, assistant attorney-general for national security, admits “the vast majority of companies do not report small intrusions” to each other. But the situation is better than four years ago, when suspicion between business and the security establishment reached such depths that the US Chamber of Commerce dragged its feet about setting up mandatory information-sharing programs. And the fact that nobody has yet conducted a successful hack on a US utility, say, is one reason for comfort.

事实上，这类信息分享计划仍不完善。美国司法部负责国家安全事务的副部长约翰•卡林(John Carlin)承认，“绝大多数企业并不相互通报自己受到的小规模入侵”。但是如今的情况要好于4年前，当时企业和安全机构相互抱有极深的戒心，以至于美国商会(US Chamber of Commerce)在建立强制信息分享计划时也拖拖拉拉。目前还没有任何针对比如一家美国公用事业企业的黑客攻击得手过，这是值得欣慰的地方。

But, as business and government strengthen their defences, the big missing piece of this campaign is punishment. As any parent or regulator knows, it is hard to deter wrongdoing without a system for imposing discipline. And, right now, remarkably few cyber criminals have been brought to trial relative to the scale of the current $400bn heist.

但是，随着企业和政府加强防御，这一行动一大块缺失的部分也凸显了出来，那就是：惩罚。正如任何父母或监管机构都知道的那样，没有一个强制施加管教的机制，就很难阻止不当行为。相比现在每年4000亿美元的损失规模，目前被告上法庭的网络罪犯数量少之又少。

That partly reflects the difficulty of identifying and apprehending perpetrators, particularly in places such as Russia and China. The other big problem is the one faced by Microsoft: the legal framework across borders is a mess.

这部分反映出确认犯罪者身份和施加逮捕的难度，特别是在俄罗斯和中国等地区。另外一个大麻烦是微软面对的问题：跨国法律框架一片混乱。

In a rational world, this would suggest a multilateral body, such as the UN, urgently needs to create some common laws or at least promote more mutual recognition. In the real world, sensible collaboration is hard to organise now; indeed, events such as the Edward Snowden affair — where revelations by a former US National Security Agency contractor about the extent of American internet surveillance fuelled transatlantic rows over privacy — are making this debate even harder. “Walls are going up,” says Mr Burt.

在理性的世界中，这意味着一家多边机构（比如联合国）迫切需要制定一些通用法律，或者推动各国加强法律互认。而在现实世界里，理性的合作眼下很难组织起来；事实上，爱德华•斯诺登(Edward Snowden)等事件正使得相关讨论更加难以进行。斯诺登是前美国国家安全局(NSA)合同工，他关于美国互联网监视强度的爆料，引发欧美关于隐私问题的争执。“高墙正在竖起，”伯特称。

So in the interim, US officials are using whatever homegrown tools they have. Mr Carlin, for example, says Washington security officials recently managed to extradite from Malaysia a suspected hacker who had created a cyber attack against a US retailer that spearheaded a bigger Islamist plot.

因此，在现阶段，美国官员正在利用一切本土手段。例如，卡林称，华盛顿方面的安全官员最近成功从马来西亚引渡了一名黑客嫌疑犯，此人对美国一家零售商发动了一场网络攻击，为一个更大的伊斯兰主义阴谋做先期准备。

But strong-arm US legal action is not an effective long-term solution; not least because such unilateral measures risk sparking a backlash. And many western companies are in effect stuck: they can build defences against cyber crime but cannot effectively retaliate.

但是，美国强硬的法律行动从长期来看并非有效的解决方案；尤其是因为此类单边措施可能会引发反作用。很多西方企业实际上都被困住：它们可以构建针对网络犯罪的防御网，但是无法有效反击。

So when people describe cyber space as the new Wild West, they are only half correct. This is a place where baddies have an endless supply of cheap guns but ordinary citizens have only barricades. This looks unlikely to change soon — unless and until companies such as Microsoft find a way to put those botnet creators behind bars. That would be an even more remarkable coup.

所以，当人们把网络空间形容为新的“狂野西部”(Wild West)时，他们只说对了一半。网络空间是这样一个地方：坏人有源源不断的廉价枪支供应，而普通公民只有防御工事。这种状况似乎不太可能很快改变——除非微软等企业找到将“僵尸网络”的创建者绳之以法的办法。那将是一次更引人瞩目的成功。