威瑞森：譴責網絡間諜活動不能光盯著中國

????7. 各種失誤

????噢，我不小心又捅簍子了——比如我把一封含有敏感信息的電子郵件發給了錯誤的收件人。這是這種無意間造成的數據泄露的典型案例。其它案例還包括把非公開信息張貼到公司的網絡服務器上，或者是通過郵局把信件寄到了錯誤的地址。人為失誤無可避免（除非把他們開除了，然后統統換成電腦），不過威瑞森公司指出，企業可以部署一套數據丟失預防軟件，以減少通過電子郵件發送敏感文件的情況。此外，還可以在向外部和內部網站發布文件的流程上制訂更嚴格的規定。

????8. 實物被盜/丟失

????不知道大家知不知道這樣有一個有趣的事實：像手機和筆記本這樣的企業資產在公司辦公室里被盜的概率往往要高于在家里或在交通工具上被盜的概率。造成這種情況的主要原因是人們的粗心。威瑞森的報告就此無奈地指出：“意外總是會發生的，總有人丟東西，也總有人偷東西，這是沒法改變的事實。”唯一能改變的就是，建議公司給設備加密，給數據做備份，然后告訴員工把東西看緊些。

????9. 分散式拒絕服務攻擊

????最后值得的一提的是所謂的分散式拒絕服務攻擊（DDoS），它包括所有旨在使網絡和系統癱瘓的攻擊。這種攻擊形式主要針對金融、零售和公共部門。雖然黑客發動此類攻擊的動機仍然是老三樣——敲詐、抗議、惡作劇，但是攻擊者所使用的工具卻變得更加先進，而且這些工具在命名上也更加親切，比如“Brobot”（哥們兒）和“itsoknoproblembro”（別擔心，沒事的，哥們兒）等。（財富中文網）

????譯者：樸成奎

????7. Miscellaneous errors

????Oops, I did it again -- as in, I sent an email containing sensitive information to the wrong recipient. That's the most common example of this kind of unintentional data disclosure. Others include accidentally posting non-public information to a company's web server or even snail-mailing documents to the wrong physical address. There's no cure for human error (other than replacing them with computers, of course), but Verizon says corporations can implement data loss prevention software to reduce instances of sensitive files sent by email and tighten processes around posting documents to internal and external websites.

????8. Physical theft/loss

????Here's a fun fact: It turns out that corporate assets like phones and laptops are stolen from corporate offices more often than from homes or vehicles. The primary cause of this type of incident?Carelessness.According to the Verizon report: "Accidents happen. People lose stuff. People steal stuff. And that's never going to change." The only thing you can change, advises the company, is to encrypt devices, back up data, and encourage employees to keep their gadgets close.

????9. Distributed denial-of-service attacks

????Last but not least, so-called DDoS threats include any attack aimed at compromising the availability of networks and systems. These are primarily directed at the financial, retail and public sectors. And while the motives behind shutting down corporate, consumer-facing websites remains the same -- extortion, protest, or perverse fun -- the tools at attackers' disposal have become more sophisticated and more thoughtfully named, such as "Brobot" and "itsoknoproblembro."