Connect with us

Hi, what are you looking for?


Incident Response

Hackers Pillage Systems at Casino Rama Resort

Canada based Casino Rama Resort said that a hacker broke into its internal computer systems and accessed detailed company, customer, employee and vendor information. 

Canada based Casino Rama Resort said that a hacker broke into its internal computer systems and accessed detailed company, customer, employee and vendor information. 

Casino Rama Resort said that it became aware of the incident on November 4th, 2016, when an anonymous hacker claimed to have accessed company information, including IT details, financial reports, security incident reports, company email, customer credit inquiries, collection and debt information, vendor information and contracts.

The hacker also claims to have accessed employee information including performance reviews, payroll data, terminations, social insurance numbers and dates of birth.

While the hospitality industry has been the subject of many attacks and successful breaches in recent years, this incident seems particularly damaging compared to most, which have often been limited to Point-of-Sale data.

According to the company, the hacker is claiming that employee information obtained dates from 2004 to 2016, and other categories of information taken date back to 2007.

The company said the attack was contained to the Casino Rama site, as its computer systems are not linked to its other facilities in Ontario. 

“There is no indication that the hacker continues to have access to the system,” Rama Resort’s said in a statement. “It is possible, however, that the hacker will publish information that was stolen. Casino Rama Resort’s internal teams have been working with cyber security experts to neutralize the issue and provide further safeguards to the system since becoming aware of the situation on November 4th, 2016.”

Advertisement. Scroll to continue reading.

The company did not say if a ransom was demanded in order to prevent the publishing of the stolen data.

Contacted by SecurityWeek, a company spokesperson said, “Casino Rama Resort is working with the authorities to determine the exact nature and reason for the cyberattack. Obviously, while there is an ongoing investigation we are limited in how much detail we can provide.”

The gaming and resort operator said it is working with the Ontario Provincial Police (OPP), the Royal Canadian Mounted Police (RCMP), the Ontario Lottery and Gaming Corporation (OLG) and the Alcohol and Gaming Commission of Ontario (AGCO), and has alerted the Office of the Privacy Commissioner of Canada (OPC) and the Information and Privacy Commissioner of Ontario (IPC).

Casino Rama Resort is operated by Penn National Gaming, Inc.

Written By

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

Application Security

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Incident Response

Microsoft has rolled out a preview version of Security Copilot, a ChatGPT-powered tool to help organizations automate cybersecurity tasks.

Incident Response

Meta has developed a ten-phase cyber kill chain model that it believes will be more inclusive and more effective than the existing range of...

Artificial Intelligence

Two new surveys stress the need for automation and AI – but one survey raises the additional specter of the growing use of bring...

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...