12月22日22时许，国内知名短视频平台快手遭遇黑灰产猛烈攻击。在短短60到90分钟内，黑客组织通过 技术手段侵入快手系统，导致整个平台安全体系陷入瘫痪。攻击者利用约1.7万个僵尸账号开设直播 间，大量播放包含色情、暴力、恐怖等违规内容，有的直播间单场观看量甚至逼近10万人。 值得注意的是，这些直播中还隐藏着病毒链接。许多用户点入后，微信账号即被盗取，不法分子随即向 账号好友发送借款请求，实施诈骗。目前快手平台已紧急关闭和下架绝大多数直播内容，但事件造成的 用户隐私泄露和财产损失已难以挽回。平台方提醒用户保持警惕，切勿轻信异常链接，防止上当受骗。 从22时左右异常初现，到大量违规内容刷屏直播间，再到平台紧急启动最高级别应急响应，这场持续近 两小时的网络攻防战，不仅短暂打乱了平台的正常运营节奏，更将短视频行业的安全防御困境再次推向 公众视野。 事件还原 不同于传统网络攻击的"瞬间瘫痪"，此次针对快手的攻击呈现出"精准突袭、梯次推进"的特征，从用户 感知异常到平台完成核心防御，形成了清晰的时间线脉络。结合快手官方通报、用户反馈及行业监测数 据，此次事件的关键节点可精准梳理为四个阶段。 第一阶段为预警潜伏期（大概在 ...

Group 1 - Kuaishou's stock price dropped sharply by 5.7% to 62.9 HKD following reports of a security breach on its platform, where multiple live streams displayed illegal content [2] - The platform confirmed it was under attack from black and gray market activities, leading to a temporary suspension of live streaming features and the banning of certain accounts [2][4] - Security expert Wang Liejun indicated that the attack's scale was due to the automation of black and gray market operations, which overwhelmed Kuaishou's traditional manual defense mechanisms [2] Group 2 - Kuaishou has established a multi-tiered security organization to enhance information security, including a security committee and a privacy protection working group [4] - The company employs widely recognized security measures such as intrusion detection, access control, data encryption, and has implemented strong encryption protocols like TLS and QUIC [4] - A specialized security blue team has been formed to identify and address weaknesses in Kuaishou's security defenses, aiming for continuous improvement in its security capabilities [4]

2025.12. 23 本文字数：915，阅读时长大约1.5分钟 12月23日，港股开盘，快手（1024.HK）股价直线下跌。截至发稿，股价62.9港元，跌5.7%。另 外，网络安全指数（884133.W）上涨，截至发稿，该指数已涨0.66%。 消息面上，22日22时左右，快手平台多个直播间出现违规内容。据快手官方向第一财经确认：平台 遭到黑灰产攻击，目前已紧急处理修复中，平台坚决抵制违规内容，相应情况已上报给相关部门，并 向公安机关报警。截至发稿，快手已冲至苹果AppStore免费APP下载榜第二。 作者 | 第一财经 吕倩 截至发稿，快手方面暂未具体回应事故原因。据快手隐私保护平台内容显示，快手建立了由安全委员 会决策层、安全委员会办公室、关联部门三个层级组成的安全组织保障架构，夯实信息安全建设基 础。信息安全委员会下设隐私保护工作组，持续协同信息安全委员会和业务方共同保障用户个人信息 安全。 其中在安全技术方面，快手强调，快手采取业界普遍认可的入侵监测和防御、访问控制、安全加固、 数据加密等安全技术措施守护数亿快手用户信息安全。如支持TLS 、QUIC等强大加密协议；部署实 施拉WAF、HIDS、APT ...

Group 1 - Kuaishou experienced a severe attack from hacker organizations, leading to a complete breakdown of its security system within 60 to 90 minutes [1] - Attackers utilized approximately 17,000 zombie accounts to create live streaming rooms, broadcasting a large volume of illegal content, with some streams nearing 100,000 viewers [1] - The core reason for the extensive damage was identified as the transition of black and gray industries into an "automated attack" era, while Kuaishou relied on traditional manual defense methods [1] Group 2 - Experts emphasized that network security upgrades should not only focus on external attack defenses but also address risks from internal vulnerabilities [2] - Incidents of data leaks, internal account theft, and unauthorized operations have become frequent, with some attacks leveraging internal personnel and permission vulnerabilities [2] - Companies are advised to adopt a "defense against both internal and external threats" approach, integrating internal defenses into the overall security system, particularly focusing on "insider threat" prevention and permission management [2]