Back but not quite complete
It’s nice to be up and running again. However, perhaps worth checking your bookings, one of mine is missing.
Comments
-
I guess there's still some work to be done Steve.
Don't forget to change your password. Everybody.
JK
0 -
Looks like that is the case. Just checked again and it has now appeared. Just need a valid membership card now. No doubt that will be updated in due course. Password changed for a super secure Apple generated one. Just as well the keychain remembers it, as I stand no chance.😂
0 -
Easy enough to change passwords. All done here.
0 -
What's clever is that, having changed the password to an Apple one on my iPad, I checked the iPhone and that has also been updated to the same cryptic one👍
well done to everyone on the recovery, definitely a hard and stressful time for all concerned....I used to be responsible for the IT component (Disaster Recovery) of the company's Business Continuity Plan...back then the potential risks were fire, flood, even war....Cyber Attacks hadn't been invented.
time for the club and its Auditors to have a long, very hard, look at its IT components and fully understand why and how this event occurred and then get some serious defences in place.
much chat on the CAMC FB page from folk who've been 'in the trade' and many have not been totally surprised by this given the (seemingly) archaic nature of the Clubs IT set up...
Lets hope we get plenty of learning from this (it could have been much worse....) and some serious desire from the top to ensure the club moves forward with modern best practice to the fore....
well done those at the coal face, a free night or two on a club site?👍
1 -
“What's clever is that, having changed the password to an Apple one on my iPad, I checked the iPhone and that has also been updated to the same cryptic one👍”
Yes, that’s what Apple always does if your devices are signed into iCloud 👍
0 -
Thank you for all your support and patience while we’ve been working hard to restore the website, App and remaining Club systems.
Almost all pages on the website are now live and the App will follow shortly.
The forensic investigation is ongoing and we will update members with relevant information when it becomes available.
We extend our sincere thanks to the Club’s IT team and our expert partners who have worked day and night to bring the Club’s systems back online in a safe and secure manner.
Please accept our apologies for the inconvenience this situation may have caused.
1 -
Of course no one knows how good or bad or archaic the IT systems are with the club, as I posted on another thread far more 'illustrious' companies and organizations than our club have been affected, Samsung, Southend on Sea council, various law firms, hospitals, and many hundreds of UK, and thousand of global organizations, affected, including one UK based I assume had a high rating for these attacks
One observation on this; CTS appear from their website to be ISO 27001 certified.
As such this should serve as a sober reminder that whilst ISO certification does prove a business has mature cyber risk management processes in place, it is not a gold standard of impenetrability.As to when these cyber attacks started, the first one was in 1997/98 and I recall in preparation for the millennium bug we had systems in place to counter cyber attacks even then although they were far simpler then of course.
But as others have said well done to the club and its staff for handling this very well.
0 -
Information here for you Arch….
0 -
How long did it take for their email to arrive? I've tried to change my password, but am still waiting for their email to arrive to be able to do so, and that's nearly an hour ago now......
Also, the one and only booking I made for March, to use the free voucher, isn't showing. I'm told I have no upcoming bookings....
But apart from that all is well
0 -
Cyberattacks are common place now and as systems increase their defence security so does the software to attack increase their capabilities to gain access. All it takes is one person on a LAN or WAN to open a malicious link in an email loaded with malware to open the door to it.
13 days downtime online, may have been an inconvenience for a few members but nowhere near the loss in revenue that the club will have suffered. It is not the clubs fault that this has happened and I cannot understand why some members feel ‘they’ are entitled to some free recompense in lieu.
0 -
As long as you know your current password you don’t need to request a reset email. Go to your profile, select contact and login details, then edit password.
There is clearly still an issue with the my bookings page. I have several bookings, there has always been just one missing but a different one each time.
1 -
SteveL wrote: As long as you know your current password you don’t need to request a reset email. Go to your profile, select contact and login details, then edit password.
