Another BGP Hijacking Event Highlights the Importance of MANRS and Routing Security
Another BGP hijacking event is in the news today. This time, the event is affecting the Ethereum cryptocurrency. (Read more about it here, or here.) Users were faced with an insecure SSL certificate. Clicking through that, like so many users do without reading, they were redirected to a server in Russia, which proceeded to empty the user’s wallet. DNSSEC is important to us, so please check out the Deploy360 DNSSEC resources to make sure your domain names are protected. In this post, though, we’ll focus on the BGP hijacking part of this attack.
What happened?
First, here’s a rundown of routing attacks on cryptocurrency in general – https://btc-hijack.ethz.ch/.
In this case specifically, the culprit re-routed DNS traffic using a man in the middle attack using a server at an Equinix data center in Chicago. Cloudflare has put up a blog post that explains the technical details. From that post:
“This [hijacked] IP space is allocated to Amazon(AS16509). But the ASN that announced it was eNet Inc(AS10297) to their peers and forwarded to Hurricane Electric(AS6939).
“Those IPs are for Route53 Amazon DNS servers. When you query for one of their client zones, those servers Continue reading
Short Take: Death of the Seven Layer Model
Is the seven-layer OSI model really all that useful any longer? Before you answer, it’s worth listening to my latest short take over at the Network Collective.
AT&T Says the 5G Secret Sauce Is in the Software
5G trials from Kalamazoo, Michigan, to Waco, Texas, have helped the company fine-tune its commercial deployment plans.
This Girls in ICT Day, Let’s Increase the Visibility of Women on Wikipedia
At the Women’s Special Interest Group of the Internet Society we are committed to promoting the participation of women in the Internet ecosystem. We also consider it important to increase the content created by and about women on the Internet to give voice and make visible the actions, work, and participation of women in Information and Communication Technologies (ICT).
Just 17% of Wikipedia biographies are of women. This happens because of the invisibility on the Internet of their work, which makes it difficult to create their biographies, no matter how valuable their work is.
April 26 is the International Day of Girls in ICT, promoted by the ITU. It aims to reduce the digital gender gap and encourage and motivate girls to participate in tech careers. With the support of the Wikimedia Foundation and Internet Society Chapters, we are going to commemorate the Girls in ICT Day with an editathon marathon in Wikipedia, to include all the women who are working to build an open Internet, free, safe, transparent, and affordable for everyone.
The important thing about this Global Editathon “Girls in ICT” is that the content will be created by women in their native language or in the Continue reading
Enterprise IoT Benefits and Challenges
Organizations are rushing to leverage internet of things solutions, but struggle to design the information technology architectures that will lock down the data these devices create.
Verizon, Citrix, and Hitachi Invest in The Fabric’s Latest $20M Funding Pool
The investment firm was part of the funding behind VeloCloud, Perspica, and Appcito.
Continuing Support for the Work of the IETF
The Internet Engineering Task Force (IETF) has been working recently to update its administrative arrangements to match the changing requirements it faces as the premiere Internet standards organization.
It has been more than a decade since the IETF became an organized activity of the Internet Society. Given the changes in the world and the Internet in the intervening time, it is natural to reconsider how to most effectively organize and implement its administrative structure. The Internet Society Board of Trustees supports the IETF in this work, and has set aside funding for this purpose. Internet Society staff are prepared to help implement the changes required.
Aspects of the mutual relationship between the Internet Society and the IETF, such as the role of the Internet Society in the standards appeal process, the confirmation of the Internet Architecture Board (IAB) members by the Internet Society’s Board of Trustees, and four members of the Internet Society’s Board of Trustees being appointed by the IAB on the IETF’s behalf, are not subject to change.
Both the Internet Society and IETF will benefit from an updated administrative structure for the IETF that continues to provide a solid foundation for the development of open standards for the global Internet.
The post Continuing Support for the Work of the IETF appeared first on Internet Society.
Datanauts 131: Masters And Mentorship
Today on the Datanauts podcast, we land on planet Mentorship to drive around in our exploratory rovers. Why? Mentoring came up on Twitter a while back.
Some of you are for it. You invest in your co-workers and your organization by sharing with others what you know. Some of you are against mentoring, arguing that you don t have the time and aren t getting paid to teach other people.
And then the Twitterverse connected us to Don Jones, who wrote a book called, Be The Master. Seems like a great excuse to fire up the microphone on our rovers and explore planet Mentorship in more detail.
Besides being an author, Don is an an IT pro and PowerShell expert who has created a variety of PowerShell training materials.
We talk about how a master/apprenticeship approach can be more effective than formal education, selfish reasons for being a mentor, how to address imposter syndrome, and how to get support for mentorship at work.
Show Links:
Become The Master Or Go Away – Don Jones.com
Be the Master with Don Jones – RunAsRadio
The post Datanauts 131: Masters Continue reading
History Of Networking – Tony Przygienda – History of BIER
In this History of Networking episode Tony Przygienda joins us to discuss his involvement in the origins of BIER (Bit Index Explicit Replication). BIER is a new take on an old problem, the efficient forwarding of point-to-multipoint (multicast) traffic.
Tony Przygienda
Guest
Russ White
Host
Donald Sharp
Host
Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/
The post History Of Networking – Tony Przygienda – History of BIER appeared first on Network Collective.
BGP Hijack of Amazon DNS to Steal Crypto Currency
Yesterday morning we posted a tweet (below) that Amazon’s authoritative DNS service had been impacted by a routing (BGP) hijack. Little did we know this was part of an elaborate scheme to use the inherent security weaknesses of DNS and BGP to pilfer crypto currency, but that remarkable scenario appears to have taken place.
BGP hijack this morning affected Amazon DNS. eNet (AS10297) of Columbus, OH announced the following more-specifics of Amazon routes from 11:05 to 13:03 UTC today:
205.251.192.0/24
205.251.193.0/24
205.251.195.0/24
205.251.197.0/24
205.251.199.0/24— InternetIntelligence (@InternetIntel) April 24, 2018
After posting the hijack tweet, I observed reports of a DNS hijack relating to the cryptocurrency website myetherwallet.com and thought the two things might be related:
Maybe related to this: https://t.co/6dOrmEuRAz
— Doug Madory (@DougMadory) April 24, 2018
Sure enough, it appears that eNet/XLHost (AS10297) suffered a breach enabling attackers to impersonate Amazon’s authoritative DNS service. These attackers used AS10297 to announce five routes used by Amazon’s DNS:
205.251.192.0/24 Amazon.com, Inc.
205.251.193.0/24 Amazon.com, Inc.
205.251.195.0/24 Amazon.com, Inc.
205. Continue reading
Video – Enterprise IT is Luxury Market, Stop Whining About The Price
Stop pretending that you got a good deal when you paid premium prices for goods that cost a fraction of the sale price to make.
Cohesity SD-Storage Automates Data Backup in Public Clouds
The software integrates with public cloud APIs so that backups scale automatically as cloud workloads are added or deleted.
VLAN Troubleshooting Commands
Save time by using these four commands to quickly track down and resolve VLAN-related problems.