Apple Network Traffic Was Hijacked through Russian Networks for 12 Hours

Peter_Brosdahl

Moderator
Staff member
Joined
May 28, 2019
Messages
8,899
Points
113
Apple network traffic took a brief 12-hour detour through the Russian Rostelecom network that spanned July 26-27. Reports state that Rostelcom began announcing routes for Apple's network...

Go to post
 
That is potentially a huge man in the middle attack suckig up.. tons of data for them to sift through.
 
Like, their internal corporate network? Have fun reading those emails.
 
It's amazing this even works.

Anything transferring data like that should be using cryptographic authentication making any MITM attakc utterly useless.

Also, if the Russians are going to do **** like this, we should just cut them off from the Internet.
 
Zarathustra said:
It's amazing this even works.

Anything transferring data like that should be using cryptographic authentication making any MITM attakc utterly useless.

Also, if the Russians are going to do **** like this, we should just cut them off from the Internet.
Click to expand...

This isn't your traditional MITM attack. The attackers sucked up copies of ALL of that encrypted data. The question is do they have the ability to decrypt it fast enough to be damaging to APPLE enough so they cut them a check for 40 million or so and write it off as a security expense.

Because I doubt they got 'code' data or 'chip blueprints' or anything like that. But internal emails... bemoaning customers or talking about them as sheeple or anything else that would be daddy Apple insulting it's customers Directly... that would hurt apple's stock in a big way. They literally could loose over a trillion in value.

The game here is if apple is hiring a team from what used to be blackwater to go in and scrub those data archives (you know what I mean) to make sure that they are not at risk and the hackers learn that messing with Apple hurts... in a big way.
 
Grimlakin said:
But internal emails..
Click to expand...
If any of those relate to any forthcoming tech and/or patents I'm sure that someone is hard at work in decrypting and probably will end up for sale to the highest bidders. Two of whom most of us could easily guess and one that is still quite cozy with Russia.
 
Zarathustra said:
It's amazing this even works.

Anything transferring data like that should be using cryptographic authentication making any MITM attakc utterly useless.

Also, if the Russians are going to do **** like this, we should just cut them off from the Internet.
Click to expand...
According to the researchers it had a bit to do with Apple not being more specific in its addressing schema and not using Route Origin Authorization (ROA). Some might call that lazy for a company that many still believe to have a focus on security and privacy. Not to say that there are not many others guilty of the same since this has happened to a number of other big targets as well.
 
You must log in or register to reply here.
Become a Patron!
Back
Top