By Ashwani Mishra, Editor-Technology, 63SATS Cybertech
In a scene straight out of Ocean’s Eleven, where suave criminals breach Bellagio vault with surgical precision, a new wave of cybercriminals is striking the gambling world—not with explosives or disguises, but with keystrokes.
From Australia to Ohio, and now deep into the global lottery circuit, hackers are pulling off high-stakes digital heists, leaving disruption, data leaks, and reputational wreckage in their wake.
Digital Dice and Dangerous Games: When Lottery Giants Get Hacked
In a chilling sign of the times, Australian online lottery ticket vendor TheLotter has confirmed it was hit by a cyberattack, validating claims made earlier this month by a threat actor known as “Ponce.”
As first reported by Cyber Daily, the attacker allegedly exfiltrated sensitive data of over 201,000 customers, later posted for sale on a popular hacking forum.
TheLotter is just the latest player to be dealt a losing hand in the cyber casino.
While gambling has long been associated with risk, it’s increasingly the companies running the games—not just the players—who are facing massive exposure.
In November 2024, a major U.S.-based gambling company also suffered a crippling cyberattack that forced parts of its systems offline, echoing prior incidents that are becoming unnervingly frequent.
While gambling has long been associated with risk, it’s increasingly the companies running the games—not just the players—who are facing massive exposure.
Global Jackpot, Global Target
In November 2024, International Game Technology (IGT), a multinational powerhouse suffered a crippling cyberattack that forced parts of its systems offline, echoing prior incidents that are becoming unnervingly frequent.
In a disclosure to the U.S. Securities and Exchange Commission, IGT admitted to operational disruptions caused by a cyberattack that forced internal systems offline and triggered emergency containment protocols.
Ransomware Roulette
Ransomware gangs have shown a clear appetite for gambling operations. In January 2024, the Ohio Lottery confirmed a breach that exposed both customer and retailer data. The group DragonForce took credit, claiming it had siphoned off over 600GB of sensitive information—including player winnings and social security numbers.
This came on the heels of the MGM Resorts and Caesars Entertainment breaches in September 2023. The MGM breach alone cost the company over $100 million, highlighting how ransomware attacks are no longer just a technical nuisance but a boardroom crisis.
Gambling companies handle millions of transactions and personal details daily—an irresistible jackpot for cybercriminals.
Mission: Vulnerable
This isn’t fiction. Unlike Hollywood’s con artists, who vanish into the night after outwitting casino security, today’s cybercriminals leave digital footprints—and real victims—in their path. Yet, the aftermath is eerily similar: shaken institutions, drained coffers, and stolen identities.
As lottery and gambling companies increasingly operate in a digital-first world, the message is loud and clear: The cyber house doesn’t always win—and the vault is wide open.
If security doesn’t become the new jackpot, these digital heists may soon become the industry’s most consistent payout.
