Nigerian firm takes blame for Google glitch

Nigeria’s Main One Cable yesterday took responsibility for a glitch that temporarily caused some Google global traffic to be misrouted through China, saying it accidentally caused the problem during a network upgrade.

The issue surfaced on Monday afternoon as Internet monitoring firms ThousandEyes and BGPmon said some traffic to Alphabet’s Google had been routed through China and Russia, raising concerns that the communications had been intentionally hijacked.

Main One said in an e-mail that it had caused a 74-minute glitch by misconfiguring a border gateway protocol filter used to route traffic across the Internet. That resulted in some Google traffic being sent through Main One partner China Telecom, said the West African firm.

Google has said little about the matter. It acknowledged the problem on Monday in a post on its Web site that said it was investigating the glitch and said it believed the problem originated outside the company. It did not say how many users were affected or identify specific customers.

Google representatives could not be reached on Tuesday to comment on Main One’s statement.

Even though Main One said it was to blame, some security experts said the incident highlighted concerns about the potential for hackers to conduct espionage or disrupt communications by exploiting known vulnerabilities in the way traffic is routed over the Internet.

The US China Economic and Security Review Commission, a Washington-based group that advises the US Congress on security issues, plans to look into the issue, said commissioner Michael Wessel.

“We will work to gain more facts about what has happened recently and look at what legal tools or legislation or law enforcement activities can help address this problem,” Wessel said.

Glitches in border gateway protocol filters have caused multiple outages to date, including cases where traffic from US Internet and financial services firms was routed through Russia, China and Belarus.

Yuval Shavitt, a network security researcher at Tel Aviv University, said it was possible Monday’s issue was not an accident.

“You can always claim that this is some kind of configuration error,” said Shavitt, who last month co-authored a paper alleging the Chinese government had conducted a series of Internet hijacks.

Main One, which describes itself as a leading provider of telecom and network services for businesses in West Africa, said it had investigated the matter and implemented new processes to prevent it from happening again.

Source: IT Web Africa