Kuaishou faced a coordinated cyberattack on December 22, utilising AI-powered automation to overwhelm its moderation systems and flood live streams with harmful content, raising concerns about platform security and regulatory compliance amid geopolitical tensions.
Chinese short-video platform Kuaishou was hit by a coordinated cyberattack on December 22, 2025 that flooded its live-streaming rooms with explicit and abusive material for more than an hour, forcing the company to take down streams, delete videos and suspend live services while it carried out emergency remediation. According to the South China Morning Post, services gradually resumed by 2am on December 23. [1][2]
Early investigations and industry commentary say the operation relied heavily on automation and artificial intelligence to overwhelm Kuaishou’s content-moderation defences. The lead report published by Cybersecurity Insiders and follow-up analysis by a Hong Kong cybersecurity firm pointed to large-scale automated activity rather than opportunistic vandalism. China Daily reported the deployment of about 17,000 bot accounts used to manipulate server functions and forcibly broadcast prohibited content across live channels. [1][2]
Kuaishou moved quickly to contain the incident, removing adult and violent material, shutting affected live channels and apologising to users. The company said it had launched remediation measures and reported the breach to regulators while pursuing legal remedies, according to media and market reports. The platform said the disruption affected roughly 85 million active live-stream users out of more than 416 million total users. [1][2][6][7]
The attack had immediate market consequences. Hong Kong-listed Kuaishou shares tumbled about 6% after the incident, hitting their lowest level since November 21, market notices and financial outlets reported, underscoring investor concern about operational resilience and reputational damage. Company statements and filings say other app functions were not materially affected. [6][7]
Observers and cybersecurity specialists emphasised the broader implications. Experts cited by the initial report and by QAX said the use of AI to scale content-manipulation makes detection and mitigation harder and raises questions about the adequacy of existing safeguards on major platforms. Industry data and analysts argue malicious actors increasingly use automated tools to amplify speed and reach, shifting the defensive burden onto platform operators and authorities. [1]
The timing of the attack drew additional scrutiny. Commentators noted the breach coincided with a period in which Chinese authorities under President Xi Jinping have been tightening laws and enforcement against explicitly harmful online content, leading some to speculate the incident could be retaliatory or symbolic. Reporting stresses that attribution remains unconfirmed; preliminary assessments that the operation displayed technical precision led to speculation about sophisticated or state-sponsored actors, but no definitive foreign attribution has been established. [1]
Kuaishou’s vulnerability to the incident sits against a recent regulatory backdrop. In November 2024 China’s national cybersecurity regulator penalised the company for failing to promptly remove prohibited content and for harms to juvenile users, issuing warnings and ordering remedial measures to protect minors. That prior enforcement action highlighted existing pressure on domestic platforms to strengthen content controls and child protection mechanisms. [3]
The episode also revives international concerns about platform security and foreign influence that have affected other Chinese apps. Past takedowns of coordinated inauthentic accounts on rival platforms and institutional restrictions on apps such as TikTok have fuelled debate about cross-border risks, data governance and the resilience of global content ecosystems. Policymakers and industry voices quoted in coverage say the Kuaishou incident underlines the need for improved AI-specific defences, faster incident-response protocols and greater international cooperation to address increasingly sophisticated cyber threats. [4][5]
##Reference Map:
- [1] (Cybersecurity Insiders) – Paragraph 1, Paragraph 2, Paragraph 3, Paragraph 5, Paragraph 6
- [2] (South China Morning Post) – Paragraph 1, Paragraph 3
- [3] (China Daily) – Paragraph 2, Paragraph 7
- [6] (MEXC) – Paragraph 3, Paragraph 4
- [7] (AsianFin) – Paragraph 3, Paragraph 4
- [4] (The Guardian) – Paragraph 8
- [5] (Euronews) – Paragraph 8
Source: Noah Wire Services
Noah Fact Check Pro
The draft above was created using the information available at the time the story first
emerged. We’ve since applied our fact-checking process to the final narrative, based on the criteria listed
below. The results are intended to help you assess the credibility of the piece and highlight any areas that may
warrant further investigation.
Freshness check
Score:
10
Notes:
The narrative is based on a press release from Kuaishou Technology dated December 23, 2025, confirming the cyberattack on December 22, 2025. ([archive.ph](https://archive.ph/2025.12.24-142826/https%3A/ir.kuaishou.com/news-releases/news-release-details/kuaishou-technology-responds-live-streaming-cyber-incident?utm_source=openai)) This press release provides the most recent and original information, warranting a high freshness score.
Quotes check
Score:
10
Notes:
The direct quotes in the narrative are sourced from the Kuaishou press release and other reputable outlets, with no evidence of earlier usage. The wording is consistent across sources, indicating originality.
Source reliability
Score:
10
Notes:
The narrative originates from Kuaishou Technology’s official press release, a reputable organisation. The South China Morning Post and other reputable outlets have also reported on the incident, confirming the reliability of the information. ([scmp.com](https://www.scmp.com/tech/big-tech/article/3337448/chinas-kuaishou-hit-breach-explicit-content-floods-live-streaming-rooms?utm_source=openai))
Plausability check
Score:
10
Notes:
The claims in the narrative are corroborated by multiple reputable sources, including Kuaishou’s official statement and reports from the South China Morning Post. The timing of the attack coincides with increased scrutiny of online content in China, adding plausibility to the narrative. ([scmp.com](https://www.scmp.com/tech/big-tech/article/3337448/chinas-kuaishou-hit-breach-explicit-content-floods-live-streaming-rooms?utm_source=openai))
Overall assessment
Verdict (FAIL, OPEN, PASS): PASS
Confidence (LOW, MEDIUM, HIGH): HIGH
Summary:
The narrative is based on Kuaishou Technology’s official press release, supported by reports from reputable outlets like the South China Morning Post. The information is original, fresh, and corroborated by multiple sources, indicating a high level of reliability.
