유럽 대규모 라우팅 누수가 차이나 텔레콤을 통해 트래픽을 전송

ment 6/9 '19 posted 뉴스 IT

• 라우터가 특정 네트워크 대상에 도달하는 최적의 경로를 결정하는 데 도움이 되는 Border Gateway Protocol (BGP)의 이름을 따서 명명된 BGP 경로 누출은 드문 일이 아닙니다.

• 자치 시스템 (AP)이 네트워크 프리픽스 (prefix)로 그룹화된 IP 주소 블록에 트래픽을 전달할 수 있다고 불법적으로 광고할 때 발생할 수 있습니다.

• 목요일에 2 시간 이상 동안, 여러 이동 통신사에 영향을 미친 중대한 BGP 경로 누출 덕분에 유럽의 이동 인터넷 트래픽의 큰 덩어리가 차이나 텔레콤의 네트워크를 통해 경로가 변경되었습니다.

• "오늘의 사건은 인터넷이 아직 BGP 경로 유출 문제를 근절하지 않았다는 것을 보여줍니다.

• 또한 국제적인 주요 통신 사업자인 차이나 텔레콤은 라우팅 누수의 전파를 방지하기 위해 필요한 기본적인 라우팅 보호 수단도 그들이 필연적으로 발생했을 때 적시에 감지 및 수정 위해 필요한 프로세스 및 절차도 아직 실시하고 있지 않다 "며 누수를 감시하고 있던 오라클의 인터넷 분석 부장인 Doug Madory 씨는 말했습니다.

• "이러한 이벤트의 근본 원인에 대해 의문을 갖는 경우가 종종 있습니다. 일부는 엔지니어가 잘못된 설정을 구성하여 발생하는 반면, 일부는 의심스러워하고 의도적으로 저지른 것처럼 보입니다.

Chinaâ€™s national flag flies in front of the headquarters of China Telecom at Beijing Finance…

European Mobile Traffic Leak to Chinese Network For Two Hours [gizmodo.com]

For more than two hours on Thursday, a large chunk of mobile Internet traffic in…

Large BGP Leak Hits European Mobile Carriers [duo.com]

…

A large chunk of EU mobile traffic was rerouted through China TelecomSecurity Affairs [securityaffairs.co]

Yesterday (6 June 2019), Swiss data centre co-location company Safe Host (AS21217) leaked over…

Large European routing leak sends traffic through China Telecom [blog.apnic.net]

…

For two hours, a large chunk of European mobile traffic was rerouted through China [www.zdnet.com]

Enlarge / A graphical depiction of Thursday's BGP leak. Traffic…

BGP event sends European mobile traffic through China Telecom for 2 hours [arstechnica.com]

newest replies popular replies

Open Wiki - Feel free to edit it. -

6/9 '19 answered

BGP: Safe Host (AS21217) leaked 70k+ routes to China Telecom (AS4134) by @DougMadory [most impacted EU networks incl Swisscom (AS3303), KPN (AS1130), Bouygues Telecom (AS5410), Numericable-SFR (AS21502); black eye for China Telcom professionalism] https://t.co/rVO4Xg8uQ7 pic.twitter.com/BcU2A0sQfs
— Daniel Bilar (@daniel_bilar) June 7, 2019

For two hours June 6th, a large chunk of European mobile traffic was rerouted through China! It was China Telecom, again. The same ISP accused last year of "hijacking the vital internet backbone of western countries." #BGP #CyberSecurity #NatSec https://t.co/Z2b24C0oxg
— Tho she be little, she be fierce (@warriors_mom) June 7, 2019

It was China Telecom. Again. The same ISP accused last year of "hijacking the vital internet backbone of western countries."

