据法媒11月4日的消息，法国《解放报》对卢浮宫的安全系统进行了一次调查，发现2014年法国国家网络安全局（the French National Cybersecurity Agency, ANSSI）对卢浮宫的一份审计报告中显示，卢浮宫的视频监控系统服务器的密码竟然就是简单的“louvre”（即卢浮宫法语拼写）。

A post-heist report on the Louvre's security found that the password for the museum's video surveillance system was shockingly set to "LOUVRE". These reports come from confidential documents produced by over a decade of security reviews conducted by the French National Cybersecurity Agency.



10月22日，安保人员在法国巴黎卢浮宫博物馆外巡逻。新华社记者 张百慧 摄

此前，盗贼在光天化日之下砸碎了卢浮宫的橱柜，盗走了价值1.02亿美元的法国王室珠宝。

This comes after a brazen daylight heist saw thieves smash through cabinets at the Louvre and make away with $102 million of France's crown jewels.

除了视频监控系统密码简单到不可思议外，卢浮宫使用的来自泰雷兹集团开发的一款安保程序的密码就是“thales”（即泰雷兹法语拼写）。该安保程序是泰雷兹集团2003年开发的，2019年就已经结束了维护合同。报道还透露卢浮宫使用的是Windows 2000、Windows XP等已经停止支持操作的老旧系统。

As if that wasn't bad enough, the report also found that the password to access another key piece of software was "THALES". That might not sound easy to guess, until you learn that the software was published by the tech company Thales, which terminated the maintenance contract back in 2019. Not only did the Louvre have comically weak passwords, but the museum was also running an outdated version of Windows.

早在2014年，法国国家网络安全局就指出卢浮宫安保网络存在巨大漏洞，敦促博物馆尽快修改密码，换一个复杂点的密码。

As far back as 2014, the museum was warned that having its systems compromised could lead to theft.

目前，尚不能确定是否是这些令人瞠目结舌的漏洞导致了卢浮宫盗窃案，但这则新闻确令这座举世闻名的博物馆沦为网络安全界的笑柄。



图源：每日邮报

It isn't yet clear whether these glaring weaknesses contributed to the Oct 18 heist that saw $102 million of crown jewels stolen in broad daylight.

However, the news has made the museum the laughing stock of the cybersecurity world, with one tech fan joking: "If you ever have impostor syndrome, just remember that the security password for the Louvre was 'louvre'."

编辑：左卓

实习生：李昂

来源：中国青年报 法制日报 每日邮报