Google’s internet traffic was hijacked and sent through Russia, China

Jason Reed/The Daily Dot

BTW

Internet traffic intended to go through Google’s Cloud Platform was temporarily hijacked Monday and rerouted through Russia and China.

The incident, known as “BGP hijacking,” refers to a technique in which the internet’s Border Gateway Protocol is exploited to change where network traffic travels.

According to cloud security company ThousandEyes, the issue lasted roughly two hours and caused internet traffic to go through numerous locations including Nigeria, Russia, and China.

The issue “caused a massive denial of service to G Suite and Google Search” and also “put valuable Google traffic in the hands of ISPs in countries with a long history of internet surveillance,” a blog post from ThousandEyes said.

Despite concerns over what appeared to be malicious behavior, Google responded by stating that it did not see any evidence that the hijacking was intentional.

The Nigerian ISP, MainOne, alleged that the issue was inadvertent and caused by a misconfiguration during a planned network upgrade.

“The error was corrected within 74 minutes and processes put in place to avoid reoccurrence,” MainOne said.

Google also argued that the traffic, despite temporarily going through hostile countries, was protected due to widespread encryption.

A recent transparency report noted that 94 percent of traffic to Google services is encrypted.

Monday’s incident comes only months after the release of a study from the U.S. Naval War College and Tel Aviv University accusing China of regularly hijacking U.S. internet traffic.

Mikael Thalen

Mikael Thalen

Mikael Thalen is a tech and security reporter based in Seattle, covering social media, data breaches, hackers, and more.