Cyber security and why amateur radio operators need to protect their digital assets

Introduction

Amateur radio is a hobby that involves using radio equipment to communicate with other enthusiasts around the world. Amateur radio operators can exchange messages, share information, provide emergency assistance, and participate in various contests and events. Amateur radio is a fun and rewarding hobby that can also serve as a valuable public service.

Like any other activity that involves technology, amateur radio also faces the threat of cyber-attacks. Cyber security is the practice of protecting computers, networks, devices, and data from unauthorized access, damage, or theft. Cyber security is important for everyone who uses the internet, but it is especially crucial for amateur radio operators, who may have access to sensitive or confidential information, or who may rely on their radio equipment for emergency communication. In this article, we explain why cyber security is so important in the field of amateur radio, and what you can do to protect yourself and the hobby from cyber threats.

Purpose

This document is a guide for amateur radio operators on how to practice cyber security in their hobby. It explains the importance, benefits, and challenges of cyber security for amateurs, and provides tips and recommendations for improving their cyber security awareness and skills.

The document covers various topics related to cyber security, such as data protection, network security, device security, password management, encryption, authentication, backup, recovery, phishing, malware, social engineering, and online safety. It also discusses the legal and ethical aspects of cyber security, such as privacy, consent, copyright, and compliance.

The document aims to help amateurs understand the risks and responsibilities of using the internet and digital technologies in their hobby, and to encourage them to adopt good cyber security practices and habits. The document also highlights the role and contribution of amateurs in enhancing the cyber security of their community and society, especially in times of emergencies and disasters.

Cyber Threats to Amateur Radio

Amateur radio operators may face various types of cyber threats, depending on the nature and scope of their activities. Some of the common cyber threats that amateurs may encounter are:

  • Malware: Malicious software that can infect computers, devices, or networks, and perform harmful actions, such as stealing data, deleting files, encrypting data, spying, or displaying unwanted ads. Malware can be spread through email attachments, downloads, removable media, or compromised websites. Malware can affect the performance, functionality, or security of radio equipment, software, or online services that amateurs use.
  • Phishing: Fraudulent emails or messages that attempt to trick recipients into revealing personal or financial information, such as passwords, bank account details, or credit card numbers. Phishing can also lure victims into clicking on malicious links or attachments, or visiting fake websites that mimic legitimate ones. Phishing can be used to steal identities, money, or access to online accounts or services that amateurs use.
  • Denial-of-service (DoS) attacks: Attacks that aim to disrupt or disable the availability or functionality of a website, server, network, or device, by overwhelming it with excessive or malicious traffic or requests. DoS attacks can prevent amateurs from accessing or using online services, such as email, web hosting, logging, or remote control, that they rely on for their hobby or emergency communication.
  • Man-in-the-middle (MITM) attacks: Attacks that intercept or alter the communication between two parties, such as an amateur and a website, an amateur and another amateur, or an amateur and a repeater. MITM attacks can be used to eavesdrop, modify, or spoof messages, data, or signals, and compromise the confidentiality, integrity, or authenticity of the communication.
  • Rogue access points: Unauthorized or fake wireless networks that pretend to be legitimate ones, and trick users into connecting to them. Rogue access points can be used to monitor, capture, or redirect the traffic of the users, and expose their data or devices to cyber-attacks.

Why Cyber Security Matters for Amateur Radio

Cyber security is important for amateur radio operators for several reasons, such as:

  • Protecting personal information: Amateurs may have personal or financial information stored on their computers, devices, or online accounts, such as their name, address, phone number, email, call sign, license details, bank account, credit card, or PayPal. Cyber-attacks can expose this information to hackers, who can use it for identity theft, fraud, or harassment. Amateurs may also have sensitive or confidential information related to their hobby, such as their location, equipment, contacts, logs, or plans, that they may not want to share with others. Cyber security can help amateurs protect their privacy and security and prevent unauthorized access or disclosure of their information.
  • Preserving hobby functionality: Amateurs may use various types of radio equipment, software, or online services for their hobby, such as radios, antennas, tuners, amplifiers, computers, tablets, smartphones, software-defined radios, digital modes, logging programs, web hosting, email, remote control, or internet linking. Cyber-attacks can damage, disable, or compromise the functionality or performance of these tools, and affect the quality or availability of the communication. Cyber security can help amateurs maintain the reliability and usability of their hobby resources and avoid interruptions or disruptions.
  • Ensuring emergency readiness: Amateurs may provide emergency communication services to their communities, such as during natural disasters, power outages, or civil unrest. Amateurs may also participate in emergency preparedness drills, exercises, or events, such as the Amateur Radio Emergency Service (ARES), the Radio Amateur Civil Emergency Service (RACES), or the National Traffic System (NTS). Cyber-attacks can interfere with or sabotage the emergency communication capabilities or coordination of amateurs and jeopardize the safety or welfare of the people who depend on them. Cyber security can help amateurs ensure the availability and effectiveness of their emergency communication services and fulfill their public service role.
  • Upholding hobby ethics: Amateurs are expected to follow certain rules and regulations, as well as codes of conduct and ethics, that govern their hobby. These include the amateur radio license conditions, the radio frequency spectrum allocation, the international radio regulations, the amateur radio service rules, and the amateur’s code. Cyber-attacks can violate or undermine these rules and codes, and cause harm or annoyance to other amateurs or the public. Cyber security can help amateurs uphold the standards and values of their hobby and respect the rights and interests of others.

