Home / Companies / Cloudflare / Blog / Post Details
Content Deep Dive

BGP leaks and cryptocurrencies

Blog post from Cloudflare

Post Details
Company
Date Published
Author
Louis Poinsignon
Word Count
1,345
Company Posts That Month
19
Language
English
Hacker News Points
196
Post removed?
No
Summary

A BGP leak occurred on April 24, 2018, where an attacker attempted (and possibly succeeded) to steal cryptocurrencies using the leaked IP space. The Internet is composed of routes, and authorities are in charge of distributing IP addresses to avoid duplication. A BGP leak occurs when someone not allowed by the owner of the space announces IPs. This can be due to a configuration mistake or malicious intent. In this case, eNet Inc (AS10297) announced more specifics of Amazon routes from 11:05 to 13:03 UTC today. The BGP hijack affected AWS DNS and was against myetherwallet.com. The attacker stole Ethereum by using the login information they obtained through a phishing website hosted on Russian providers. Solutions for securing BGP include adding terms to RIR databases, setting up RPKI/ROA records, using DNSSEC, enabling HSTS, and utilizing DANE.

Trends Found in this Post

No tracked trend matches for this post yet.

Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.