好的,我现在需要帮用户总结一篇关于ownCloud的文章,控制在100字以内。首先,我得通读整篇文章,抓住关键点。 文章提到ownCloud是一个文件共享平台,拥有超过2亿用户,包括很多企业和政府机构。最近他们警告用户启用多因素认证(MFA),因为有攻击者利用被窃取的凭证入侵账户。ownCloud强调他们自己并没有被黑,而是攻击者通过恶意软件获取了用户的凭证,然后用这些凭证登录到没有启用MFA的账户。 此外,ownCloud建议用户重置密码、无效化所有活跃会话,并审查登录日志。文章还提到威胁行为者Zestix在出售从多个公司的文件共享平台窃取的数据。 现在我需要把这些信息浓缩到100字以内。重点包括:ownCloud警告启用MFA,攻击者利用恶意软件窃取凭证,没有平台漏洞被利用,以及建议的安全措施。 可能的结构是:ownCloud警告用户启用MFA以防止攻击者利用被窃取的凭证入侵。攻击者通过恶意软件获取凭证,并非平台漏洞。建议重置密码和审查日志。 这样应该能在100字以内涵盖主要内容。 </think> ownCloud警告用户启用多因素认证以防攻击者利用被盗凭据窃取数据。攻击者通过恶意软件获取员工设备上的凭据,并用于登录未启用MFA的账户。ownCloud强调其平台未被攻破或泄露,并建议用户重置密码、无效化活跃会话并审查登录日志以确保数据安全。 2026-1-7 14:45:16 Author: www.bleepingcomputer.com(查看原文) 阅读量:7 收藏
File-sharing platform ownCloud warned users today to enable multi-factor authentication (MFA) to block attackers using compromised credentials from stealing their data.
ownCloud has over 200 million users worldwide, including hundreds of enterprise and public-sector organizations such as the European Organization for Nuclear Research, the European Commission, German tech company ZF Group, insurance firm Swiss Life, and the European Investment Bank.
In a security advisory published today, the company urged users to enable MFA following a recent report from Israeli cybersecurity company Hudson Rock, which revealed that multiple organizations had their self-hosted file sharing platforms (including some ownCloud Community Edition instances) breached in credential theft attacks.
"The ownCloud platform was not hacked or breached. The Hudson Rock report explicitly confirms that no zero-day exploits or platform vulnerabilities were involved," ownCloud said.
"The incidents occurred through a different attack chain: threat actors obtained user credentials via infostealer malware (such as RedLine, Lumma, or Vidar) installed on employee devices. These credentials were then used to log in to ownCloud accounts that did not have Multi-Factor Authentication (MFA) enabled."
ownCloud advised users to immediately enable MFA on their ownCloud instance to secure their data against future attacks and prevent unauthorized access even when their credentials are compromised.
Additionally, ownCloud recommends resetting all user passwords, invalidating all active sessions to force re-authentication, and reviewing access logs for suspicious login activity.
This warning comes after a threat actor (known as Zestix) has been offering to sell corporate data stolen from dozens of companies, likely obtained after breaching their ShareFile, Nextcloud, and ownCloud instances.
In its January 5th report, Hudson Rock says the attackers may have obtained initial access to the companies' file-sharing servers using credentials stolen by infostealer malware such as RedLine, Lumma, and Vidar, which infected employee devices.
The cybercrime intelligence firm identified thousands of infected computers, including some on the networks of high-profile organizations like Deloitte, KPMG, Samsung, Honeywell, Walmart, and the U.S. CDC (Centers for Disease Control and Prevention).
The 2026 CISO Budget Benchmark
It's budget season! Over 300 CISOs and security leaders have shared how they're planning, spending, and prioritizing for the year ahead. This report compiles their insights, allowing readers to benchmark strategies, identify emerging trends, and compare their priorities as they head into 2026.
Learn how top leaders are turning investment into measurable impact.
如有侵权请联系:admin#unsafe.sh