In recovering from recent cyberattacks on October 8, the Internet Archive has resumed the Wayback Machine (starting October 13) and Archive-It (October 17), and as of today (October 21), has begun offering provisional availability of archive.org in a read-only manner.

Features like uploading, borrowing, reviewing items, interlibrary loan, and other services are not yet available.

Please note that these services will have limited availability as we continue maintenance.

Hackers disclosed archive.org email and encrypted passwords to a transparency website, and also sent emails to patrons by exploiting a 3rd party helpdesk system.

  • TheTechnician27@lemmy.world
    link
    fedilink
    English
    arrow-up
    20
    ·
    11 days ago

    To be clear, the email thing was 100% the IA’s fault, much as I love their work. BleepingComputer warned them something like two weeks in advance.

    • simple@lemm.ee
      link
      fedilink
      English
      arrow-up
      10
      ·
      edit-2
      11 days ago

      Yeah, it’s a weird blunder to not have rotated keys after being breached. I’m not familiar with how the org works but it sounds like they don’t have a dedicated security guy, which is weird for something of that size.

        • simple@lemm.ee
          link
          fedilink
          English
          arrow-up
          17
          ·
          edit-2
          11 days ago

          It’s big. According to Wikipedia they gained 30.5 million dollars in 2022 and have almost 170 employees - not mentioning probably hundreds of other volunteers. It sounds simple in concept but storing petabytes of data safely and maintaining complex software and hardware for it is impressive. That’s why there aren’t really any alternatives to it.

          They’re also much bigger than just the wayback machine, they have multiple projects like OpenLibrary which is a goodreads alternative and scans books to read online. The IA is also under constant legal fire for archiving copyrighted materials so I bet they spent millions of dollars on that alone.

      • Nomecks@lemmy.ca
        link
        fedilink
        English
        arrow-up
        4
        ·
        edit-2
        11 days ago

        It isn’t. Nonprofits don’t have a ton of money, and implementing strong security controls takes money and time away from other activities. Small businesses have a lot of trouble for the same reason.