12–14 Mar 2024
Lord Charles Hotel
Africa/Johannesburg timezone

Digging into the Orange Espana Hack

Not scheduled
20m
+27.218797000 (Lord Charles Hotel)

+27.218797000

Lord Charles Hotel

Corner Main Road (M9) & Broadway Boulevard, R44, Somerset West, Cape Town, 7130
Technical Plenary

Speaker

Mr Jac Kloots (Kentik)

Description

This presentation will focus on the unprecedented cyber-attack on Orange España in January 2024, highlighting the novel misuse of the Resource Public Key Infrastructure (RPKI) to induce an outage.
We will explore the sequence of events leading to the service disruption, the attacker's strategy of publishing erroneous Route Origin Authorizations (ROAs), and the subsequent operational and security lessons for network operators. In particular what the incident tells us about how efficient RKPI is today, where we see a partial deployment on the Glocal Internet.
The presentation will be based on the work of Kentik’s Internet Analyst Doug Madory.

Primary author

Mr Jac Kloots (Kentik)

Presentation materials