In a recent cybersecurity incident, Orange Spain faced a significant internet outage on January 3, 2024. A threat actor, going by the name ‘Snow,’ exploited vulnerabilities in the company’s RIPE account. The Orange Spain outage resulted in the misconfiguration of Border Gateway Protocol (BGP) routing and the implementation of an invalid Resource Public Key Infrastructure The post Orange Spain Outage: BGP Traffic Hijacked by Threat Actor appeared first on TuxCare.

Security Boulevard is a leading cybersecurity news and information portal, offering articles, analysis, and insights on cybersecurity threats, vulnerabilities, and best practices. From the latest trends in cyber threats to expert commentary on security technologies and compliance frameworks, Security Boulevard provides resources for security professionals, IT leaders, and business executives seeking to protect their organizations from cyber attacks and data breaches.

Security Boulevard

Orange Spain faced a significant internet outage due to BGP Traffic Hijacking by a threat actor named 'Snow'. The hijacking was caused by exploiting vulnerabilities in the company's RIPE account and implementing an invalid RPKI configuration. BGP relies on trust and malicious actors can redirect traffic to malicious destinations. RPKI is a cryptographic solution that associates BGP route announcements with the correct originating AS number. The Orange Spain outage resulted in network issues, but no client data was compromised. The hacker gained access through stolen credentials and mentioned the absence of two-factor authentication.

Orange Spain Outage: BGP Traffic Hijacked by Threat Actor

Introducing RPKI: A Solution to BGP Hijacking

Credentials Compromised through Information-Stealing Malware