There Were BGP Anomalies During the Venezuela Blackout
4 months ago
- #Venezuela
- #Cybersecurity
- #BGP
- BGP anomalies were detected during the Venezuela blackout, with unusual routing through CANTV (AS8048).
- Cloudflare Radar data showed spikes in BGP announcements and a dip in announced IP address space before the blackout.
- Sparkle, a transit provider in the AS path, lacks BGP security features like RPKI filtering, making it 'unsafe.'
- Public datasets and tools like bgpdump revealed detailed BGP routing anomalies, including repeated CANTV AS paths.
- The affected IP ranges belonged to Dayco Telecom, hosting critical infrastructure like banks and email servers.
- Timing of BGP anomalies coincided with geopolitical events, suggesting potential intelligence gathering.
- The article also highlights other security and tech topics, including AI risks, Linux advancements, and Kubernetes networking.