October 2018 story: https://t.co/P2JoUMtN4k pic.twitter.com/dR10VtiAdm
— Catalin Cimpanu (@campuscodi) June 7, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China
It was China Telecom, again. The same ISP accused last year of "hijacking the vital internet backbone of western countries." https://t.co/8PnGZ6OlG2
— Karol Cummins (@karolcummins) June 8, 2019

gimme a Gee
gimme a Dee
they took a Pee on privacy
now gimme an Arrhttps://t.co/9asXaoBUSf
— Manan ??‍♂️ (@manan) June 8, 2019

For the more technical readers, here's a more in-depth report for yesterday's incident:https://t.co/jNfUicZsaN pic.twitter.com/rb0bT652lB
— Catalin Cimpanu (@campuscodi) June 7, 2019

China Telecom Swallows Huge Amount of European Mobile Traffic For Over Two Hours - Gizmodo https://t.co/qeoqRHHoPx
— Michael Ron Bowling (@mrbcyber) June 8, 2019

On the Large BGP Leak that hit European Mobile Carriers and rerouted data to China & Russia. We’ve seen this before says @Wired https://t.co/GBd8eL8ZgF https://t.co/TvQoOoG71V #decipher #deciphersec https://t.co/Q7r4qngthY
— Pippa Malmgren (@DrPippaM) June 7, 2019

Recently a large chunk of European mobile traffic was rerouted through China Telecom https://t.co/JIt56VR21j pic.twitter.com/gcTeduqbCq
— Eric Vanderburg (@evanderburg) June 8, 2019

Recently a large chunk of European mobile traffic was rerouted through China Telecom https://t.co/NQlWi90Qfn
— Nicolas Krassas (@Dinosn) June 8, 2019

Recently a large chunk of European mobile traffic was rerouted through China Telecom https://t.co/OyMhZxR2nY pic.twitter.com/QwTa3Z8v4H
— 420 Cyber, Inc. (@420Cyber) June 8, 2019

Recently a large chunk of European mobile traffic was rerouted through China Telecom: https://t.co/DKNvnLyelL by Security Affairs #infosec #software #technology
— Infosec Alevski ??️‍♂️ (@Alevskey) June 8, 2019

It happened again: over 70K router leaked last Jun 6th and traffic sent to #china. #BGP #security #MANRS. Read this post on @apnic
by @DougMadory https://t.co/x0kMGOjMyU
— Luca Cicchelli (@lucacicchelli) June 8, 2019

BGP route leaks still remain a major problem. European routing leak sends traffic through China Telecom. https://t.co/yE0U3yL41h
— Chris Wysopal (@WeldPond) June 7, 2019

Yes, yes, I keep banging on about BGP, but here’s another story for you https://t.co/S68D6eJjFV
— Alan Woodward (@ProfWoodward) June 8, 2019

Last night, around 70,000 routes were leaked from a European data centre to China Telecom, some for over two hours, reports @DougMadory https://t.co/hFLsZ3ukEL #BGP #netsec pic.twitter.com/9RJgOm2nrg
— APNIC (@apnic) June 7, 2019

For two hours yesterday, a big part of European mobile Internet traffic was rerouted through Chinahttps://t.co/VvZKLm2pm4 #cybersecurity #BGP pic.twitter.com/EXuOHDs18C
— Elena Neira (@elenaneira) June 7, 2019

Yesterday (6 June 2019), Swiss data centre co-location company Safe Host (AS21217) leaked over 70,000 routes to China Telecom (AS4134) in Frankfurt, Germany, some for over two hours. https://t.co/jMha00Ws1G
— Frank Denis (@jedisct1) June 7, 2019

More "route leaks" to China Telecom. https://t.co/CCfAlnhItC
— cyberwar (@cyberwar) June 7, 2019

Thread: For 2 hours, much #European mobile traffic was rerouted through #China - It was China Telecom, again. The same ISP accused last year of hijacking the vital internet backbone of western countries for Chinese intelligence gathering - Via @code_blind https://t.co/iYggk3cFjh pic.twitter.com/7xYzDYnk4u
— IndoPacific_SCS_Info (@IndoPac_Info) June 8, 2019