How to Improve Cyber Security for Amateur Radio

There are several steps that amateurs can take to improve their cyber security and protect their hobby from cyber threats, such as:

  • Use strong passwords: Amateurs should use strong and unique passwords for their computers, devices, and online accounts, and change them regularly. Strong passwords are long, complex, and random, and do not contain personal or predictable information, such as names, dates, or call signs. Amateurs should also avoid using the same password for multiple accounts or services and use a password manager to store and manage their passwords securely.
  • Install antivirus software: Amateurs should install reputable and updated antivirus software on their computers and devices and scan them regularly for malware. Antivirus software can detect and remove malware and prevent it from infecting or damaging the system or the data. Amateurs should also avoid opening or downloading suspicious or unsolicited email attachments, files, or links, and visit only trusted and secure websites.
  • Enable firewall and encryption: Amateurs should enable firewall and encryption on their computers, devices, and networks, and configure them properly. Firewall can block or filter unwanted or malicious traffic or requests and prevent unauthorized access or intrusion. Encryption can protect the data or communication from being read or modified by others and ensure its confidentiality and integrity. Amateurs should also use secure protocols, such as HTTPS, SSL, or VPN, when accessing or using online services, and avoid using public or unsecured Wi-Fi networks.
  • Backup data and update software: Amateurs should backup their data regularly, and store it in a safe and separate location, such as an external hard drive, a cloud service, or a flash drive. Backup can help amateurs recover their data in case of loss, damage, or theft, and prevent data loss or corruption. Amateurs should also update their software regularly and install the latest patches or fixes. Updates can improve the performance, functionality, or security of the software, and fix any bugs or vulnerabilities that may expose it to cyber-attacks.
  • Educate and inform: Amateurs should educate themselves and others about the importance and best practices of cyber security and stay informed about the latest trends and threats in the cyber world. Amateurs should also report any cyber incidents or suspicious activities to the relevant authorities or organizations, such as the Internet Crime Complaint Centre (IC3), the Federal Communications Commission (FCC), or the American Radio Relay League (ARRL), and share their experiences or lessons learned with other amateurs or the public.

Recent Cyber Security Threats

In recent years, the amateur radio community has faced several cyber security threats that have affected their hobby and public service. Some of these threats are:

  • Jamming and interference: malicious actors may intentionally or unintentionally interfere with amateur radio frequencies, causing disruption, noise, or distortion of signals. Jamming can affect the quality and reliability of communication, especially in emergency situations.
  • Hacking and unauthorized access: hackers may target amateur radio equipment, software, or networks, and try to gain unauthorized access, steal data, modify settings, install malware, or cause damage. Hacking can compromise the security and privacy of amateurs, as well as the functionality and integrity of their hobby.
  • Misinformation and propaganda: some actors may use amateur radio to spread false or misleading information, propaganda, or hate speech, either for ideological, political, or personal reasons. Misinformation can undermine the credibility and reputation of the amateur radio community, as well as the public trust and safety.
  • Legislation and regulation: some governments or authorities may impose restrictive or unfavourable laws or regulations on amateur radio, such as licensing fees, frequency allocation, power limits, or encryption bans. Legislation and regulation can limit the rights and freedoms of amateurs, as well as their ability to pursue their hobby and public service.

These cyber security threats pose significant challenges and risks for the amateur radio community, and require awareness, vigilance, and action from amateurs to prevent, detect, and respond to them.

ARRL Sophisticated Network Attack

On or around May 12, 2024, ARRL was the victim of a sophisticated network attack by a malicious international cyber group. ARRL immediately involved the FBI and engaged with third party experts to investigate. This serious incident was extensive and categorized by the FBI as “unique,” compromising network devices, servers, cloud-based systems, and PCs.

ARRL management quickly established an incident response team. This has led to an extensive effort to contain and remediate the networks, restore servers, and staff are beginning the testing of applications and interfaces to ensure proper operation.

On July 9 ARRL reported:

  • Logbook of The World® (LoTW®) returned to service on Monday, July 1, 2024. As anticipated, there was a significant rise in use to catch up on processing logs following the outage. It took 4 days for normal processing times to return.
  • The ARRL Radiosport Department has resumed processing applications for most awards. The systems for Worked All States (WAS), VUCC, and issuing credits for CQ WAZ and CQ WPX awards have returned to service. These award applications are being processed on a “first in/first out” basis.
  • WAS applications submitted through July 4 and VUCC applications submitted through July 1 have been processed. CQ awards applications are processed by CQ and not ARRL. While we can process these ARRL awards and update records, the ability to print and deliver certificates, endorsements, and other material has not yet returned.
  • The online DXCC® application is unavailable at this time and DXCC awards are not able to be processed. Work continues to return the DXCC systems to service. All DXCC data is secure.

Conclusion

Cyber security is an essential aspect of amateur radio, and amateurs should take it seriously and responsibly. Cyber security can help amateurs protect their personal information, preserve their hobby functionality, ensure their emergency readiness, and uphold their hobby ethics, and prevent cyber threats from harming or disrupting their hobby or their public service.

By following the cyber security tips and recommendations, Amateurs can enjoy their hobby safely and securely, and contribute to the advancement and welfare of the amateur radio community and the society.