logoalt Hacker News

schmuckonwheelsyesterday at 7:21 PM10 repliesview on HN

I see multiple posts here speculating on cyberattack—as opposed to "we pushed a bad configuration update which messed everything up irreparably"—you know, like it has been every other time before this.

E.g., Cloudflare, Meta (who in doing so also locked themselves out of the building), and didn't some bumbling major Canadian telco knock themselves offline for like a week not too long ago?

Replies

jandreseyesterday at 7:27 PM

One of these times they will be right and you will never hear the end of the time they were first to recognize the start of a cyberattack.

show 4 replies
embedding-shapeyesterday at 7:22 PM

That's not true though, sometimes it's inexplicitly DNS too.

show 2 replies
shimmanyesterday at 7:45 PM

I worked at a major ISP and we had a similar situation where the North East went down and the RC was a fiber cut at a major node in Philly.

These network topologies are incredibly complex and edges you think wouldn't exist have ways of suddenly appearing when things go awry.

cheeseprocedureyesterday at 8:06 PM

Yeah, the Canadian telco was Rogers. Total recovery took multiple days. From the Wikipedia writeup:

> In a letter to the CRTC, Rogers stated that the deletion of a routing filter on its distribution routers caused all possible routes to the internet to pass through the routers, exceeding the capacity of the routers on its core network.

https://en.wikipedia.org/wiki/2022_Rogers_Communications_out...

mikepurvisyesterday at 8:06 PM

The major Canadian outage was Rogers in 2022: https://en.wikipedia.org/wiki/2022_Rogers_Communications_out...

I took my kids swimming that day and the pool couldn't take our money since the payment terminal was on the Rogers cellular network, so it was a free family swim.

Nextgridyesterday at 8:01 PM

Cyberattacks are a good scapegoat for any large incompetent non-tech company that is unable to admit a mistake. (tech companies are more open to admitting actual mistakes - and reluctant to disclose cyberattacks even if there actually was one - where as non-tech ones would rather allude to an attack than admit a mistake)

Cyberattack scenarios pretty much never make sense in case of complete outages; if you have the access required to cause such an outage it’s always more profitable to keep this access and use it for covert spying/targeted attacks or save it for later than to burn it by causing a massive, visible problem.

venturecrueltyyesterday at 8:04 PM

In a dead empire, sufficiently advanced rot is indistinguishable from malice.

show 1 reply
ocdtrekkieyesterday at 7:28 PM

Verizon had issues routing calls to a provider I'm aware of yesterday, and had to make some sort of change today to fix it. I'm definitely thinking bad configuration update.

CGMthrowawayyesterday at 7:29 PM

It's affecting every mobile carrier (ATT, TMO), not just Verizon

show 1 reply