For 2 hours large chunk of European mobile traffic was rerouted through China. It was China Telecom, again. The same ISP accused last year of "hijacking the vital internet backbone of western countries." @ZDNet https://t.co/FGAkdc7PdN @dez_blanchfield @evankirstel @sarbjeetjohal pic.twitter.com/bzvxzjUISL
— Bill Mew (12 June #LTW #TechXLR8 chair & keynote) (@BillMew) June 7, 2019

For two hours yesterday, a large chunk of European mobile traffic was rerouted through Chinahttps://t.co/oIXrtYNSYy pic.twitter.com/C77DfWCraV
— Catalin Cimpanu (@campuscodi) June 7, 2019

持续两个小时，西方国家数据流量再次被中国电信路由到了中国

一篇學術論文指責中國電信“ 劫持西方國家重要的互聯網骨幹：中國政府正在利用當地互聯網服務提供商進行情報收集，系統地劫持BGP路線，以便通過其國家重新路由西部交通，然後在那裡進行記錄以供日後分析。https://t.co/miaaM3S3qx
— Bright—真善狠 (@CallofDutyNow00) June 8, 2019

This is why #Huawei amongst others are are a necessary candidates for diligent scrutiny. For two hours, a large chunk of European mobile traffic was rerouted through China https://t.co/vTEIOdo0db #huaweiban #Huawei #infosec
— Ronan Murphy (@Smarttech01) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China | ZDNet https://t.co/cn7szXXXM6 > It was China Telecom, again. The same ISP accused last year of “hijacking the vital internet backbone of western countries.”
— PrivacyDigest (@PrivacyDigest) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China https://t.co/tuMxzTCkfS
— Evan Kirstel (@evankirstel) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China https://t.co/iheSeE2Bxj via @ZDNet & @campuscodi
— Robert Alai (@RobertAlai) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China https://t.co/OdALQrKKC4 by @campuscodi
— ZDNet (@ZDNet) June 7, 2019

Hmm >>

For two hours, a large chunk of European mobile traffic was rerouted through China https://t.co/bhNFaXCCTz
— John Koetsier (@johnkoetsier) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through #China #Huaweu #ZTE #infosec https://t.co/8rOMccGvfb
— Shaggy Dude (@akubot) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China https://t.co/F44ACfuiaD
— DΛNIΞL ? (@hypoweb) June 7, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China | ZDNet https://t.co/eV956M7Z0o
— Boycott China Hegemony (@BoycottHegemony) June 8, 2019

BGP mishap sends European mobile traffic through China Telecom for 2 hours | Ars Technica https://t.co/yGRYCPDGbW
— Bidatzi (@bidatzi) June 8, 2019

BGP event sends European mobile traffic through China Telecom for 2 hours https://t.co/q20OyUFTb5
— Dan Goodin (@dangoodin001) June 8, 2019

BGP mishap sends European mobile traffic through China Telecom for 2 hours | Ars Technica https://t.co/uR7LBtFMCL
— Jacek Bartosiak (@BartosiakJacek) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China

It was China Telecom, again. The same ISP accused last year of "hijacking the vital internet backbone of western countries."https://t.co/DkVnDMRuZS
— Amit Paranjape (@aparanjape) June 8, 2019

permanent link

Open Wiki - Feel free to edit it. -

6/9 '19 answered

SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134.

Journalists: please read the original blog post by @DougMadory before copy-pasting @golem!https://t.co/rp4PhyzFLx
— Fredy Künzler (@kuenzler) June 9, 2019

”For two hours, a large chunk of European mobile traffic was rerouted through China” https://t.co/PXBV9vvc5U
— Richard Oehme (@RichardOehme) June 8, 2019

For 2 Hours, a Large Chunk of European #Mobile Traffic was Rerouted through China as https://t.co/nzky8SDu3l Leaks over 70,000 Routeshttps://t.co/qMqcww48Dp #BGP #infosec pic.twitter.com/wd01ZfDMtr
— Neira Jones (@neirajones) June 9, 2019

