Cloudflare 1.1.1.1 incident on June 27, 2024
Cloudflare faced a global incident on June 27, 2024, with its 1.1.1.1 DNS resolver due to BGP hijacking and a route leak. Despite affecting some users, Cloudflare responded by disabling peering locations and engaging with network operators to resolve the issue.
Read original article
On June 27, 2024, Cloudflare experienced an incident with its 1.1.1.1 DNS resolver service due to a combination of BGP hijacking and a route leak. The root cause was identified as a mix of BGP hijacking and a route leak, impacting users globally. Despite efforts like RPKI adoption, the incident caused unreachability for the DNS resolver address from over 300 networks in 70 countries, affecting less than 1% of users in some countries. Cloudflare took steps to address the issue, including disabling peering locations and engaging with relevant network operators. The incident timeline detailed the actions taken to resolve the impact, which included disabling peering points and engaging with AS267613 and AS262504. The impact varied, with some users unable to reach 1.1.1.1 at all, while others experienced high latency per request. Cloudflare's response involved technical analysis using tools like public route collectors and the monocle tool to investigate the rogue BGP updates. The incident highlighted the challenges posed by BGP hijacks and route leaks, emphasizing the importance of continued vigilance and improvement in detecting and mitigating such incidents.
Related
Cloudflare blocking my IP (2023)
The Cloudflare Community discusses a user facing "verify you are human" prompts on Cloudflare-protected sites. Cloudflare advises contacting site owners for resolution, clarifying they don't block IPs. User frustration ensues.
Cloudflare DNS is down (1.1.1.1)
The 1.1.1.1 app by Cloudflare enhances internet speed and security by encrypting traffic, expanding networks for subscribers, and extending protection to macOS and Windows users. Businesses can integrate WARP with Gateway for remote workforce security.
Issues with 1.1.1.1 public resolver in multiple locations
Cloudflare faces problems with 1.1.1.1 public resolver in various locations. Fix in progress. Investigation ongoing. Users can subscribe for updates. Cloudflare working on resolving the issue.
Over 100K+ Sites Hit by Polyfill.io Supply Chain Attack
A supply chain attack on Polyfill.io affected 100,000+ websites, redirecting mobile users to a betting site. Security measures like link rewriting and integrity checks are advised to mitigate risks in web development.
Cloudflare 1.1.1.1 incident on June 27, 2024
Cloudflare faced a DNS resolver issue on 1.1.1.1 due to BGP hijacking and route leak, impacting global users. Cloudflare used RPKI for prevention but challenges remain. Mitigation steps were taken during the incident.
7 commentsLack of authentication, inherent vulnerabilities to route hijacks and leaks, and reliance on mutual trust rather than verification...If AGI tries to assert global dominance, BGP will be the fail-safe 'red button' to prevent an AI apocalypse.
Swapped to Quad9[1], been using them since.
Was debating setting up my own recursive resolver, but the privacy aspect seemed less than ideal. Damed if you do, damed if you don't kinda.
Edit: Could this have been used to hijack/create TLS certificates?
Not writed in the post, does anyone know?
I don't want a 'you could never get this 1%" because of X straight up. What percentage could I get and why is this not easy?
Related
Cloudflare blocking my IP (2023)
The Cloudflare Community discusses a user facing "verify you are human" prompts on Cloudflare-protected sites. Cloudflare advises contacting site owners for resolution, clarifying they don't block IPs. User frustration ensues.
Cloudflare DNS is down (1.1.1.1)
The 1.1.1.1 app by Cloudflare enhances internet speed and security by encrypting traffic, expanding networks for subscribers, and extending protection to macOS and Windows users. Businesses can integrate WARP with Gateway for remote workforce security.
Issues with 1.1.1.1 public resolver in multiple locations
Cloudflare faces problems with 1.1.1.1 public resolver in various locations. Fix in progress. Investigation ongoing. Users can subscribe for updates. Cloudflare working on resolving the issue.
Over 100K+ Sites Hit by Polyfill.io Supply Chain Attack
A supply chain attack on Polyfill.io affected 100,000+ websites, redirecting mobile users to a betting site. Security measures like link rewriting and integrity checks are advised to mitigate risks in web development.
Cloudflare 1.1.1.1 incident on June 27, 2024
Cloudflare faced a DNS resolver issue on 1.1.1.1 due to BGP hijacking and route leak, impacting global users. Cloudflare used RPKI for prevention but challenges remain. Mitigation steps were taken during the incident.