There's a classic line (one out of many) in the movie Casino by DeNiro's character Ace Rothstein:
"Since the players are looking to beat the casino, the dealers are watching the players. The box men are watching the dealers. The floor men are watching the box men. The pit bosses are watching the floor men. The shift bosses are watching the pit bosses. The casino manager is watching the shift bosses. I'm watching the casino manager. And the eye-in-the-sky is watching us all.”
These days, cyber criminals have surfaced to the top of the mix, looking for exploitation opportunities to take everyone from the house on down. Unfortunately, these entities have no watchers of their own—and for now, they have the upper hand. This is evident in the growing trend of Casino cyber heists to hit the headlines—stuff made for Hollywood, but nonetheless extracted from daily news.
The latest casino to fall victim is The Four Winds Casino and Resort, who was first alerted of suspicious activities by a credit card issuer that tracked fraudulent charges to its chain of gaming outlets. Further investigation revealed that cyber thieves had stolen cardholder data—including addresses and CVV numbers—through a criminal attack on The Four Winds payment card network. The casino was alerted to the data breach on October 2nd, and issued notifications to its customers 2 days ago.
Casinos are essentially banks, which of course makes them prime targets for cyber attacks. This was not the first attack on a casino/gaming institution, and certainly won't be the last. The Sands, FireKeepers, and The Hard Rock have all been recent victims of cyber crime. Given the high volume and sensitivity of data transmitted through the wires of today's gaming institutions, one hopes that the best cyber security mechanisms are also in play. ScriptRock can validate that gaming environments are free from critical vulnerabilities, and that systems are free from security gaps that could result in a data breach. Give a test drive today, on us
The CSTAR score is a single, easy-to-understand value representing an organization's aptitude in the areas of compliance, integrity, and security.
Improving the accuracy of cyber risk assessment has the same beneficial effects as in other branches of insurance. First, premiums more closely reflect the risk a policy holder presents to the insurer, making the system more fair. Second, attributing risk factors to elements within the policy holders control like IT systems, rather than immutable factors like industry sector, provides a path to improving the risk profile. Third, companies that might have appeared too risky to acquire cyber insurance under models based on external data will be able to demonstrate that they present a lower risk than their peers.
Do you want to see this in action?
How CSTAR Works What's In the Website Risk Grader? Understanding Risk in the 21st Century
So how do events like 000webhost's massive data breach involving free web hosting providing 000webhost transpire? In a word, negligence. Gross negligence, to be precise.
Read Blog >
Access to free vulnerability assessment should be a basic right in a world where computing is integral to social and economic life. For our part, we're offering our full product, including vulnerability assessment, free forever for a user's first ten machines.
Read Blog >
Even today, the risk of data breaches in particular threaten to hamper business innovation. So what is cyber risk, and what can be done about it?
Read Blog >