网络犯罪分子袭击萨尔瓦多，暴露 Chivo 钱包和公民数据

网络犯罪组织 CiberInteligenciaSV 已经危害了萨尔瓦多政府的安全，泄露了比特币钱包 Chivo 的源代码、VPN 凭证以及 510 万萨尔瓦多人的个人信息。黑客威胁称，除非政府官员进行对话，否则他们将公布更多数据。该组织的动机尚不清楚，但该事件凸显了加密货币领域 KYC 和集中式数据库的漏洞。

Cybercriminals Threaten El Salvador Government, Release Sensitive Data of Chivo Bitcoin Wallet and Citizens

网络犯罪分子威胁萨尔瓦多政府，泄露 Chivo 比特币钱包和公民的敏感数据

In a brazen act of cyberterrorism, a group of hackers known as "CiberInteligenciaSV" has unleashed a double blow on the government of El Salvador, compromising the security of its official Chivo Bitcoin wallet and exposing the personal information of millions of citizens.

一群名为“CiberInteligenciaSV”的黑客实施了无耻的网络恐怖主义行为，对萨尔瓦多政府造成了双重打击，破坏了其官方 Chivo 比特币钱包的安全，并暴露了数百万公民的个人信息。

Source Code and VPN Credentials Leaked

源代码和 VPN 凭证泄露

On April 23rd, CiberInteligenciaSV released the source code and VPN access credentials of the Chivo wallet on BreachForums, a notorious black hat hacking forum. This confidential information gives malicious actors the ability to manipulate the wallet, potentially leading to financial losses for users.

4 月 23 日，CiberInteligenciaSV 在臭名昭著的黑帽黑客论坛 BreachForums 上发布了 Chivo 钱包的源代码和 VPN 访问凭证。这些机密信息使恶意行为者能够操纵钱包，从而可能给用户带来经济损失。

The hackers claim to have ulterior motives, hinting at a desire to engage in dialogue with senior political leaders or extort the government.

黑客声称别有用心，暗示希望与高级政治领导人进行对话或勒索政府。

Massive Data Breach Exposes Citizens' Privacy

大规模数据泄露暴露公民隐私

Just days before the Chivo wallet leak, CiberInteligenciaSV had breached a database containing the personal information of 5.1 million Salvadorans. This colossal data dump included names, identification numbers, dates of birth, addresses, and facial images.

就在 Chivo 钱包泄露的前几天，CiberInteligenciaSV 泄露了包含 510 万萨尔瓦多人个人信息的数据库。这个巨大的数据转储包括姓名、身份证号码、出生日期、地址和面部图像。

The compromised information is believed to have been obtained from the Chivo wallet, where users are required to provide their personal details for KYC compliance. This incident highlights the potential dangers of centralized databases in the cryptocurrency world, where sensitive information can be easily exploited.

据信，泄露的信息是从 Chivo 钱包获得的，用户需要提供个人详细信息以确保符合 KYC 要求。这一事件凸显了加密货币世界中中心化数据库的潜在危险，敏感信息很容易被利用。

Government's Response

政府的回应

The Salvadoran government has remained conspicuously silent in the face of these cyberattacks. The lack of a swift and transparent response has raised concerns about the government's ability to protect its citizens' data and maintain the integrity of its Bitcoin infrastructure.

面对这些网络攻击，萨尔瓦多政府一直保持沉默。缺乏迅速和透明的反应引发了人们对政府保护公民数据和维护比特币基础设施完整性的能力的担忧。

Chivo Wallet's Troubled History

Chivo 钱包的麻烦历史

The Chivo wallet, launched in September 2021, has faced numerous technical issues and complaints from users. Despite being touted as a tool to bring financial inclusion, many Salvadorans have reported difficulties in using the wallet and redeeming the promised $30 bonus.

Chivo 钱包于 2021 年 9 月推出，面临众多技术问题和用户投诉。尽管被吹捧为实现金融包容性的工具，但许多萨尔瓦多人表示在使用钱包和兑现承诺的 30 美元奖金方面存在困难。

El Salvador's Bitcoin Ambitions

萨尔瓦多的比特币野心

Despite the setbacks, El Salvador remains committed to its Bitcoinization efforts. The country has been investing heavily in Bitcoin-related infrastructure, including Lightning Network technology and "Volcano bonds," which aim to attract investment and reduce debt.

尽管遇到挫折，萨尔瓦多仍然致力于比特币化的努力。该国一直在大力投资比特币相关基础设施，包括闪电网络技术和“火山债券”，旨在吸引投资并减少债务。

Cryptocurrency Evolution in Latin America

拉丁美洲的加密货币演变

The cyberattacks on El Salvador serve as a wake-up call for governments and private companies alike. As Latin America continues to embrace cryptocurrencies, it is imperative to implement robust cybersecurity measures and protect users' sensitive data.

萨尔瓦多的网络攻击给政府和私营企业敲响了警钟。随着拉丁美洲继续接受加密货币，必须实施强有力的网络安全措施并保护用户的敏感数据。

The race for cryptographic evolution in the region is accelerating, with countries such as El Salvador leading the charge. However, it is crucial to balance innovation with security and ensure that citizens' financial well-being and privacy are not compromised.

该地区的加密货币演进竞赛正在加速，萨尔瓦多等国家处于领先地位。然而，平衡创新与安全并确保公民的财务福祉和隐私不受到损害至关重要。

Urgent Need for Action

迫切需要采取行动

The government of El Salvador must take immediate action to address the cyberattacks and reassure its citizens. It must work closely with cybersecurity experts to patch vulnerabilities, investigate the breaches, and bring the perpetrators to justice.

萨尔瓦多政府必须立即采取行动应对网络攻击并安抚其公民。它必须与网络安全专家密切合作，修补漏洞、调查违规行为并将肇事者绳之以法。

Furthermore, the government should re-evaluate its KYC policies and explore alternative methods of user identification that prioritize privacy and security.

此外，政府应重新评估其 KYC 政策，并探索优先考虑隐私和安全的用户识别替代方法。

The cryptocurrency industry must also play a role in protecting users. Exchanges and wallet providers should implement multi-factor authentication, cold storage, and other security measures to minimize the risk of hacks.

加密货币行业还必须在保护用户方面发挥作用。交易所和钱包提供商应实施多因素身份验证、冷存储和其他安全措施，以最大程度地减少黑客攻击的风险。

Conclusion

结论

The cyberattacks on El Salvador are a stark reminder of the evolving threats facing governments and citizens in the digital age. Robust cybersecurity measures, responsible data handling practices, and international cooperation are essential to protect financial systems, personal information, and the future of cryptocurrency adoption.

萨尔瓦多的网络攻击清楚地提醒人们，数字时代政府和公民面临着不断变化的威胁。强大的网络安全措施、负责任的数据处理实践和国际合作对于保护金融系统、个人信息和加密货币采用的未来至关重要。