cross-posted from: https://infosec.pub/post/12513834

American Radio Relay League cyberattack takes Logbook of the World offline

The American Radio Relay League (ARRL) warns it suffered a cyberattack, which disrupted its IT systems and online operations, including email and the Logbook of the World. […]

  • 667
    link
    fedilink
    English
    arrow-up
    5
    ·
    6 months ago

    It’s step one of the PR playbook: assert that it’s not a big deal, and if it is a big deal then it’s not so bad, and if it is so bad then remember it’s a free service, and if you were paying then you probably need credit monitoring.

    • Onno (VK6FLAB)
      link
      fedilink
      arrow-up
      3
      ·
      6 months ago

      Much more significant is the wider impact.

      What I want to know, as a former user of LotW, were my details part of this hack and if so, why did they not notify me.

      If not, how do they know that?

      This is not a PR exercise, even if the ARRL appears to be downplaying the whole thing. This goes to the heart of how our global community hangs together.

      To make matters worse, their website now returns a proxy error.

      • Onno (VK6FLAB)
        link
        fedilink
        arrow-up
        3
        ·
        6 months ago

        Update: Their website now appears to be loading again. I have contacted their media team for comment in relation to the data for global LotW users.

      • 667
        link
        fedilink
        English
        arrow-up
        1
        ·
        6 months ago

        I’m with you, and add to that only one update every ~72 hours is a long stretch between updates.

        I reckon they can’t update users individually because as I understand it the email system was also affected (can’t recall where I saw this), additionally they possibly just don’t know the scale yet, and if they do know the scale, they are preparing their statements in advance.