Minnesota Casino Latest Cyberattack Victim, Hackers Continue Targeting Tribes
A casino in Minnesota has become the newest target of a cyberattack. The operations of the tribally owned property were significantly affected, with slot machines, bingo games, and online hotel room reservations still offline as of Thursday afternoon.
Situated in the center of the Minnesota River Valley, the Jackpot Junction Casino Hotel of the Lower Sioux Indian Community encountered technical issues a week ago on Thursday, March 27. A week later, over 1,200 slots at the tribal casino are still not accessible.
"As of April 3, slot machines are currently unavailable. Thank you for your patience and understanding. We will provide updates as they are available,” a statement on the casino’s website said.
Bingo is postponed until further notice, but table games continue to operate. The Circle Bar, Java, and Full Deck eateries are additionally open.
Casino.org looked for hotel accommodations, but the casino's online booking system was not accessible. The casino’s hotel with 379 rooms is still operational, although certain services such as digital room keys are currently unavailable.
A representative for Jackpot Junction stated that the casino has “detected a cybersecurity issue related to unauthorized access to specific systems.” The statement mentioned that the tribe is collaborating with "external specialists" to address the issue.
The Lower Sioux is racing to swiftly address the cyberattack on the Jackpot Junction Casino Hotel. The casino is a vital part of the tribe's economy, and every day its slot machines are out of service represents lost income.
In addition to Jackpot Junction, the tribe's economy relies on offering loans and financing via its organizations Dakota Futures Inc. and Dakota Finance Corp. Furthermore, the tribe makes significant investments in construction materials sourced from hemp.
Jackpot Junction Update
The Lower Sioux Indian Community did not reveal if a ransom has been requested for the restoration of Jackpot Junction’s IT systems.
It is probable that a ransom has been requested, as the Russia-affiliated online hacking collective known as RansomHub claimed responsibility for the Jackpot Junction breach on a dark web forum.
Situated in Morton, the Minnesota casino began operations in 1984. It is approximately a two-hour drive to the southwest of Minneapolis.
Tribal Cyberattacks
Gambling establishments remain popular targets for cybercriminals. For numerous years, hacking collectives have effectively obstructed sensitive IT systems of tribal and commercial casinos nationwide.
The most notable incidents occurred in September 2023 when an assault on Caesars Entertainment and MGM Resorts disrupted many of the casinos and booking systems along the Las Vegas Strip.
During this week's Indian Gaming Association, tribes expressed that cybersecurity threats remain a significant challenge. Hackers have discovered that breaking into casinos’ computer systems, which hold vast amounts of information on patrons and staff, is not very hard via so-called “social engineering.”
Social engineering entails a cybercriminal coercing, persuading, or misleading a target to obtain access or control of a computer system in order to steal personal and financial data.
"People can be the weakest link,” said Scott Melnick, vice president of gaming security at AGS, a Las Vegas-based gaming equipment manufacturer.
Since 2024, tribal casinos including the Sault Tribe’s five Kewadin Casinos in Michigan, Swinomish Casino in Washington State, Casino del Sol in Tucson, and the Indigo Sky and Outpost casinos in Oklahoma have experienced cyberattacks.
