Garmin server issues

[adrien]

Ride this morning didn't sync, so I checked online.

Servers apparently are all down and there's speculation that it's a ransom attack.

https://news.ycombinator.com/item?id=23926289

Makes me realize I'd love the option to just update to the phone directly, rather than relying on the servers. I'm guessing when they fix this there'll be a brownout on Strava, too.

[kppolich]

First World Problem.

[Bostic]

Saw it on my Sysadmin forums I frequent.

[unterhausen]

can't ride, because if it doesn't upload, the ride didn't happen.


I was going to zwift today anyway, that is unaffected.

[retropean]

I think the ransomware attack has been confirmed.

https://www.zdnet.com/article/garmin...omware-attack/

If you sync via a USB, open your garmin's folder that pops up when you connect it, go to the folder /data/, find your activity's .fit file (sort by modified date), and upload it manually to Strava (upload->file).

[trener1]

Yeah you can upload to Strava no problem.
I'll also say that dismissing this as a first world problem is kind of missing the point.
If they can hold a tech company hostage, they can just as easily shut down your bank, or your cities water supply, or the Hospital down the road.
The way I see it it's actually a pretty serious thing, even though didn't affect my ride.

[kppolich]

Politely, any public website can be scraped and attacked which can bring them down. The servers going down and being unreachable is a better scenario than them staying up while under attack and being compromised while people snoop around and grab data. This literally happens every day, and if a company doesn't have the correct security in place to mitigate and deflect these attacks these things happen.

Garmin in particular, with various API's in play is probably more exposed than others due to the sheer amount of Integrations they have with 3rd parties. Strava, for example is cutting off some of those 3rd parties and getting rid of their open API will be protected against at least some of this.

The security of anything is only as strong as the person with the key. More doors in and out mean more keys floating around.

The issue at hand is that a $200 cycling computer that not syncing via bluetooth to your smart phone , via wifi to your home network is the definition of a first word problem.

You can plug your garmin into the computer, and grab the .fit file and manually upload it to strava in 60 seconds to see your results if it is indeed that high of a priority.

[unterhausen]

I figure garmin is still running a pirated version of winnt Server 2001, and that's why they were vulnerable.

[C40_guy]

Quote:

Originally Posted by kppolich

The servers going down and being unreachable is a better scenario than them staying up while under attack and being compromised while people snoop around and grab data. This literally happens every day, and if a company doesn't have the correct security in place to mitigate and deflect these attacks these things happen.

Shoot, I get reports on a weekly basis of an attack on my home router.

Frankly, I can only imagine how many home networks are left wide open...

[phoenix]

Ah, this is why my ride and walk didn’t upload this morning. Technology

[FlashUNC]

Totally sounds like ransomware. Awkward.

[Elefantino]

Definitely ransomware and they're going to be down for a while.

[DfCas]

That didn't answer my Tacx support email anyway. Good riddance.

[gbcoupe]

I think it's been 4 years since I've uploaded my Garmin 200. Does what I need it to do. Don't need print-outs to tell me I'm not nearly as fast as I used to be.

[unterhausen]

I never used to upload my rides, but now that the 830 does it automagically, I find it useful. Going to be annoying until they fix this.