Report shows that Russian ISP was intercepting Apple network traffic for 12 hours on July 26 and 27. Rostelecom used routing configuration changes to intercept some of the traffic going to Apple’s networks.
It is not clear if any end user services were affected by this action or what was actual impact on Apple ecosystem, however, this signifies importance of protecting all of network traffic and choosing appropriate encryption standards.
MANRS: For 12 Hours, Was Part of Apple Engineering’s Network Hijacked by Russia’s Rostelecom?
Reference: Russia tried to hijack some of Apple’s internet traffic for 12 hours
Recommendations
Developer:
Ensure all application traffic is being protected with SSL. Use certificate pinning whenever possible.QA engineer:
Add network encryption tests to usual test suites.PM/DM:
Ensure that traffic encryption is implemented, add proper encryption and authentication implementation tasks to backlog if needed.