A security researcher discovered a critical exploit chain in RIPE NCC's RPKI and database systems, allowing attackers to disconnect networks and hijack routing authorizations via a single malicious link. The vulnerabilities involved XSS, shared session cookies, and missing CSRF protections, enabling full control over internet routing for European, Middle Eastern, and Central Asian networks. All issues have been fixed after a 14-month responsible disclosure process.
Background
RPKI (Resource Public Key Infrastructure) is a security framework used to verify the authenticity of internet routing information, critical for preventing route hijacking and BGP attacks. RIPE NCC manages internet resources for Europe, the Middle East, and parts of Central Asia.
- Source
- Lobsters
- Published
- Apr 29, 2026 at 06:16 PM
- Score
- 9.0 / 10