[BreachExchange] Casino in California investigating whether customers’ private data breached following cyber-attack on its system

Destry Winant destry at riskbasedsecurity.com
Tue Oct 6 10:30:27 EDT 2020


https://www.theindianwire.com/gambling-casinos/casino-in-california-investigating-whether-customers-private-data-breached-following-cyber-attack-on-its-system-293671/

In a series of incidents of cyber-attacks and data breaches that is on
the rise this season another such incident was reported in California.

The Cache Creek Casino in California suffered a massive cyber attack
after which it was forced to close down its operations on September
20, 2020.

However, it is not clear whether any customer or employee private data
was exposed due to the cyber attack.

Yocha Dehe Wintun Nation, operator of the casino, explained that, “We
are working closely with independent experts who regularly investigate
incidents of this type to determine any risks to data security.
Attacks like these are significant and can take weeks to research
thoroughly. If it is determined the personal information of guests or
employees was exposed, we will notify affected individuals in writing.
To further reassure our community, we repeat our commitment to
continued full pay and benefits for our employees during this time,
whether they have been asked to report for their regular shifts or
not”, reported CalvinAyre.

Earlier Cache Creek Casino stated that sudden casino shutdown is due
to systems infrastructure failure; it later however, admitted that
there has been an external computer hack.

Later Cache Creek stated that, “The FBI has gotten involved in the
investigation following rumors that this could have been a ransomware
attack. However, the casino has yet to confirm or deny those rumors.
It would only offer that it will ‘remain vigilant’ to protect its
operations and that it is working to improve its digital security
measures”, reported CalvinAyre.

The casino is still closed, and a re-opening date is still not known.


More information about the BreachExchange mailing list