this post was submitted on 20 May 2024
39 points (100.0% liked)

Amateur Radio

660 readers
10 users here now

General amateur radio (ham radio) chat, questions, and news

founded 1 year ago
MODERATORS
[email protected]
39
American Radio Relay League cyberattack takes Logbook of the World offline (www.bleepingcomputer.com)
submitted 3 months ago by [email protected] to c/[email protected]
6 comments fedilink hide all child comments
 

cross-posted from: https://infosec.pub/post/12513834

American Radio Relay League cyberattack takes Logbook of the World offline

The American Radio Relay League (ARRL) warns it suffered a cyberattack, which disrupted its IT systems and online operations, including email and the Logbook of the World. [...]

top 6 comments
sorted by: hot top controversial new old
[–] [email protected] 6 points 3 months ago (1 children)

Interesting that the ARRL appears to be playing down the situation, calling it a disruption and essentially only public data being stored.

ARRL Systems Service Disruption

05/17/2024

Updated 5/17/2024

Some members have asked whether their personal information has been compromised in some way. ARRL does not store credit card information anywhere on our systems, and we do not collect social security numbers. Our member database only contains publicly available information like name, address, and call sign along with ARRL specific data like email preferences and membership dates.

Original story below: 5/16/2024

We are in the process of responding to a serious incident involving access to our network and headquarters-based systems. Several services, such as Logbook of The World® and the ARRL Learning Center, are affected. Please know that restoring access is our highest priority, and we are expeditiously working with outside industry experts to address the issue. We appreciate your patience.

This story will be updated with new developments.

Source: https://www.arrl.org/news/arrl-systems-service-disruption

[–] [email protected] 5 points 3 months ago (1 children)

It’s step one of the PR playbook: assert that it’s not a big deal, and if it is a big deal then it’s not so bad, and if it is so bad then remember it’s a free service, and if you were paying then you probably need credit monitoring.

[–] [email protected] 3 points 3 months ago (2 children)

Much more significant is the wider impact.

What I want to know, as a former user of LotW, were my details part of this hack and if so, why did they not notify me.

If not, how do they know that?

This is not a PR exercise, even if the ARRL appears to be downplaying the whole thing. This goes to the heart of how our global community hangs together.

To make matters worse, their website now returns a proxy error.

[–] [email protected] 3 points 3 months ago

Update: Their website now appears to be loading again. I have contacted their media team for comment in relation to the data for global LotW users.

[–] [email protected] 1 points 3 months ago

I’m with you, and add to that only one update every ~72 hours is a long stretch between updates.

I reckon they can’t update users individually because as I understand it the email system was also affected (can’t recall where I saw this), additionally they possibly just don’t know the scale yet, and if they do know the scale, they are preparing their statements in advance.

[–] [email protected] 3 points 3 months ago* (last edited 3 months ago)

I must say that the ARRL has been less than forthcoming in their communication with the amateur community.

If you want to track LotW availability: https://status.lotw.arrl.org/