this post was submitted on 14 Sep 2023
228 points (97.5% liked)
Technology
59377 readers
2900 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I wonder if this is a good decision - you have to be very afraid of the publication of this data to pay millions to blackmailers without being sure that they won't be at your door again soon.
I work in the casino industry, our databases are full of ssns, addresses, emails, telephone numbers, birthdates, food/liquor/tobacco/vacation/entertainment preferences, players with lines of credit through us, people cash checks or get cash advances through their credit cards through us so we have that info, through our play history data you can infer habits of where someone is or isn’t at certain times, some casino companies are now offering “cashless/chip less” play which is an app on your phone hooked up to a bank account we set up for you and tie to Experian, etc etc etc
Casinos are essentially banks now, we have fuckloads of secure information and the casino industry hires the cheapest fucktards it can find on purpose to keep profits high. It’s no wonder we’re being targeted, we’re damn juicy targets. Even if IT tries our hardest, we’re handcuffed by cheap management and flat stupid users that fail phishing tests left and right and write down passwords on notepads or excel sheets
User being phished doesn't leak the company's database though.
I think "user" in this case means "employee". Phishing is by far the most common point of entry.