通过以下 Referral 链接购买 DigitalOcean 主机,你将可以帮助 V2EX 持续发展 DigitalOcean - SSD Cloud Servers
这是一个创建于 139 天前的主题,其中的信息可能已经有所发展或是发生改变。
本人今天收到一封来自官方的邮件: Dear representatives of ColoCrossing administration and users of hosting services,
We hereby inform you of documented facts that testify to gross violations in the operation of your infrastructure:
- Illegal content and lack of moderation
- Numerous instances of:
- Deepfake content using images of public figures and private citizens
- Content that violates legislation on the protection of minors
- Extremist and violent content.
- Critical security vulnerabilities
- Multiple attack vectors have been identified that allow:
- Gain unauthorized root access to client servers
- Bypass authentication and authorization systems
- Misuse of infrastructure for illegal purposes
- There are cases of exploitation of your resources for:
- Organizing botnets and distributing malware
- Providing anonymization of illegal activities via Tor-nodes, as well as XRay/WireGuard/X-UI/OpenVPN protocols.
Requirements for the administration of ColoCrossing, as well as users who have stored such content:
- Contact us
- Pay us for our silence so that we don't hand over logs/emails/ip addresses and other information proving violations.
- Resolve problems with similar content, we can help with this for an additional fee.
User Recommendations: Until confirmation that the above violations have been remedied, we strongly recommend that you refrain from:
- Storing sensitive data on the platform
- Conducting financial transactions through ColoCrossing as well as HostPapa Inc. services.
- Using hosting services for mission-critical projects
To confirm remediation of breaches and for more information: Telegram: https://t.me/ransombotbot Telegram: https://t.me/ransombotbot Telegram: https://t.me/ransombotbot
Please note that in the absence of an adequate response within the established timeframe, a full whistleblowing procedure will be initiated to inform all stakeholders of the identified violations, including:
- Regulators of relevant jurisdictions
- Media
- Professional community
大概意思我翻译一下,就是它貌似检测到我了我安装的 caddy ,当然各位懂的,我确实拿来做自用的 XX 转发了,纯自用;然后就是说好像似乎有其他的第三方举报 XXX 之类的~说让我联系官方(不限于给封口费/向某机构举报我啥的),无非就是想敲诈一笔所谓的封口费。想啥呢~colocrossing...卖 18 刀的服务还想敲诈我封口费?
19 条回复 2025-05-25 10:42:00 +08:00
 | 1 BeautifulSoap 139 天前 via Android 我咋感觉像是钓鱼邮件 |
 | 2 tickwongcn OP @BeautifulSoap 发件人: Formal notification of system breaches in ColoCrossing infrastructure - demanding immediate action <[email protected]> 回复: [email protected] 收件人:XXXXX 日期: 2025 年 5 月 24 日 23:10 主题: Formal notification of system breaches in ColoCrossing infrastructure - demanding immediate action 邮送域: em4475.colocrossing.com 署域: colocrossing.com 安全性: 标准加密 (TLS) 了解详情 : 这是一封重要邮件,主要因为它是直接发送给您的。 --------------- 不像~看着就是官方的地址发过来的。 |
| 3 tickwongcn OP 这等行径太恶劣了~无良商家,各位还是避雷吧 |
 | 4 slepm 139 天前 ransombotbot 感觉有点问题,还是提高警惕 |
 | 5 l12ab 139 天前 很多人都收到了 |
| 6 tickwongcn OP @sleepm 所以我也没回邮件,反正也不鸟它 |
| 7 tickwongcn OP @l12ab 就很扯 |
 | 8 oftx 139 天前 我收到了一封和你一模一样的邮件,不知道这官方要搞什么 |
| 9 tickwongcn OP 看了一下隔壁貌似是黑客钓鱼感觉可以忽略了。 |
 | 10 xnxnyz 139 天前 我也收到了。虽然是用的官方邮箱,但会不会是被盗用或者伪造的,正经公司叫用户到 Telegram 去是什么意思。官方的 X 还有网站也还不吱个声。 |
| 11 tickwongcn OP 上面的 TG 链接各位不要乱点击!!! 上面的 TG 链接各位不要乱点击!!! 上面的 TG 链接各位不要乱点击!!! |
 | nbsp; 12 mayli 139 天前 via Android 明显钓鱼 |
| 13 tickwongcn OP @mayli 嗯,那就放心了~可以尽情用了哈哈哈 |
 | 14 est 139 天前 值得担心的是邮箱怎么泄漏的。。。 |
| 15 tickwongcn OP @est 安全性太差了 |
| 16 BeautifulSoap 139 天前 @tickwongcn 看了下 mjj 等地方,大概率是网站被黑了 |
| 17 tickwongcn OP @BeautifulSoap 对的~ |
 | 18 jamesliu96 139 天前 via Android |
 | 19 kome 138 天前 via iPhone 看到的消息: https://t.me/zaihuanews/33035 节选部分: ColoCrossing 及其关联服务商( HudsonValleyHost 、ChicagoVPS )共享的 Virtualizor 虚拟化管理面板遭到数据泄露,该面板的数据库被黑客攻破,所有用户密码以明文形式存储并全部泄露。 此次泄露仅涉及共享的 Virtualizor 面板,ColoCrossing 自有的用户管理面板和独立服务器系统目前未受影响。 |
Select Language