HomeIntelligenceBrief
BREACH BRIEF🟠 High ThreatIntel

India’s BGP Hijack of Telegram Disrupts Access in India and the UAE

India blocked Telegram under Section 69A, and the platform’s CEO alleges a BGP hijack by Reliance (AS 18101) redirected traffic, affecting users as far as the UAE. The incident highlights the need for SOC 2‑aligned network routing controls and continuous evidence collection.

LiveThreat™ Intelligence · 📅 June 17, 2026· 📰 bleepingcomputer.com
🟠
Severity
High
TI
Type
ThreatIntel
🎯
Confidence
High
🏢
Affected
3 sector(s)
Actions
3 recommended
📰
Source
bleepingcomputer.com

India’s BGP Hijack of Telegram Disrupts Access in India and the UAE

What Happened — India invoked Section 69A of its IT Act to block Telegram nationwide. Telegram’s CEO alleges that Indian telecom Reliance (AS 18101) performed a BGP hijack, announcing Telegram’s IP prefixes and causing routing disruption that extended to users in the United Arab Emirates.

Why It Matters for Compliance & Audit Readiness

  • BGP hijacking demonstrates a gap in network‑routing controls that SOC 2 CC6.1 (Network Security) expects organizations to monitor and validate.
  • Continuous evidence of route‑origin validation (e.g., RPKI) and third‑party network behavior is essential to prove due diligence during an audit.
  • Documenting the incident and the remediation steps provides a defensible audit trail for any future regulatory or contractual review.

Who Is Affected – Messaging SaaS platforms (Telegram), telecom operators, enterprises that rely on Telegram for communication, and end‑users in India and the UAE.

Recommended Actions – Map BGP security to SOC 2 controls, enable RPKI validation, implement real‑time route‑monitoring, collect routing logs as audit evidence, and update vendor‑risk assessments for telecom partners. Source: BleepingComputer

Technical Notes – Attack vector: BGP hijack (misconfiguration/unauthorized route announcement). Autonomous System AS18101 announced Telegram prefixes; RPKI filtering limited propagation but did not prevent service loss. No CVE; data at risk was communications traffic, not content. Source: BleepingComputer

📰 Original Source
https://www.bleepingcomputer.com/news/security/indias-telegram-ban-hit-the-uae-too-heres-how-to-get-around-it/

This LiveThreat Intelligence Brief is an independent analysis. Read the original reporting at the link above.

From the Verisq platform · Trust Operations

Misconfigurations are control gaps in disguise.

Verisq AI Trust Operations turns findings like this into mapped controls with continuous evidence, keeping your audit readiness current instead of point-in-time.

Map your controls with Verisq AI Trust Operations →