In March 2020 two Las Vegas casinos suspended slots operations because of malware
A DDoS attack occurs when multiple systems flood the resources of a targeted system. It is often the result of multiple compromised systems and the attack usually originates from many different sources rather than a single source. The business was a casino. The casino had a fish tank in their lobby that was connected to their corporate network - not just any fish tank but a high-tech one that featured Internet connectivity. It was the internet connectivity through the thermometer that enabled hackers to successfully breach the casino. LAPWAI - On Thursday, October 8, 2020 the Clearwater River Casino & Lodge and the It’se Ye-Ye Casino announced an immediate business closure caused by a major computer systems disruption that impacted both facilities. A team of experts was immediately engaged to determine the cause and also resolve the issue. Las week, the company confirmed that malicious third parties had launched a cyber-attack on Cache Creek’s servers, and the casino responded by opening an investigation. Speaking to local Sacramento media, Yocha Dehe Wintun Nation tribal, owners of the property, confirmed that there had been a cyberattack. LAPWAI — An 'external cyber-attack' was the cause of the computer problems that have caused the Nez Perce Tribe's two casino to be closed for more than a week.
On September 20, Sacramento, Northern California’s Cache Creek Casino Resort announced it would shut down temporarily and began a probe into what it called “a systems infrastructure failure”. Las week, the company confirmed that malicious third parties had launched a cyber-attack on Cache Creek’s servers, and the casino responded by opening an investigation.
Speaking to local Sacramento media, Yocha Dehe Wintun Nation tribal, owners of the property, confirmed that there had been a cyberattack. In a statement to the media, Yocha representatives reassured that the privacy of guests and employees was the highest priority, adding: “We are working closely with independent experts who regularly investigate incidents of this type to determine any risks to data security. Attacks like these are significant and can take weeks to research thoroughly.”
As the investigation continues, Cache Creek Casino already has an action plan. In the event that the attack has breached guests and employees’ personal data, affected parties would receive a notification in writing. The casino took the opportunity to address its employees and alleviate their concerns. A Cache Creek Casino rep. responded by saying that all employees would receive their full pay and benefits. That is regardless of whether they have been called to work or have to wait out for the investigation to wrap up.
Ransomware Attack Suspected
According to the media Sacramento Bee, an anonymous source shared that the FBI is on the case. The Feds are reportedly investigating a ransomware attack. That type of attack holds an informational database “hostage”. Hackers promise to return access to hijacked information once payment is made.
Cache Creek Casino has refused to comment on the authenticity of this statement. A spokesperson has confirmed, though, that the casino would need to remain closed until changes had been made. Specifically, Cache Creek Casino will fortify its infrastructure before reopening for business. There is no reopening date announced for the Cache Creek casino.
This is not the first property to have dealt with cyberattacks in the gaming industry. In February and March 2020, two Las Vegas properties had to suspend operations on their slot gaming floor because of malware. The attack happened during opening hours, prompting an uproar at the Four Queens Hotel and Casino and Binion’s Casino in Las Vegas. The casinos were out of service for almost a week.
Ransomware is becoming an increasingly serious problem in the casino space. Hackers are able to encrypt entire systems and hold them hostage until payment. However, there is no guarantee that once a payment completes the hackers would restore access.
According to cyber security experts, it is best not to cave in to hackers’demands, but rather inform authorities promptly. Cache Creek Casino added: “We will be stronger from this, and we will remain vigilant in protecting our operation from these network predators. We are undaunted in our commitment to the security of our organization and the future of our business.”
Ongoing issues
The Cache Creek Casino Resort in Northern California remains closed because of a cyber attack. The incident, which was less than two weeks ago, is currently being under investigation.
The casino confirmed on Wednesday that there was a “systems infrastructure failure” due to the external attack. The casino has been closed since September 20 as the property looks to strengthen its internal security. There is no reopening date set, but the casino plans to announce one in the near future.
Cache Creek Casino Cyber Attack
Attacks like these are significant and can take weeks to research thoroughly.”
Casino owner Yocha Dehe Wintun Nation said in a statement: “We are working closely with independent experts who regularly investigate incidents of this type to determine any risks to data security. Attacks like these are significant and can take weeks to research thoroughly.”
The casino owner went on to state that if the personal info of any workers or guests has been exposed as a result of the attack, the affected individuals will be contacted in writing. With the ongoing closure, ownership is committed to fully paying its staff and continuing their benefits.
A learning experience
The Sacramento Bee cited unnamed sources that claim the FBI is investigating this incident and trying to determine if it was a ransomware attack. The thought is that Cache Creek’s info and network is being held hostage in exchange for a ransom payment.
The casino company noted how these types of attacks have become more and more common in recent years, but underlined that the casino will come back stronger from this experience. The statement said: “We are undaunted in our commitment to the security of our organization and the future of our business.”
Cache Creek Resort Casino
This is the latest setback for one of Northern California’s biggest casino resorts. It shut its doors for about two months during the pandemic, reopening on June 6 with extensive health and safety protocols in place.
Other casinos subject to attacks
There have been a number of issues involving cyber attacks at Las Vegas casinos recently.
Cache Creek Casino Cyber Attack
At the start of the year, the Four Queens Hotel & Casino and Binion’s Gambling Hall in downtown Las Vegas had to close down their slot machines after being victimized by suspected ransomware attacks.
MGM Resorts International had a large data breach in 2019, with the personal information of more than 142 million hotel guests reportedly falling into the possession of hackers. The records were supposedly accessed after the hacker broke into DataViper servers.
Cache Creek Casino Computer Hack
Finally, SBTech had to set aside $30m before its recent merger with DraftKings because of an apparent cyber attack that caused outages at more than 50 global online gambling platforms.