In recovering from recent cyberattacks on October 8, the Internet Archive has resumed the Wayback Machine (starting October 13) and Archive-It (October 17), and as of today (October 21), has begun offering provisional availability of archive.org in a read-only manner.

Features like uploading, borrowing, reviewing items, interlibrary loan, and other services are not yet available.

Please note that these services will have limited availability as we continue maintenance.

Hackers disclosed archive.org email and encrypted passwords to a transparency website, and also sent emails to patrons by exploiting a 3rd party helpdesk system.

  • @[email protected]
    link
    fedilink
    English
    12
    edit-2
    1 month ago

    Yeah, it’s a weird blunder to not have rotated keys after being breached. I’m not familiar with how the org works but it sounds like they don’t have a dedicated security guy, which is weird for something of that size.

    • osaerisxero
      link
      fedilink
      51 month ago

      Is internet archive that big? i would imagine you could run it successfully with a dozen or so people tbh

      • @[email protected]
        link
        fedilink
        English
        20
        edit-2
        1 month ago

        It’s big. According to Wikipedia they gained 30.5 million dollars in 2022 and have almost 170 employees - not mentioning probably hundreds of other volunteers. It sounds simple in concept but storing petabytes of data safely and maintaining complex software and hardware for it is impressive. That’s why there aren’t really any alternatives to it.

        They’re also much bigger than just the wayback machine, they have multiple projects like OpenLibrary which is a goodreads alternative and scans books to read online. The IA is also under constant legal fire for archiving copyrighted materials so I bet they spent millions of dollars on that alone.

    • Nomecks
      link
      fedilink
      English
      4
      edit-2
      1 month ago

      It isn’t. Nonprofits don’t have a ton of money, and implementing strong security controls takes money and time away from other activities. Small businesses have a lot of trouble for the same reason.