Cyberattack targets the New York Gaming Commission

Cybersecurity incidents in the gambling industry become more common by the day, with both online and land-based operators now at the receiving end of criminal intentions. The New York Gaming Commission (NYGC) has confirmed that at least one operator was impacted in a recent attack that occurred on October 17, 2023.

The attack targeted the NYGC’s central operating system that handles the state’s slot parlors which forced Jake 58 casino in Islandia to shutter operations temporarily. The attack targeted the commission’s video lottery gaming central system provided by Everi Holdings, a tech firm that specializes in supplying gambling solutions for the industry.

The regulator has ruled out for the time being that any personal information has been leaked as a result of the attack, although an investigation is still ongoing into the matter. The hack specifically impacted the Video Lottery Terminals (VLT) provided by Everi to state operations. These machines are susceptible to attacks as they are linked together and are remotely programmed to pay out money based on a fixed rate.

Despite the confirmation, the NYGC has remained mostly tight-lipped about the exact nature of the attack and did not provide further details. The commission has not spoken about who the perpetrator may be, which points to the regulator either not fully aware or preferring not to share.

Many of these attacks on the gambling industry in recent months have been tied to a ransom demand, but the NYGC has not mentioned anything of the sort. The attack against the NYGC comes only recently after similar incidents against MGM Resorts and Caesars Entertainment which led to the leak of personal data through hacked loyalty programs and other sensitive company information.

Investors showed resilience in the face of the attack, however, with the companies standing tall. Meanwhile, Everi has not commented on the attack either, but it will be obligated to share details about potentially paying a ransom to criminals as it’s a publicly traded company and it would have to submit a filing reflecting on such an event.

The industry has already responded to the growing threat of cyberattacks with the International Gaming Standards Committee creating a dedicated body that will work to actively address the problem and strengthen industry standards when it comes to cybersecurity and customer protection from such incidents.

Image credit: Unsplash.com