Skip to main content
  1. Home
  2. Computing
  3. News

An IP address vulnerability took down some Google services for 1 hour

By
Image used with permission by copyright holder

It might have been for just an hour, but some of Google’s services went down on Monday, November 12. The outage was reportedly caused by an improper rerouting of IP addresses and the moving of traffic away from the usual ports towards China and Russia instead, Ars Technica reports.

Though the rerouting that caused the outage is not thought to be malicious, it temporarily impacted Spotify and Google Cloud in the United States. Encrypted traffic relating to Google’s own corporate WAN infrastructure and VPN services were also redirected, but not compromised as part of the outage.

Recommended Videos

Google deems the entire situation “accidental,” according to reports. It was initially caused by a cable company based in Nigeria which improperly rerouted hundreds of Google-owned IP addresses as its own as part of a planned network upgrade. This eventually led to two other Russia and China-based carriers accepting the IP changes. Suspiciously, China Telecom, a provider which was guilty of certain similar IP address re-routes in the past, also accepted the accidental changes and then directed them worldwide.

Please enable Javascript to view this content

“We’re aware that a portion of Internet traffic was affected by incorrect routing of IP addresses, and access to some Google services was impacted. The root cause of the issue was external to Google and there was no compromise of Google services,” Google said.

Related

Cloudflare, a Google partner, was also later impacted by a separate IP address misdirection. Part of the same process set by the same Nigerian, Russian, and Chinese cable companies, the changes were quickly and automatically reserved. It all still raised serious concerns about the security of the entire IP address routing infrastructure.

“If there was something nefarious afoot there would have been a lot more direct, and potentially less disruptive/detectable, ways to reroute traffic. This was a big, ugly screw up. Intentional route leaks we’ve seen to do things like steal cryptocurrency are typically far more targeted,” Cloudflare CEO Matthew Prince told Ars Technica.

While these changes didn’t last for very long, it still was relatively unnoticed until consumers and customers reported issues. It was reported on Twitter that the IP changes came in five intervals, all of which were corrected within 74 minutes.

Editors’ Recommendations

Topics
Arif Bacchus
Arif Bacchus
Former Digital Trends Contributor
Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…
Pixel 3a confirmed to get Android 12L even as Google winds down Pixel 3 support
Google Pixel 3a XL hands on.

With the announcement of Android 12L, Google shared a list of Pixel phones expected to receive the beta when it began the testing period in December. While the Pixel 3 was understandably absent, Google also didn't include the newer Pixel 3a -- which was taken as an indication that it was likely not going to get the newer Android version when it rolls out. Fortunately, that's not the case, as Google confirmed to Digital Trends over email that it was an oversight and documentation would be updated shortly.

According to Google, the Android 12L beta will be going out to the following Pixel phones: Pixel 6 Pro, Pixel 6, Pixel 5a with 5G, Pixel 5, Pixel 4a (5G), Pixel 4a, and Pixel 4.  It will not be coming to the Pixel 3, which received its last guaranteed update with Android 12. The Pixel 3's exclusion is a little weird, though. Launched in May of 2019, Google promises updates for up to three years post-launch. As indicated by the company's Pixel software support list, this means the Pixel 3a should expect major updates through May of 2022.

Read more
Walk the Great Wall of China in Google’s latest virtual tour
The Great Wall of China.

If your pandemic-related precautions still prevent you from traveling but you’d like to take a trip somewhere far away, then how about diving into the latest virtual tour from Google Arts & Culture?

The Street View-style experience features a 360-degree virtual tour of one of the best-preserved sections of the Great Wall, which in its entirety stretches for more than 13,000 miles -- about the round-trip distance between Los Angeles and New Zealand.

Read more
Google’s Pixel 6 features new Pixel Pass subscription service to rival Apple One
Google Pixel 6 Image Composite.

Google is reportedly working on Pixel Pass, a subscription service for the most ardent Google superfans, according to tech YouTuber, Brandon Lee. From the description of the purported Pixel Pass, this is a financing option where Google offers users a fixed price to pay for a Pixel phone and a bundle of Google services all at once.

The concept recalls both Apple One and Apple's iPhone Upgrade Program, a service where Apple enthusiasts can purchase a bundle of all Apple services, from Apple News+ and Apple TV to Apple Music. This would do the same type of thing, bundling in YouTube Premium, Google One, Play Pass, Google Fi, and a Pixel phone to boot. There's also an extended warranty option with Preferred Care or Device Protection for those who want peace of mind. It's likely to be a U.S. exclusive, especially with the inclusion of a Fi subscription, but that's not been definitively confirmed.

Read more