Conclusion As the supporting evidence from historical BGP data concludes, the information revealed in the Wikileaks documents is factual and the Italian ROS and Hacking Team did work with the Italian network AS31034 (Aruba S.p.A), to announce 220.127.116.11/24 between Aug 16 and Aug 22. in order to regain access to their RAT clients. This finding further confirms the use of BGP for nefarious purposes similar to the one listed in our blog post earlier this year.
Cutouts is an open source application. Code licensed under the MIT license. Copyright 2018 Siddharth Kannan