ARRL Systems Service Disruption 05/16/2024 We are in the process of responding to a serious incident involving access to our network and headquarters-based systems. Several services, such as Logbook of The World® and the ARRL Learning Center, are affected. Please know that restoring access is our highest priority, and we are expeditiously working with outside industry experts to address the issue. We appreciate your patience. This story will be updated with new developments.
Good info and the answer to my question as I've not been able to upload nor download from Lotw. Lets face it, most everything is vulnerable in the online world and attacks are becoming more and more frequent. Time bombs are targeting backups as well and this to me is like the white spy versus black spy in the old Mad Magazine. Cyber war fare. Bet you can't guess which countries are usually responsible for such attacks.
I was wondering why I could not get to LOTW since yesterday morning. I thought the issue was on my end. Hope they get it fixed soon.
Yeah, my money's on ransomware from the language of the announcement and from what HQ says if you call them. The ARRL's money probably will be, too.
I would bet on the Ransomeware as well. The place I work for suffered an attack early last year. We were almost completely shut down for the better part of 2 months and still have some systems that never came back for fear of re-introducing the virus into our systems. The announcement that was put up for us used almost this exact wording.
The website Manualslib took over my computer with something like that as soon as I went to the webpage. All kinds of phoney warnings and locked up my desktop-couldn't close the page,restart,or shutdown from the Start menu. It also said don't turn off computer. I did with the power button. Restarted and all was ok. PHEW! Virus scan showed nothing so it was PHISHING. I was Google searching for a manual and it came up with this site.
I wonder if anyone got a pile of spam about the same time lotw was hacked I had 28 spam emails that might have been pure coincidence, getting spam is pretty rare here. All of them were from the same address Just wondering since lotw has my email and probably lots of others Hope they had backups.
know of a CPA, had to pay 250k in bit c FBI said we know the city & bld. in Russia, but we can't do anything
Same ARRL source, Updated 5/17/2024 Some members have asked whether their personal information has been compromised in some way. ARRL does not store credit card information anywhere on our systems, and we do not collect social security numbers. Our member database only contains publicly available information like name, address, and call sign along with ARRL specific data like email preferences and membership dates.
As a Californian, I'd like to point ARRL to our "SB 1386" privacy laws which require immediate notification upon discovery of the breach, which has not been done. http://www.leginfo.ca.gov/pub/01-02/bill/sen/sb_1351-1400/sb_1386_bill_20020926_chaptered.html
Well their comms. people appear to have never been trained on comms re security incidents which is poor. First thing they should be doing is telling the members of ARRL and users of LOTW whether there is any suspicion that their data may have been accessed, and if so which data, e.g. have passport copies submitted by non-US hams to LOTW been compromised etc. Also setting expectation on when users/members can expect services to start to return to normal would be good. I also hope that down the line they also publish a report on what has actually happened, at the least that can put speculation to bed.