Crown Resorts hacked, ransom demanded

March 30th, 2023 - Written By CyberLabs

Crown representatives have admitted to falling victim to the Fortra GoAnywhere ransomware attack. An error in the GoAnywhere network was recently discovered by the ransomware organization Clop, which cybersecurity experts have since labeled a “zero-day” vulnerability. Due to a bug, Clop was able to sneak into GoAnywhere and steal info. More than 130 businesses’ data allegedly have been stolen as a result of the ransomware assault.

The biggest casino operator in Australia, Crown Resorts, claims to be one of the compromised but is working to allay customer concerns about their private information unintentionally falling into the clutches of hackers. Secure file transfer services are the area of expertise for the software company Fortra, located in Nebraska. The company’s flagship product, GoAnywhere, is said to enable users to safely send extremely sensitive files over the internet.

“We were recently contacted by a ransomware group who claim they have illegally obtained a limited number of Crown files. We are investigating the validity of this claim as a matter of priority.”

“We can confirm no customer data has been compromised and our business operations have not been impacted.

“We are continuing to work with law enforcement and have notified our gaming regulators as part of the ongoing investigation and will provide relevant updates, as necessary.” the Crown statement concluded.

Some of the biggest businesses in the world are involved in the GoAnywhere attack. Proctor & Gamble, a major manufacturer of consumer products, Kroger, Shell, Stanford Medicine, and Saks Fifth Avenue are among the alleged victims of the clop. Also Virgin Group, which manages the Virgin Hotels in Las Vegas is also compromised

Source

• https://www.bleepingcomputer.com/news/security/crown-resorts-confirms-ransom-demand-after-goanywhere-breach/
• https://www.crownresorts.com.au/media-centre/media-releases