There is clearly still an issue with the my bookings page. I have several bookings, there has always been just one missing but a different one each time.
Thanks Steve, I didn't realise you could change it there. All I saw was the bit below the log-in part, which says "Reset my password", so clicked on that. I've changed it now.
Also checked the booking again, but it still tellls me I have no upcoming bookings. I can see the 1 previous booking from Dec 2022 though, so that bit is correct.
Edited to say that this is the 3rd time of trying to post this reply. The whole reply box disappeared altogether, luckily I'd copied the text beforehand, didn't quite trust the website just yet
2nd edit: I'd included SteveL's reply as a quote, but that hasn't appeared with my post, so copied and pasted his post instead as an edit.
0 -
That's how I read it, and I would support that view. The disruption to the membership has been minimal really, especially at this time of year. We've all had to wait to be able to book so availability will be the same.
Had this happened in the spring, then things might be very different
0 -
It took over 15 mins for the email to arrive, and by that time I had changed my password by editing it in My Profile as suggested by SteveL. Thanks for the info.
0 -
"I understood YT’s post to mean free nights for those who had worked around the clock to get the site back up."
Yes, I meant the CAMC staff...would be nice if they were rewarded...above and beyond etc.
0 -
I agree yt, but lets include the onsite staff that are working this winter that have persevered through all this. It's quite stressful working blind especially on a busy weekend. Hats off to all those involved in getting things back on track and those helping our members enjoy their stays onsite.
JK
3 -
Checked mine and I have a booking in March missing. Oddly it's the one I booked two nights for and was going to use the free night voucher.
0 -
Latest update…
We’ve made good progress in a very controlled and safe manner to restore our website. We are expecting the app to be live soon. Most of our administrative systems are working fully, as are our secure payment gateways. You will see further improvements to member services over the coming days.
Working closely with our technical experts and their cyber security team, we have received a positive update on the investigation into the incident. While investigations continue, they have informed the Club that there is no evidence to suggest that any member data has been stolen.
We extend our sincere thanks to the Club’s IT team and our expert partners who are continuing to work hard to restore the remainder of our club systems. This work will continue over the coming days and over the weekend.
We will of course update you of any progress.
You are now able to book all of your planned holidays for this year on our UK campsite network, at one of our European campsites and even further afield on one of World Wide tours.1 -
Straight away Ina. I am using an iPad with Safari. I made sure things had changed on my iPhone as well. Only have the one booking, that is showing up fine.
0 -
From Rowena’s post……..
”Working closely with our technical experts and their cyber security team, we have received a positive update on the investigation into the incident. While investigations continue, they have informed the Club that there is no evidence to suggest that any member data has been stolen.”
This is excellent news Ro, and no doubts what most folks will be pleased to hear. Thank you.👍
0 -
My thoughts have been with the working site staff JK. Very well done to all to keep things rolling along. Hope any hassle from visitors hasn’t been too stressful. No doubt team work across the board.
0 -
Whilst one hopes a business doesn't get into this position, there are (should be) processes in place to ensure it continues to operate basic functions....take orders, deliver them, get paid etc...even if this means going back to pen and paper and doing system updating retrospectively once all is recovered.
these back up processes need to be rehearsed periodically (usually set by auditors) so that staff can switch over reasonably quickly should the need arise..
...it's not unlike why we all did 'fire practice' every so often.
0 -
We do regularly practise fallback procedures yt but this is the first experience an "outage" of this length since the introduction of the new system was introduced 15 months ago so a big learning curve I guess. Speaking to some colleagues yesterday who are working through it, it hasn't gone too badly.
Fortunately for me I'm still sat feet up in the sunshine (23 degrees today
)JK
1 -
Still things not yet up and running. Went to my profile today to check a few things - cant get onto Communication Preferences - just a message to say maintenance being done.
My subs were due to be taken 1st Feb, that hasnt come out of the bank yet either.
0