Thread: For 2 hours, much #European mobile traffic was rerouted through #China - It was China Telecom, again. The same ISP accused last year of hijacking the vital internet backbone of western countries for Chinese intelligence gathering ???? https://t.co/iYggk3cFjh
— IndoPacific_SCS_Info (@IndoPac_Info) June 9, 2019

China telecom has repeatedly sent #BGP packets that cause western internet traffic to be routed through china. Some American and Israli scientists claim this is intentional attack while others think it's an accident.

https://t.co/RrKzBXKIYx #infosec #cybersecurity #databreach
— Chris Hanlon (@ChrisHanlonCA) June 9, 2019

European mobile traffic was rerouted for few hours to China because of a BGP route leak. https://t.co/V3QBhyaC0B. #BGP #EU #ISP #datacenter #cybersecurity
— Cyber Resilient Group (@CRGTech) June 8, 2019

Nevermind Mahathir. It really doesn't matter. They'll get your data one way or another. https://t.co/vWKuj7mVT1
— Gen (Ret) Rob Spalding (@robert_spalding) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China | ZDNet https://t.co/gBnzKfNqyc #mobile
— Richard Bell (@securityspeak) June 8, 2019

For 2 Hours, a Large Chunk of European #Mobile Traffic was Rerouted through China as https://t.co/nzky8SDu3l Leaks over 70,000 Routes⠀https://t.co/9km03DtGOU ⠀#BGP #infosec https://t.co/pxPkRdlDoV pic.twitter.com/qXmx76287A
— Neira Jones (@neirajones) June 9, 2019

짱깨들이 유럽 모바일 트래픽을 중공으로 하이재킹하고 있습니다. 이와중에도 화웨이 장비 미군기지에만 안쓰면 된다는 빨괭이새끼들. 백본에 올라탄 장비가 패킷 몽땅 우회시켜서 목적지로 전송할께 불보듯 뻔하지 않냐?
해리스대사님 저것들 다 잡아가셔여~https://t.co/hCwJEeofqY
— CHIRRUTE (@Chirrute_imwe) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China https://t.co/dD0RV7p4TV #Infoswec pic.twitter.com/SQakXnOq7P
— #AI (@AI__TECH) June 8, 2019

For two hours, a large chunk of European mobile traffic was rerouted through China | ZDNet https://t.co/MFXyoVUjmD @archonsec @ChuckDBrooks @mclynd @gvalan @DrJDrooghaag @AlaricAloor @Fabriziobustama @jdelacruz_IoT @fogle_shane @ElJefeDSecurIT @StephaneNappo
— Philippe Vynckier (@PVynckier) June 8, 2019

I don't know details about BGP, but think article definitely highlights why the security standard needs updating. https://t.co/7WWsIIHCu3
— John Atti (@thejohnatti) June 8, 2019

BGP event sends European mobile traffic through China Telecom for 2 hours ⁦@arstechnica⁩ https://t.co/750L6CmYqw
— ThousandEyes (@thousandeyes) June 8, 2019

permanent link

Featured

Important Notice: Discontinuation of Our Wiki Service

Dear Valued Users,

We hope this message finds you well. We are writing to inform you of an important upcoming change to our services. After careful consideration and analysis, we have made the difficult decision to discontinue our wiki site, effective one month from 2024/04/30.

This was not an easy decision to make, as we understand the importance of the resources and community that have been built around our wiki. However, due to evolving market conditions and strategic realignments, we must redirect our resources and efforts towards other ventures that will allow us to serve you better in the future.

What This Means for You:

Access to Content: You will continue to have full access to all content on the wiki until the discontinuation date. We encourage you to save or migrate any content you wish to retain.
Final Date of Service: The wiki will become inaccessible starting 1st June 2024, after which all content will be permanently removed.

We are immensely grateful for the support and contributions of our user community throughout the years. The wiki is being retired, but our team will be back soon with new services and apps.

Thank you for being a part of our journey.

Warm regards,

editoy Inc.

Related

Featured