Mexican online casino leaks user data after wrong password
Strendus, one of Mexico’s leading online casinos, is the latest victim of a data breach. The breach was allegedly caused by someone at the company forgetting to set a password on the server.
Online gaming platform Strendus, owned by Mexican conglomerate Logrand Entertainment Group, has reportedly made 85GB of server authentication logs available to the public. It contains hundreds of thousands of entries containing players' private information.
The exposed data discovered by the "Cybernews" research team includes the user's real identity, home address, occupation, deposit history, etc. To illustrate the seriousness of this breach, data from another online casino, MustangMoney, was also exposed.
Cybernews hired a team of white hat hackers to scour the internet for such issues and highlighted the potential risks associated with the information disclosed. It was highlighted that careless oversight could be used for fraudulent activity, identity theft or phishing attempts. It can even serve as a valuable resource for carefully crafted targeted cyberattacks.
Long term contact
Researchers discovered indicators of compromise (IoCs) in server log entries that indicate a security incident or vulnerability. The lack of regular monitoring of these indicators further increases user risk. Although research suggests data may have been stolen, there is no clear evidence that anything was stolen.
The delay in resolving the issue since Cybernews first discovered it in April is particularly concerning. However, Strendus did not take action to address the issue until October. The extended disclosure period highlights the potential threats faced by users whose personal information has been exposed for months.
Online casinos store large amounts of customer data to comply with gambling laws and Know Your Customer (KYC) regulations. These regulations are designed to verify the identity of users to prevent fraud, money laundering and other illegal activities. The latest breach raises questions about the effectiveness of the security measures implemented by these platforms.
The company's job is to prioritize and improve its security protocols to protect users from harm. There seems to be no sign that Strendus took the error seriously.
Cyber attacks are on the rise
Recent breaches targeting major companies such as MGM Resorts International, Caesars Entertainment and (possibly) Marina Bay Sands highlight a worrying rise in cyberattacks. These high-profile incidents highlight the growing threat posed by cybercriminals.
As countries increasingly join forces to combat these attacks, hackers have become adept at evolving their tactics and tools, posing a serious challenge to cybersecurity efforts. An attack on MGM Resorts exposed the personal information of more than 10 million guests, highlighting the seriousness of breaches in the hospitality industry.
Likewise, the breaches at Caesars Entertainment and Marina Bay Sands highlight the vulnerability of even the most well-known companies to sophisticated cyber threats. As countries work together to improve cybersecurity measures, the dynamic nature of cyber threats requires continued innovation to stay ahead of increasingly smart and adaptable hackers. This also includes ensuring that they do not have free and unrestricted access to company equipment.
Read also:
- Football 101: What is relegation in football?
- Las Vegas bus drivers threaten strike, which could disrupt Super Bowl week
- St. Petersburg, Va. Casino odds increase after key senators approve
- NFL and media attention could lead to further legalization of sports betting
Source: www.casino.org
