Earlier today, I noticed Orange Spain had an outage, caused by what appeared to be a BGP hijack:
Source: DoublePulsar
[…]
So, how did it happen?
The threat actor accessed Orange’s RIPE account. RIPE look after internet IP addresses, basically the phone book of the internet. From their RIPE details, they were able to announce config which broke BGP routing — think the routing between networks which tell the network where to route the calls.
To administrator RIPE, you use a website called access.ripe.net. The threat actor posted themselves logged in to account [email protected]…
