73 & Gud DX 

K4WSB  /C6A VP2MSB

DXCC 340/357



Begin forwarded message:

From: "Dr. Michael Carper, WA9PIE v


Well... my current company (in my "day job") was hit with a ransomware attack prior to hiring me (and I've fully reviewed the event). I've had responsibility for cyber security for over 30 years now. I've had to interact with Federal agencies many times and these things I know for sure... they're in-charge, they're not in a hurry... and they don't care about your business.

All these systems are on different platforms. In fact, they're physically in different data centers. So you can't assume that just because they've put some systems online that they can put LOTW back online.

I can't go deeply into the details about my experience in this area, but I can say this... cyber criminals are smart enough to know what system will cause you the most pain. They have your financial records. They know how much your company earns. They know how much you have in the bank. IF it's ransomware (and we don't know that this is true), then the criminals know how much the ARRL can afford to pay to get the system back. But that said... the FBI (for one) will firmly oppose paying them.

This whole process can last a long long time in a company that lacks the financial ability to negotiate with criminals and Federal agencies.

If this were the membership system, would any of us care? Probably not. So LOTW is a more painful system to target.

But suffice it to say... there will be no ETA provided until the ARRL has a solution to the problem. The fact that they haven't given an ETA is likely evidence that they haven't reached a solution yet.

I'd recommend we all leave it at that... and go back to DXing.

Mike, WA9PIE



On Tue, Jun 11, 2024 at 9:32 AM David Levine via groups.arrl.org <davidnj=[email protected]> wrote:
Mike WA9PIE said ...
This can happen (a) when Federal law enforcement agencies have seized the system and are in-control of when it is turned over to the ARRL or (b) when they have no clue what it's going to take to restore service.
 
My bet is on option a.

 

I'd take that bet with you Mike as option A is a much less likely now we are are approaching the 1 month mark.   As they have already re-enabled other pieces that were supposedly impacted, there wouldn't be any driving need to retain pieces of it. This is probably already a "cold case". 

David - K2DSL



--
Mike Carper, WA9PIE VK4EIE
CEO/HRD Software, LLC
Makers of Ham Radio Deluxe


_._,_._,_