ARRL Hack - First Impressions from a Pentester

Great video. I'm a network security guy who just got into amateur radio...so this seems like the perfect youtube channel for me. haha

Wow, this has been the most informative, logical, and easy-to-understand explanation I have heard to date. Thank you for breaking this down and explaining in a clear and concise manner.

Good coverage Billy! Thanks for the focus. I knew there was a reason I liked your approach to things. Retired Sales Engineer for a top global cybersecurity firm since 2002 to 2021.

I know you mean to say ARRL, but I keep hearing AWRL. Having said that, I do appreciate the message you share with this video.

LoTW is used by many amateurs outside the USA, including the UK and EU, meaning that GDPR applies.
The penalties for data breaches and for not handling them are very steep (a substantial proportion of GLOBAL revenues) and do apply to systems outside the UK or EU that store personal information about UK or EU residents.
Since some radio amateurs are children the requirements are stronger and potential penalties are steeper.
This is something data owners and data processors around the world should be aware of.
Being outside the UK and EU holding or processing data outside those territories gives you no protection.

Why would ARRL have SSN if FCC uses FRNs ? The infrastructure for LOTW was hurting already. This is sad. ARRL needs to get in the 21st century already. We’re almost 1/4 of the way through it .

❤

People are dumb doing this, probably some script kiddies or a sad ham with revenge in his veins!!! Great Video, dude! 73 KG7POU

AWRL?

Freelance pen test???