The Low Orbit Security Radar is a weekly security newsletter from an offensive practitioner's perspective. One idea, curated news, and links worth your time.
News: There Were BGP Anomalies During The Venezuela Blackout
When watching the situation in Venezuela unfold, the phrase "It was dark, the lights of Caracas were
Can someone explain to me what security issues BGP has? I’ve never looked into this aspect of networking and I only kinda know what BGP is supposed to be doing.
One option is to hijack a prefix by announcing a more specific one.
This should then route traffic to the more specific prefix to your AS.
You can then analyse and forward the traffic, attempt to impersonate a server within this range or simply drop the incoming packets.
As the author described, this case might be a bit more tricky, as BGP prefers shorter routes to longer ones. However, it seems that some longer-than-necessary routes were in use.
Can someone explain to me what security issues BGP has? I’ve never looked into this aspect of networking and I only kinda know what BGP is supposed to be doing.
One option is to hijack a prefix by announcing a more specific one. This should then route traffic to the more specific prefix to your AS. You can then analyse and forward the traffic, attempt to impersonate a server within this range or simply drop the incoming packets.
As the author described, this case might be a bit more tricky, as BGP prefers shorter routes to longer ones. However, it seems that some longer-than-necessary routes were in use.