#阿里云0day#网传 疑似 发现阿里云0day,可以重置任意服务器root密码

大概,今晚六七点多得时候,知名公众号---红队攻防揭秘,发文称:“预警” 阿里云 疑似存在未知0day 可重置任意服务器root密码,

但是,在发文不到一小时,就被删除了(不只是阿里云得公关还是作者自己删除的),然后就是安全全朋友圈,twitter等刷屏了。

阿里云这事。最先的消息源来自X秘圈,如图。随后被某公众号发布,该X秘圈涨价。
目前该公众号所发布的消息已经删除,且该公众号已经搜索不到。
网上流传和刷屏的信息都只有这张图,没有任何更多细节,假消息可能性偏大。
暂等待是否有进一步细节。

DvLtSbXU8AAfy5N.jpgDvLz7VeU8AYNljy.jpg

意思信息来自 https://twitter.com/APTp0 ,经Mrxn筛选整理。(如有不实之处,还请指正)

标签: 0day 阿里云

Mrxn 发布于 2018-12-24 21:08

kms服务器被微软警告,更新推迟,还有近期发邮件让我下载新东方视频的朋友们进来看一下

Update-2018-12-19 :kms服务器已更新,可以正常激活!


我最近忙于工作,没时间打理博客,但是还是在看大家得评论,谢谢你们。

在2018-11-22日我收到了我的服务商——搬瓦工 的邮件,告诉我我的机器被暂时停止了,我上面板看了之后,就看到了他们转发微软发给他们的DMCA(侵权)邮件,告诉我由于我的服务器开放了未被授权的KMS激活服务器。具体的内容如下,给你们看看热闹:

We have received a DMCA complaint or another form of copyright infringement notification.
Additional information:
----------------------------- [ ABUSE REPORT ] -----------------------------
Date: Thu, 22 Nov 2018 11:44:36 +0000 [1542887080]
From: Microsoft Antipiracy <[email protected]> <[email protected]>
Subject: Demand for Immediate Take-Down: Notice of Infringing Activity
----------------------------------------------------------------------------
Date: 22/11/2018

Case #: 211012
Internet Protocol Address:

184.170.223.200:1688

Dear Sir or Madam,

We are contacting you concerning the domain/IP address/port listed above which appears to be on servers under your control.

The (IP) address is engaged in unauthorized activities relating to copyrighted works published by Microsoft Corporation. It is making it possible for third parties to activate unauthorized and infringing copies of Microsoft software. The IP address at which a KMS machine may be accessed is as follows:

184.170.223.200:1688

? Statement of Authority:

The information in this notice is accurate, and I hereby certify under penalty of perjury that I am authorized to act on behalf of Microsoft Corporation, the owner or exclusive licensee of the copyright(s) in the work(s) identified above. I have a good faith belief that none of the materials or activities listed above have been authorized by Microsoft Corporation, its agents, or the law.

? ACTION REQUESTED (Please complete within 24-hours of receiving this notice):

We hereby give notice of these activities to you and request that you take expeditious action to remove or disable access to the material described above, and thereby prevent the unauthorized distribution of these cracks and product keys via your company's network.

Please contact me at your earliest opportunity through one of the means listed below to confirm that appropriate action has been taken to secure the KMS machine. We appreciate your cooperation in this matter. Please advise us regarding what actions you take.

Yours sincerely,

Gareth Young

Internet Investigator

Microsoft Corporation

One Microsoft Way, Redmond, WA 98052, United States of America

Email: [email protected]

________________________________
This email was scanned by Bitdefender



然后呢,我被迫只能重新开启服务器然后关闭kms激活服务,但是已经激活的不受影响(在我新的KMS服务器搭建好后),在新的kms服务器搭建好之前,暂时是不能激活新的微软家的vl产品。另外呢,KMS一键安装脚本,有朋友发邮件过来反馈在centos7上的防火墙兼容bug,这些我都记下了,在下次更新的时候会一起解决的。


发邮件让帮忙下载新东方视频的朋友,我之前的博文里的方法不使用现在的新版的新东方了,但是我看了一下,新东方现在 可以通过安装他们的APP,PC和手机端都有,然后登录自己的账号,下载已经购买过的课程到本地,如果你是想把课程拿去二次倒卖,就自己想办法吧,我不帮你赚钱。


我也希望有时间像之前那样,每天写一篇文章,但是上班后真的很忙,没有时间,而且最近在开发一套云扫描系统。如果顺利完工,到时候给地址让搞安全的朋友们测试下。哈哈哈,就这样,这也是生活的一部分,不同的时间做不同的事情,享受不同的生活,大家加油啊,为了美好的生活,奋斗!

标签: 生活

Mrxn 发布于 2018-12-16 15:42

搜索

日历

标签