EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Cyberattack hits Orange Spain

    Cyberattack hits Orange Spain

    Written by
    The Editorial Team
    01.12.24
    Digital transformation
    01
    MIN
    Cyberattack hits Orange Spain
    Cyberattack hits Orange Spain
    Cyberattack hits Orange Spain
    Image PhilosoFIC:are generative algorithms accelerators or the gravediggers of human intelligence?
    Digital transformation
    04.08.24 Digital transformation
    Next article
    PhilosoFIC:are generative algorithms accelerators or the gravediggers of human intelligence?
    Read
    06
    MIN
    Image NIS2, DORA and CRA: 3 upcoming mutations in the cyber landscape
    Digital transformation
    03.19.24 Digital transformation
    Next article
    NIS2, DORA and CRA: 3 upcoming mutations in the cyber landscape
    Read
    03
    MIN
    Image Grand Est : a dynamic, structured ecosystem
    Cybersecurity
    03.15.24 Cybersecurity
    Next article
    Grand Est : a dynamic, structured ecosystem
    Read
    05
    MIN
    Image Cybersecurity specialist: a profession under mounting pressure
    Digital transformation
    03.14.24 Digital transformation
    Next article
    Cybersecurity specialist: a profession under mounting pressure
    Read
    07
    MIN

    Incident due to weak password and lack of two-factor authentication.

    On January 3, 2024, the mobile network provider Orange Spain disclosed it had suffered a security incident, now resolved, which significantly disrupted Internet access for its customers. A cybercriminal, who goes only by “Snow”, managed to log into the Ripe NCC account of an Orange Spain employee. Ripe NCC (Réseaux IP européens Network Communications Center) is the service that manages IP address routing in Europe.

    Snow then hijacked the routing of a significant number of IP addresses on the Orange Spain network, blocking access to websites. The cybercriminal, whose motives remain unknown, got into the critical service by entering a simple password: “ripeadmin”. Indeed, Orange Spain had never activated two-factor authentication, which is optional on Ripe NCC.

    The IP address management department encouraged users, in the press release reporting the incident, to change their passwords and activate two-factor authentication.

    The Editorial Team
    01.12.24
    Articles by the same author:
    1
    04.08.24 Cybercrime
    AT&T data theft: 73 million accounts compromised
    Read
    01
    MIN
    2
    04.08.24 Industry and OT
    Kaspersky notes slight decrease in attacks against ICS 
    Read
    02
    MIN
    3
    04.05.24 Digital Sovereignty
    DMA: European Commission to investigate Alphabet, Apple and Meta 
    Read
    02
    MIN
    4
    04.02.24 Digital Sovereignty
    Atos/Eviden: Airbus throws in the towel (again)
    Read
    02
    MIN
    Image PhilosoFIC:are generative algorithms accelerators or the gravediggers of human intelligence?
    Digital transformation
    04.08.24 Digital transformation
    Next article
    PhilosoFIC:are generative algorithms accelerators or the gravediggers of human intelligence?
    Read
    06
    MIN
    Image NIS2, DORA and CRA: 3 upcoming mutations in the cyber landscape
    Digital transformation
    03.19.24 Digital transformation
    Next article
    NIS2, DORA and CRA: 3 upcoming mutations in the cyber landscape
    Read
    03
    MIN
    Image Grand Est : a dynamic, structured ecosystem
    Cybersecurity
    03.15.24 Cybersecurity
    Next article
    Grand Est : a dynamic, structured ecosystem
    Read
    05
    MIN
    Image Cybersecurity specialist: a profession under mounting pressure
    Digital transformation
    03.14.24 Digital transformation
    Next article
    Cybersecurity specialist: a profession under mounting pressure
    Read
    07
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.