{"id":2116,"date":"2024-08-02T21:43:58","date_gmt":"2024-08-02T21:43:58","guid":{"rendered":"http:\/\/stakery.io\/?p=2116"},"modified":"2024-08-21T14:23:02","modified_gmt":"2024-08-21T14:23:02","slug":"playnow-in-credential-stuffing-breach-change-your-passwords-warns-bclc","status":"publish","type":"post","link":"http:\/\/stakery.io\/index.php\/2024\/08\/02\/playnow-in-credential-stuffing-breach-change-your-passwords-warns-bclc\/","title":{"rendered":"PlayNow in Credential Stuffing Breach: \u2018Change Your Passwords,\u2019 Warns BCLC"},"content":{"rendered":"

The British Columbia Lottery Corp<\/a>. (BCLC) is asking users of its PlayNow online gambling platform to change their passwords. That\u2019s after a high volume of credential-stuffing attacks was detected on the platform.<\/p>\n

\"Play
Don\u2019t play right now. Change your password first, and for heaven\u2019s sake, don\u2019t use the same password for multiple accounts, warns the BCLC. (Image: BCLC)<\/figcaption><\/figure>\n

Credential stuffing is where a cybercriminal acquires log-in credentials that have typically been stolen during large-scale corporate data breaches and then sold on the Dark Web. Working on the premise that people often use the same user ID and passwords on multiple websites, a hacker can use the stolen credentials to gain access to accounts.<\/p>\n

State-owned PlayNow, which is operated and regulated by the BCLC, is British Columbia\u2019s only legal gambling platform. In a Thursday news release, the organization suggested that users change their passwords \u201cas a precautionary measure.\u201d It emphasized that the passwords had been stolen from other companies\u2019 websites and only a small percentage of PlayNow players were likely to be affected.<\/p>\n

\u2018Deeply Concerning\u2019<\/strong><\/h2>\n

\u201cThis is a deeply concerning incident and a cautionary tale for everyone with multiple online accounts,\u201d BCLC president and CEO Pat Davis said in the release. \u201cOur investigation remains ongoing, and we have found no evidence that our systems have been compromised, or that player login information was stolen from our systems.\u201d<\/p>\n

The BCLC said it had already notified impacted players, and their accounts had been locked because of suspicious activity. Its investigation into the matter is ongoing.<\/p>\n

\n

Integrity and security are at the core of our business and our games,\u201d Davis added. \u201cWe are committed to continuing our ongoing evaluation and enhancement of PlayNow security controls to maintain the safety of our players\u2019 information going forward.\u201d<\/p>\n<\/blockquote>\n

Cyberattacks against online gambling operators are almost as old as the industry itself, although credential-stuffing is a growing concern.<\/p>\n

DraftKings Hack<\/strong><\/h2>\n

In November 2022, more than $600K was stolen from around 1,600 DraftKings accounts, causing shares in the company to fall 5% on the Nasdaq. The sportsbook had only recently launched in many US state markets, and investors feared the attack would spark a drop-off in consumer confidence.<\/p>\n

In February 2023, federal agents arrested a Wisconsin teenager, Joseph Garrison<\/a>, then 18, for his role in the attacks.<\/p>\n

\n

Garrison and others had used credential stuffing software to gain access to user accounts and set up a new payment method to those accounts. Then they would deposit $5 to verify the new payment method, before withdrawing all the funds, according to court documents.<\/p>\n<\/div>\n

Garrison, who was sentenced to 18 months in prison in January 2004, had files containing nearly 40 million pairs of usernames and passwords on his computer and once boasted that \u201cfraud is fun\u201d to a co-conspirator, prosecutors said.<\/p>\n

The post PlayNow in Credential Stuffing Breach: \u2018Change Your Passwords,\u2019 Warns BCLC<\/a> appeared first on Casino.org<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

The British Columbia Lottery Corp. (BCLC) is asking users of its PlayNow online gambling platform to change their passwords. That\u2019s after a high volume of credential-stuffing attacks was detected on the platform. Don\u2019t play right now. Change your password first, and for heaven\u2019s sake, don\u2019t use the same password for multiple accounts, warns the BCLC.…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[16],"tags":[],"_links":{"self":[{"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/posts\/2116"}],"collection":[{"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/comments?post=2116"}],"version-history":[{"count":1,"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/posts\/2116\/revisions"}],"predecessor-version":[{"id":2117,"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/posts\/2116\/revisions\/2117"}],"wp:attachment":[{"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/media?parent=2116"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/categories?post=2116"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/stakery.io\/index.php\/wp-json\/wp\/v2\/tags?post=2116"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}