Orange Spain Suffers Outage After Threat Actor Misconfigures BGP Using Stolen Email Password
Compromised gold and grey X accounts sold on dark web, 4.5m affected by HealthEC breach, Gamma Strategies drained of $500K, CertiK X account hacked, Orrick hack bigger than first reported, much more
Note bene: While Metacurity explores possibly switching to alternative newsletter platforms, please know that whatever we do, you can always reach Metacurity at https://metacurity.com.
Orange Spain suffered an internet outage after a threat actor named Snow breached the company's RIPE account to misconfigure BGP routing and an RPKI configuration.
Snow tweeted to Orange Spain to contact them about getting new credentials. Since then, the attacker modified the autonomous system (AS) number associated with the company's IP addresses and enabled an invalid RPKI configuration on them.
Announcing the IP addresses on someone else's AS number and then enabling RPKI effectively caused these IP addresses to no longer be announced properly on the internet. This led to a performance issue on Orange Spain's network between 14:45 and 16:15 UTC.
Orange Spain confirmed that their RIPE account was hacked and has begun to restore services. "NOTE: The Orange account in the IP net…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.