RouteHijacking

Route hijacking refers to a class of internet routing incidents in which an attacker or misconfigured network announces IP prefixes that it does not own, or otherwise manipulates routing advertisements, to misdirect traffic. It exploits the trust model of the Border Gateway Protocol (BGP), the protocol that interconnects autonomous systems on the Internet. By announcing a prefix—often a more specific one or a forged origin—the attacker can attract traffic that should be delivered elsewhere, enabling interception, modification, or disruption of communications.

Common forms include prefix hijacking (advertising a prefix not actually allocated to the announcing AS), sub-prefix

Impacts can include loss of confidentiality through traffic interception, integrity risks if traffic is altered, increased

Defenses focus on validation and filtering: RPKI with ROA-based origin validation, BGPsec, and prefix filtering at

Notable incidents have occurred when large providers or content networks were briefly unreachable due to hijacked