V2EX = way to explore
V2EX 是一个关于分享和探索的地方
Sign Up Now
For Existing Member Sign In
通过以下 Referral 链接购买 DigitalOcean 主机,你将可以帮助 V2EX 持续发展
› DigitalOcean - SSD Cloud Servers
This topic created in 338 days ago, the information mentioned may be changed or developed.
本人今天收到一封来自官方的邮件: Dear representatives of ColoCrossing administration and users of hosting services,
We hereby inform you of documented facts that testify to gross violations in the operation of your infrastructure:
- Illegal content and lack of moderation
- Numerous instances of:
- Deepfake content using images of public figures and private citizens
- Content that violates legislation on the protection of minors
- Extremist and violent content.
- Critical security vulnerabilities
- Multiple attack vectors have been identified that allow:
- Gain unauthorized root access to client servers
- Bypass authentication and authorization systems
- Misuse of infrastructure for illegal purposes
- There are cases of exploitation of your resources for:
- Organizing botnets and distributing malware
- Providing anonymization of illegal activities via Tor-nodes, as well as XRay/WireGuard/X-UI/OpenVPN protocols.
Requirements for the administration of ColoCrossing, as well as users who have stored such content:
- Contact us
- Pay us for our silence so that we don't hand over logs/emails/ip addresses and other information proving violations.
- Resolve problems with similar content, we can help with this for an additional fee.
User Recommendations: Until confirmation that the above violations have been remedied, we strongly recommend that you refrain from:
- Storing sensitive data on the platform
- Conducting financial transactions through ColoCrossing as well as HostPapa Inc. services.
- Using hosting services for mission-critical projects
To confirm remediation of breaches and for more information: Telegram: https://t.me/ransombotbot Telegram: https://t.me/ransombotbot Telegram: https://t.me/ransombotbot
Please note that in the absence of an adequate response within the established timeframe, a full whistleblowing procedure will be initiated to inform all stakeholders of the identified violations, including:
- Regulators of relevant jurisdictions
- Media
- Professional community
大概意思我翻译一下,就是它貌似检测到我了我安装的 caddy ,当然各位懂的,我确实拿来做自用的 XX 转发了,纯自用;然后就是说好像似乎有其他的第三方举报 XXX 之类的~说让我联系官方(不限于给封口费/向某机构举报我啥的),无非就是想敲诈一笔所谓的封口费。想啥呢~colocrossing...卖 18 刀的服务还想敲诈我封口费?
19 replies • 2025-05-25 10:42:00 +08:00
 |
1
BeautifulSoap May 24, 2025 via Android
我咋感觉像是钓鱼邮件
|
 |
2
tickwongcn OP @BeautifulSoap
发件人: Formal notification of system breaches in ColoCrossing infrastructure - demanding immediate action <[email protected]> 回复: [email protected] 收件人:XXXXX 日期: 2025 年 5 月 24 日 23:10 主题: Formal notification of system breaches in ColoCrossing infrastructure - demanding immediate action 邮送域: em4475.colocrossing.com 署域: colocrossing.com 安全性: 标准加密 (TLS) 了解详情 : 这是一封重要邮件,主要因为它是直接发送给您的。 --------------- 不像~看着就是官方的地址发过来的。 |
|
3
tickwongcn OP 这等行径太恶劣了~无良商家,各位还是避雷吧···
|
 |
4
sleepm May 24, 2025
ransombotbot
感觉有点问题,还是提高警惕 |
 |
5
l12ab May 24, 2025
很多人都收到了
|
|
6
tickwongcn OP @sleepm 所以我也没回邮件,反正也不鸟它
|
|
7
tickwongcn OP @l12ab 就很扯·
|
 |
8
oftx May 24, 2025
我收到了一封和你一模一样的邮件,不知道这官方要搞什么
|
|
9
tickwongcn OP 看了一下隔壁貌似是黑客钓鱼··感觉可以忽略了。
|
 |
10
xnxnyz May 24, 2025
我也收到了。虽然是用的官方邮箱,但会不会是被盗用或者伪造的,正经公司叫用户到 Telegram 去是什么意思。官方的 X 还有网站也还不吱个声。
|
|
11
tickwongcn OP 上面的 TG 链接各位不要乱点击!!!
上面的 TG 链接各位不要乱点击!!! 上面的 TG 链接各位不要乱点击!!! |
 |
12
mayli May 24, 2025 via Android
明显钓鱼
|
|
13
tickwongcn OP @mayli 嗯,那就放心了~可以尽情用了··哈哈哈
|
 |
14
est May 24, 2025
值得担心的是邮箱怎么泄漏的。。。
|
|
15
tickwongcn OP @est 安全性太差了···
|
|
16
BeautifulSoap May 25, 2025
@tickwongcn 看了下 mjj 等地方,大概率是网站被黑了
|
|
17
tickwongcn OP @BeautifulSoap 对的~
|
 |
18
jamesliu96 May 25, 2025 via Android
|
 |
19
kome May 25, 2025 via iPhone
看到的消息: https://t.me/zaihuanews/33035
节选部分: ColoCrossing 及其关联服务商( HudsonValleyHost 、ChicagoVPS )共享的 Virtualizor 虚拟化管理面板遭到数据泄露,该面板的数据库被黑客攻破,所有用户密码以明文形式存储并全部泄露。 此次泄露仅涉及共享的 Virtualizor 面板,ColoCrossing 自有的用户管理面板和独立服务器系统目前未受影响。 |
Select Language