January 4, 2024 at 06:42AM
Orange Spain experienced a prolonged internet outage due to a hacker attack on January 3. The hacker, known as ‘Snow’, gained control of Orange’s RIPE account, disrupting internet traffic using stolen credentials. Orange confirmed the attack, stating that customer data was not compromised, and the impacted services have been restored. RIPE NCC has initiated an investigation and advised account holders to update passwords and enable multi-factor authentication.
Based on the meeting notes, the key takeaways are:
1. Orange Spain experienced a significant internet outage on January 3 due to a hacker attack that involved stolen credentials and control of their RIPE account by an individual using the moniker ‘Snow’.
2. The hacker, ‘Snow’, made changes to Orange’s RIPE account, leading to Border Gateway Protocol (BGP) routing disruptions and loss of traffic for Orange customers.
3. A technical description of the attack was shared by Felipe Canizares of DMNTR Network Solutions.
4. The hacker claimed that their goal was to prevent a potential threat actor from compromising the account and clarified that no ransom was demanded.
5. The compromise of Orange Spain’s RIPE admin account was believed to have been facilitated by an employee’s computer being infected with the Raccoon information stealer malware.
6. Orange Spain confirmed the hijacking of its RIPE account, stated that impacted services had been restored, and reassured that no customer data was compromised.
7. The RIPE NCC issued a statement confirming the restoration of access to the legitimate account holder and the launch of an investigation into the incident, encouraging account holders to update their passwords and enable multi-factor authentication for their accounts.
This summary captures the key details and implications of the meeting notes related to the internet outage and hacker attack on Orange Spain.