3 6 Ke·2025-12-24 08:51Core Viewpoint - The incident involving Kuaishou's live streaming platform highlights significant vulnerabilities in its risk control system, raising concerns about the balance between business growth and security investments [2][14]. Incident Overview - On December 22, Kuaishou experienced a major incident where numerous live streaming rooms displayed inappropriate content, leading to a rapid spread of screenshots and videos across social media [1]. - The platform's response involved limiting access and ultimately removing the live streaming feature to regain control, with full functionality restored around 12:45 AM [1]. Response and Analysis - The incident lasted approximately two hours, during which Kuaishou claimed it was a result of a "black and gray industry attack" [2]. - Industry experts noted that the response time was excessively long, indicating potential shortcomings in Kuaishou's emergency response processes and fault detection mechanisms [2][5]. - The failure of the risk control system could be attributed to algorithm malfunctions or issues during system updates, particularly during peak usage times [4][6]. Security Implications - The incident reflects a broader issue within the internet industry, where security is often viewed as a cost center rather than a priority, leading to inadequate resource allocation for security measures [14]. - If deemed a cybersecurity incident, Kuaishou may face penalties under various laws, including the Cybersecurity Law and Data Security Law, which could involve fines and operational adjustments [7]. Nature of the Attack - Preliminary assessments suggest that the accounts used for the violations were likely not stolen but rather part of a stockpile controlled by black and gray market operators [8][9]. - The attack strategy involved exploiting vulnerabilities in Kuaishou's risk control system, rather than traditional denial-of-service attacks [4][10]. Industry Impact - The incident is expected to prompt increased scrutiny from regulatory bodies regarding platforms' compliance with cybersecurity laws and their risk management practices [17]. - There is a pressing need for Kuaishou and similar platforms to reassess the balance between business operations and security measures to prevent future occurrences [17].