Archive | Routing Security Incidents

For a little over 12 hours on 26-27 July, a network operated by Russia’s Rostelecom started announcing routes for part of Apple’s network. The effect was that Internet users in…

Today, we explore an ongoing issue where it looks like an ASN is hijacking address space, but it is actually a router misconfiguration issue that unfairly penalizes certain ASNs. First,…

With so many eyes on networks and traffic flows around Ukraine and Russia, any misleading announcement is quickly investigated. That’s what happened yesterday, when AS8342 (RTComm) started announcing 104.244.42.0/24, a…

On 15 February 2022, several high-level Ukrainian services including the Ministry of Defence and two large national banks were targeted with DDoS (Distributed Denial of Service) attacks. Financial services were…

The Border Gateway Protocol (BGP) is central to how networks direct traffic across the Internet, and it provides the flexibility and scalability to accommodate Internet growth. However, like so many…

It’s happened again. On 3 February, cryptocurrency platform KLAYswap had a security incident that allowed hackers to steal 2.2 billion (KRW), or about USD 1.9 million worth of digital (crypto…

Received a Saturday morning ping on Twitter from Doug Madory, Director of Internet Analysis at Kentik, highlighting a major Border Gateway Protocol (BGP) hijack event overnight. My weekend is sorted,…

On 1 February, Myanmar’s army took power in a coup against the elected government and detained the civilian leadership. Restrictions to the Internet were reported as people woke up to…

It’s usually not good news to get a Twitter notification from Qrator on a Saturday morning. Unfortunately, this one was no exception. Now that a severe incident has happened, let’s…