Cloudflare 1.1.1.1 incident on June 27, 2024
Cloudflare faced a DNS resolver issue on 1.1.1.1 due to BGP hijacking and route leak, impacting global users. Cloudflare used RPKI for prevention but challenges remain. Mitigation steps were taken during the incident.
Read original article
On June 27, 2024, Cloudflare experienced an incident with its 1.1.1.1 DNS resolver service due to a combination of BGP hijacking and a route leak. The root cause involved AS267613 announcing 1.1.1.1/32 and AS262504 leaking 1.1.1.0/24, impacting users globally. Cloudflare's use of RPKI for route origin validation aims to prevent such incidents, but challenges persist with BGP security mechanisms. During the incident, Cloudflare took steps to mitigate the impact, including disabling peering locations and engaging with the involved ASes. The incident led to users experiencing unreachability or high latency when accessing 1.1.1.1. Cloudflare's efforts to improve detection methods and promote RPKI adoption reflect their commitment to enhancing service reliability. BGP hijacks and route leaks, although not unique to 1.1.1.1, pose risks to network stability, emphasizing the importance of robust security measures in the Internet infrastructure.
Related
Cloudflare blocking my IP (2023)
The Cloudflare Community discusses a user facing "verify you are human" prompts on Cloudflare-protected sites. Cloudflare advises contacting site owners for resolution, clarifying they don't block IPs. User frustration ensues.
Cloudflare DNS is down (1.1.1.1)
The 1.1.1.1 app by Cloudflare enhances internet speed and security by encrypting traffic, expanding networks for subscribers, and extending protection to macOS and Windows users. Businesses can integrate WARP with Gateway for remote workforce security.
Issues with 1.1.1.1 public resolver in multiple locations
Cloudflare faces problems with 1.1.1.1 public resolver in various locations. Fix in progress. Investigation ongoing. Users can subscribe for updates. Cloudflare working on resolving the issue.
Over 100K+ Sites Hit by Polyfill.io Supply Chain Attack
A supply chain attack on Polyfill.io affected 100,000+ websites, redirecting mobile users to a betting site. Security measures like link rewriting and integrity checks are advised to mitigate risks in web development.
Cloudflare 1.1.1.1 incident on June 27, 2024
Cloudflare faced a global incident on June 27, 2024, with its 1.1.1.1 DNS resolver due to BGP hijacking and a route leak. Despite affecting some users, Cloudflare responded by disabling peering locations and engaging with network operators to resolve the issue.
0 commentsRelated
Cloudflare blocking my IP (2023)
The Cloudflare Community discusses a user facing "verify you are human" prompts on Cloudflare-protected sites. Cloudflare advises contacting site owners for resolution, clarifying they don't block IPs. User frustration ensues.
Cloudflare DNS is down (1.1.1.1)
The 1.1.1.1 app by Cloudflare enhances internet speed and security by encrypting traffic, expanding networks for subscribers, and extending protection to macOS and Windows users. Businesses can integrate WARP with Gateway for remote workforce security.
Issues with 1.1.1.1 public resolver in multiple locations
Cloudflare faces problems with 1.1.1.1 public resolver in various locations. Fix in progress. Investigation ongoing. Users can subscribe for updates. Cloudflare working on resolving the issue.
Over 100K+ Sites Hit by Polyfill.io Supply Chain Attack
A supply chain attack on Polyfill.io affected 100,000+ websites, redirecting mobile users to a betting site. Security measures like link rewriting and integrity checks are advised to mitigate risks in web development.
Cloudflare 1.1.1.1 incident on June 27, 2024
Cloudflare faced a global incident on June 27, 2024, with its 1.1.1.1 DNS resolver due to BGP hijacking and a route leak. Despite affecting some users, Cloudflare responded by disabling peering locations and engaging with network operators to resolve the issue.