On 25 December 2023, the Ohio Lottery faced a major cyberattack, as a result, they had to shut down some crucial systems related to the undisclosed internal application.
The threat actors behind the breach are the DragonForce ransomware group.
While the investigation in regards to the breach is ongoing, the company confirms to its customers that its gaming systems are fully functional.
The gaming system is still operational, although some services have suffered.
At Super Retailers, prize cashing above $599 and mobile cashing are temporarily unavailable.
The winning numbers for the KENO, Lucky One, and EZPLAY Progressive Jackpots can be found at any Ohio Lottery Retailer; they are unavailable on the internet or mobile app.
WKYC informs that prizes up to $599 can be claimed at any Ohio Lottery Retailer, while prizes over $600 need to be sent by mail to the Ohio Lottery Central Office or using the online claim form.
Ransomware Gang Claims Responsibility While Ohio Lottery did not confirm who was behind the cyberattack, a ransomware group called DragonForce claimed responsibility.
According to a report by BleepingComputer, the threat group claims that they have encrypted devices and accessed sensitive data like Social Security Numbers and the date of birth of affected customers.
According to the DragonForce gang, over 3,000,000 lottery customers' names, addresses, emails, winning amounts, Social Security numbers, and dates of birth are among the data that have been hacked.
The weight of the released data-more than 600 gigabytes-raises questions regarding the scope of the hack.
DragonForce: A New Competitor in the Ransomware Arena Despite being a relatively young ransomware gang, the DragonForce gang's methods and data leak website suggest a rather experienced extortion organization.
As law enforcement steps up their efforts to combat ransomware activities, new organizations like DragonForce are coming into action, which raises the issue of rebranding within the threat landscape.
In a similar case, the official Facebook page of the Philippines lottery system was recently hacked by anonymous hackers.
The witnesses reported that threat actors were apparently spamming the website page with nude photos.
This prompted the Philippine Charity Sweepstakes Office to shut down the page for the time being, during which the Cybercrime Investigation and Coordinating Center will conduct its investigation.
This Cyber News was published on www.cysecurity.news. Publication date: Mon, 01 Jan 2024 16:13:04 +0000