新闻链接：http://news.hitb.org/content/hacker-china-wastes-little-time-exploiting-heartbleed
新闻时间：Tue, 2014-04-15 05:04
新闻正文：
原文：
Hacker From China Wastes Little Time in Exploiting Heartbleed
For those who don't feel the urgency to install the latest security fixes for their computers, take note: Just a day after Heartbleed was revealed, attacks from a computer in China were launched.

The software bug, which affects a widely used form of encryption called OpenSSL, was announced to the world April 7 at 1:27 p.m. New York time, according to the Sydney Morning Herald. That sent companies scrambling to fix their computer systems -- and for good reason.

At 8:23 p.m. the following day, a computer in China that was previously used for hacking and other malicious activities tried to attack a server at the University of Michigan, said J. Alex Halderman, an assistant professor of electrical engineering and computer science. The university's computer was a "honeypot," which was intentionally left vulnerable and designed to attract attacks so researchers could study them.
译文：
中国黑客迅速利用“心脏出血”漏洞
对那些安装最新安全更新没有紧迫感的人们需要注意了：在“心脏出血”漏洞公开后仅仅一天的时间，就有一台来自中国的电脑对该漏洞发起了攻击。

《悉尼先驱晨报》在纽约时间4月7日下午1点27分公开了“心脏出血”漏洞，该漏洞存在于OpenSSL中，而OpenSSL是当今主流的一种加密形式。这迫使很多公司不得不抓紧时间来修复这个漏洞。

J.亚历克斯.哈尔德曼，密歇根大学电子工程和计算机科学助理教授，说道：漏洞发布后的第二天下午8点23分，一台来自中国的电脑利用该漏洞向美国密歇根大学的一台服务器发起了攻击。其实这台服务器只是一个“诱饵”，它被有意地设置成容易攻破的来诱使黑客对其发起攻击，从而让学校的研究人员来研究这些攻击。

[课程]Linux pwn 探索篇！