Archive | Routing Security Incidents

The Internet Routing Registry (IRR) is a set of distributed databases used by networks to register routing policy information and to validate messages received in the Border Gateway…

On Thursday, 25 May, we saw another BGP route leak, this time causing significant delays in connectivity from Australia to sites in the US including Amazon’s AWS services and Akamai’s…

For a little over 12 hours on 26-27 July, a network operated by Russia’s Rostelecom started announcing routes for part of Apple’s network. The effect was that Internet users in…

Today, we explore an ongoing issue where it looks like an ASN is hijacking address space, but it is actually a router misconfiguration issue that unfairly penalizes certain ASNs. First,…

With so many eyes on networks and traffic flows around Ukraine and Russia, any misleading announcement is quickly investigated. That’s what happened yesterday, when AS8342 (RTComm) started announcing 104.244.42.0/24, a…

On 15 February 2022, several high-level Ukrainian services including the Ministry of Defence and two large national banks were targeted with DDoS (Distributed Denial of Service) attacks. Financial services were…

The Border Gateway Protocol (BGP) is central to how networks direct traffic across the Internet, and it provides the flexibility and scalability to accommodate Internet growth. However, like so many…

It’s happened again. On 3 February, cryptocurrency platform KLAYswap had a security incident that allowed hackers to steal 2.2 billion (KRW), or about USD 1.9 million worth of digital (crypto…

Received a Saturday morning ping on Twitter from Doug Madory, Director of Internet Analysis at Kentik, highlighting a major Border Gateway Protocol (BGP) hijack event overnight. My weekend is sorted,…