back to article Major IT outage at Europe's largest caravan and RV club makes for not-so-happy campers

The UK's Caravan and Motorhome Club (CAMC) is battling a suspected cyberattack with members reporting widespread IT outages for the past five days. The company, which describes itself as "Europe's biggest touring community, helping caravanners, motorhomers and campers access over 3,000 stunning locations in the UK and Europe …

  1. Dan 55 Silver badge

    Should have gone Dutch

    Dutch legend has been running his campsite since 1986 using an Atari ST

    Nobody's getting past his custom software and air-gaped security.

  2. Doctor Syntax Silver badge

    "the only way to have people's understanding and patience is to keep them informed."

    This is not standard practice. Standard practice is simply to thank them for their patience irrespective of the fact that they are actually fuming with being kept in the dark.

  3. Doctor Syntax Silver badge
    Coat

    "the dreaded C word"

    Caravan?

    1. abend0c4 Silver badge

      "Communal"

      As in latrines, shower blocks, laundries, swimming and food preparation.

      Or, equally, the specific, domestically familiar brands of Cornflakes, corned beef and corn plasters which seem the caravans' principal contents and main cause for continuance.

    2. Anonymous Coward
      Anonymous Coward

      yep if only this alleged cyber attack would keep the buggers of the roads of Cornwall!

    3. Anonymous Coward
      Anonymous Coward

      Or worse, "the P Word".

    4. Plest Silver badge
      Pint

      Here's to caravanning!

      Bought one in 2010, 10 years of cheap carvan holidays and long weekends away, we paid off our mortgage in 9 years! Sold it and only lost about 20% value and now we're enjoying being mortgage free for the last 5 years. While I'm not longer one of Clarkson's Most Hated I have nothing but praise for caravanning as it allowed us enjoy a very financially secure life from now on.

  4. t245t Silver badge
    Facepalm

    What does CAMC run on

    Netblock owner -------------------------------- IP address --- OS ----- Web server -------- Last seen

    FTIP003367322 The Caravan Club Ltd .. 62.6.174.68 .. Linux .. Microsoft-IIS/6.0 .. 14-Apr-2014

    1. Bendacious

      Re: What does CAMC run on

      I had a lot of exposure to the CC as a child which shaped me as the hotel-loving man I became. I'm not at all surprised their websites are a shit-show. They are bizarrely securing thecaravanclub.com and thecaravanclub.co.uk with an SSL certificate for caravanclub.co.uk, which is not going to work. What really boggles my mind is that the main site (caravanclub.co.uk) only accepts HTTP/1.0 connections and thecaravanclub.com only accepts HTTP/1.1. HTTP/1.0 was superseded in 1997. There are some website performance problems where you could theoretically get better throughput by downgrading the HTTP level but only if you take the first available fix regardless of the side-effects. They can't be running a website on IIS6.0, surely. Please tell me that's not true. Self-inflicted wounds anyone?

      1. ldo

        Re: Sharing TLS Certs

        Couldn’t access either thecaravanclub.com or caravanclub.com, but was able to connect to caravanclub.co.uk and thecaravanclub.co.uk. The former has a valid-looking cert, while the latter is trying to (mis)use one for *.fast.net.uk.

        And that valid cert is an EV one, which costs some money. They’re not a bank, they don’t need the deluxe model of certs. So why don’t they just get Let’s Encrypt certs for all their domains, for free? And set up automatic renewals on their server—no muss, no fuss.

        1. chappers

          Re: Sharing TLS Certs

          well their ssl test is weak

          https://www.ssllabs.com/ssltest/analyze.html?d=caravanclub.co.uk

      2. KarMann Silver badge
        Holmes

        Re: What does CAMC run on

        Do note that bit at the end with 'Last seen: 14-Apr-2014'. It hadn't been checked in rather a while.

    2. Dan 55 Silver badge

      Re: What does CAMC run on

      IIS doesn't run on Linux, so either it's running on IIS/Windows or it's running on something/Linux. Hopefully the second.

      1. John Riddoch

        Re: What does CAMC run on

        Quite possibly it's running IIS behind a Linux based load balancer/reverse proxy. That would report Linux as the OS running on the IP but IIS headers returned via HTTP(S).

      2. katrinab Silver badge
        Meh

        Re: What does CAMC run on

        One of my sites reports as being IIS on FreeBSD.

        Probably because the reverse proxy is HA Proxy in FreeBSD, and it has IIS on Windows Server 2022 running behind it.

  5. Anonymous Coward
    Anonymous Coward

    Blissful silence

    This explains the week or so I've had without getting an email about "special" offers, that are never available for the advertised campsite on the days you want.

    Yes, I could unsubscribe, but they do enlighten one about new areas to consider visiting.

    1. Anonymous Coward
      Anonymous Coward

      Re: Blissful silence

      Their email says they immediately took all systems offline on Saturday 20th... Yet I was still receiving marketry crap from them on both Sat 20th and Sun 21st

      They also say "It is always best practice to regularly change your passwords..." That hasn't been best practice for 8-9 years*

      ref: https://www.ncsc.gov.uk/blog-post/problems-forcing-regular-password-expiry

      *I concede that changing other website passwords if you are foolish enough to re-use passwords after a compromise is very sensible.

      1. GlenP Silver badge

        Re: Blissful silence

        That hasn't been best practice for 8-9 years

        I've just been completing various audit documents (it's that time of year for us and we have multiple companies), all the auditors still expect password changes to be enforced despite it no longer being recommended.

  6. Ian Johnston Silver badge

    Amongst the suspects: every single non-caravan-or-motorhome driver in Britain.

    1. chappers
      Coat

      jeremy clarkson dunnit....

      1. CrazyOldCatMan Silver badge

        jeremy clarkson dunnit....

        Nah - that would imply some technical capability or competence..

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like