American Radio Relay League reports cyberattack that shuts down their services
Learn More
The American Radio Relay League (ARRL), the national association for amateur radio in the United States, experienced a cyberattack that disrupted its IT systems and online operations.
The ARRL represents amateur radio interests to government regulatory bodies, offers technical advice, and promotes events and educational programs for radio enthusiasts across the country.
The incident was reported on thursday, 16th of May 2024. It has impacted several services, including email and the Logbook of The World (LoTW). LoTW is an online database where amateur radio enthusiasts can submit electronic logs of successful contacts (QSO) and confirmations (QSL) with other users. It is an essential service for recording successful communications to earn operator awards.
ARRL organization assures its members that it does not store credit card information or collect Social Security numbers. However, the LoTW member database does contain private information such as:
- Names
- Addresses
- Call signs
While not explicitly stated, email addresses are likely stored in the database since they are required for membership registration.
The exact nature of the cyberattack, whether it was a ransomware attack or another type of cybersecurity incident, remains unknown. No details are available about the number of affected individuals.
The ARRL is currently in the process of responding to the incident, securing its network, and restoring affected services. They have communicated their efforts to members through a press release and have reassured them regarding the measures being taken to protect their data.
Update - as of 11th of July 2024 the American Radio Relay League (ARRL) has confirmed that a ransomware attack led to the theft of some employees' personal data. The number of affected individuals is still not disclosed.
