Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,198
- Points
- 113
Who is behind the surprise attack and what exactly was stolen?
The American Amateur Radio League (ARRL) has finally confirmed that the data of some of its employees was stolen in a ransomware attack on May 14 this year, initially described by the organization as a "serious incident."
After discovering the hack, ARRL shut down the affected systems to contain the incident, hired external experts to assess the damage, and began actively cooperating with law enforcement agencies. In early June, the organization reported that its systems were hacked by a "malicious international cyber group" in a " sophisticated network attack."
In privacy breach notices sent to affected individuals, ARRL described the attack as ransomware and stated that an unauthorized third party may have accessed the personal data of affected individuals during the incident.
The affected data may have contained personal information, including names, addresses, and social security numbers. In a statement to the Maine Attorney General's office, the organization claims that the incident affected 150 league employees, and no one else was injured.
Although ARRL found no evidence of the use of stolen information, the organization decided to provide victims with 24 months of free identity monitoring through Kroll as a precautionary measure.
ARRL did not link the attack to a specific group of ransomware, but sources familiar with the situation say that the Embargo group may be involved in the case. This is a fairly recent hacker association, which began its activity just in May of this year. At the moment, only 8 victims are listed on their leaked website, but ARRL was not included in this list.
In the data privacy breach notices, ARRL said it took all reasonable steps to prevent further dissemination or publication of the data, which may also mean paying a ransom to attackers to prevent data leaks.
This incident serves as a reminder that no organization is immune from cyberattacks. It highlights the need for continuous improvement of security measures, training of staff, and a clear plan of action in case of hacking for all companies, regardless of their size and business profile.
Source
The American Amateur Radio League (ARRL) has finally confirmed that the data of some of its employees was stolen in a ransomware attack on May 14 this year, initially described by the organization as a "serious incident."
After discovering the hack, ARRL shut down the affected systems to contain the incident, hired external experts to assess the damage, and began actively cooperating with law enforcement agencies. In early June, the organization reported that its systems were hacked by a "malicious international cyber group" in a " sophisticated network attack."
In privacy breach notices sent to affected individuals, ARRL described the attack as ransomware and stated that an unauthorized third party may have accessed the personal data of affected individuals during the incident.
The affected data may have contained personal information, including names, addresses, and social security numbers. In a statement to the Maine Attorney General's office, the organization claims that the incident affected 150 league employees, and no one else was injured.
Although ARRL found no evidence of the use of stolen information, the organization decided to provide victims with 24 months of free identity monitoring through Kroll as a precautionary measure.
ARRL did not link the attack to a specific group of ransomware, but sources familiar with the situation say that the Embargo group may be involved in the case. This is a fairly recent hacker association, which began its activity just in May of this year. At the moment, only 8 victims are listed on their leaked website, but ARRL was not included in this list.
In the data privacy breach notices, ARRL said it took all reasonable steps to prevent further dissemination or publication of the data, which may also mean paying a ransom to attackers to prevent data leaks.
This incident serves as a reminder that no organization is immune from cyberattacks. It highlights the need for continuous improvement of security measures, training of staff, and a clear plan of action in case of hacking for all companies, regardless of their size and business profile.
Source
