The American Radio Relay League (ARRL) has been targeted in a cyberattack that resulted in service disruptions and possibly a data breach.
Founded in 1914, the ARRL is the United States’ national association for amateur radio. The non-profit organization’s website says it has 100 full-time and part-time staff members, and roughly 160,000 members.
The organization informed members on Thursday, May 16, that it had been in the process of responding to a “serious incident” involving access to its network and headquarter systems.
The attack led to the disruption of services such as the ARRL Learning Center and the Logbook of the World, a database and repository where users submit electronic logs for amateur radio contacts, and where they can track their progress towards achievements and awards.
In an update shared on Friday, the ARRL told members that its database contains information such as name, address, call sign, and ARRL-specific data such as membership dates and email preferences.
However, the organization clarified that credit card information is not stored on its systems and it does not collect social security numbers.
The ARRL has not specifically said that its member database has been accessed by hackers, but its statement suggests it’s possible.
SecurityWeek has reached out to ARRL to find out if this was a ransomware attack and whether the attackers made any ransom demand. This article will be updated if the organization provides any additional information.
Related: Nissan Data Breach Impacts 53,000 Employees
Related: Santander Data Breach Impacts Customers, Employees
Related: 900k Impacted by Data Breach at Mississippi Healthcare Provider
Related: FBCS Collection Agency Data Breach Impacts 2.7 Million
