diamondback
diamondback
  • Threads: 1
  • Posts: 2
Joined: Apr 5, 2014
April 5th, 2014 at 4:48:14 AM permalink
Las Vegas Sands Corp. said “some legally protected data” was stolen from customers and employees of the company’s hotel-casino in Bethlehem, Pa., following a sophisticated cyber attack on the casino operator’s internal computer operations. This legally protected data included Social Security numbers, Drivers License numbers, and Passport numbers. In video images from the original cyber attack, hackers defaced the company’s casino websites with images condemning the Las Vegas Sands CEO. An 11-minute video surfaced purporting to show stolen internal company information and taunting the company. The video was e-mailed to several media outlets and was posted to YouTube.com, but was pulled down by the website.The video showed what was described as internal information from Sands Bethlehem, including administrator and slot systems passwords, employee files, and other private information about the casino and its workers. A LVS spokesperson said the number of customer identities compromised represents “less than 1 percent of our total visitation to the property” and “LVS is providing One Year of credit card monitoring and identity theft protection to those customers. LVS has been notifying those customers about this coverage.”

(note: the linked photo and background information came directly from the Las Vegas Review Journal).

No doubt the situation is troublesome and unfortunate, but does raise these questions: If you were part of the affected "1%" who was not an employee what would be your response/reaction? What permissible business purpose(s) is there for a casino to preserve customers legally protected data such as SSN, Drivers License number and/or Passport number on file? If allowed, how long can customer protected data be retained and by what methods should it be stored? Considering the purported background of these cyber attackers, would you consider changing your identity if this was your personal data stolen? Is one year of identity protection coverage a reasonable/equitable compromise to these circumstances?



LV Review Journal Report (1)

LV Review Journal Report (2)
beachbumbabs
beachbumbabs
  • Threads: 100
  • Posts: 14260
Joined: May 21, 2013
April 5th, 2014 at 3:14:04 PM permalink
Interesting first post, diamondback, welcome!

My identity was potentially hacked among that of 40,000 employees when a laptop was stolen from a Miami car seat, including the same level of personal data and more. I was given the 1 year of protection you mention, and offered more years at a discount, but in the 6 years since, there have been no adverse consequences (the guy who had the personnel download on his laptop was fired, otherwise none) to me or any of the other folks I know who were affected. Chances are we were simply lucky.

Since the casino maintains not just player club information, but lines of credit and other financial relationships with some of their customers, I think it's unavoidable that they will require this sensitive information in order to provide those services. I would think they're more vulnerable than most to attempted fraud and identity theft, and that type of identification can prevent on-site crimes, even though it opens vulnerabilities in other areas. On balance, I'm guessing they will need to continue to require it, and just have to beef up internal and net security to match the threats, or they will see a larger cost in not providing the level of financial resources their high-dollar customers require.

Just my opinion. YMMV.
If the House lost every hand, they wouldn't deal the game.
diamondback
diamondback
  • Threads: 1
  • Posts: 2
Joined: Apr 5, 2014
April 8th, 2014 at 7:04:55 AM permalink
Hello Babs,

Happy to have found your forums and thank you for the welcome. I believe I will find much of the content offered very informative and helpful.

I appreciate you sharing your experience (above). No doubt when something like what you described happens it kind of opens ones eyes as to what "can" when least expected. Myself being from Philadelphia, am familiar with what happened in Bethlehem and needless to say, I have heard people who frequent that casino property venting frustration - they are not very pleased and neither am I. My post was intended for eyes outside the area in places (such as Vegas) maybe more familiar with such things in hopes of putting some perspective on what happened here. The experience you shared was helpful in doing so.

I'll continue to watch and read and maybe there will be some more input in the future. Guessing this topic is sort of a lightening rod so to speak, but hopeful others might step up an weigh in. Aside from that, looking forward to discussing why grey's are better on the grass and so on. Thanks again..

dback...
BedWetterBetter
BedWetterBetter
  • Threads: 33
  • Posts: 608
Joined: Oct 20, 2012
November 6th, 2014 at 4:17:27 PM permalink
Not to sound bitter, but... serves them right!

Sands , IMO, is one of the most invasive and info hungry casinos I have ever seen.

They offer a pitiful $5 slot dollars for your email and hardly send anything "exclusive" or worth a damn. It's usually something that is already on the website like Concert Dates, Giveaway Days and/or Point status updates for a Gift.

All of which can be accessed on the My Sands Log-In or the Promotions tab on the site.

They also aggressively market your email and info to Bus companies, Hotels(prior to the addition of rooms) and Shopping Outlets (primarily the retailers in their outlet mall)

So that you are constantly "notified" of companies and services that you may have used ONCE , but they act like you are a regular customer and keep reminding you of their services and locations.

I'm glad I gave them a useless email that I rarely access, but they still found a way to get their mailers to my home. Since giving them that email, I noticed a significant decrease in free play offers.

But that's how Sands is, at least that is my experience with them.
tringlomane
tringlomane
  • Threads: 8
  • Posts: 6281
Joined: Aug 25, 2012
November 6th, 2014 at 8:43:17 PM permalink
Venetian Part II I suppose. If it's going to happen to any casino magnate, I'm glad it's happening to Adelson.
DrawingDead
DrawingDead
  • Threads: 9
  • Posts: 2263
Joined: Jun 13, 2014
November 10th, 2014 at 12:58:55 PM permalink
If it's going to happen to anyone, I'm glad it's happening to this big creepy money-sucking outfit:

Postal Service breach affects employees, some customers

Quote: LVRJ/Reuters (11/10/14)

WASHINGTON — The U.S. Postal Service was the victim of a cyber attack that may have compromised the personal information of more than 800,000 employees as well as data on customers who contacted its call center from January through mid-August.

<SNIP>

He said the service began telling employees about the breach Monday morning and said it would pay for employees to get credit monitoring services for one year.


http://www.reviewjournal.com/news/nation-and-world/postal-service-breach-affects-employees-some-customers
Suck dope, watch TV, make up stuff, be somebody on the internet.
reno
reno
  • Threads: 124
  • Posts: 721
Joined: Jan 20, 2010
December 11th, 2014 at 11:07:12 PM permalink
Here's an update on the Sands cyberattack. Las Vegas and Pennsylvania were hit hard, but the Iranians couldn't get into the Sands computers in Singapore & Macau.
onenickelmiracle
onenickelmiracle
  • Threads: 212
  • Posts: 8277
Joined: Jan 26, 2012
December 12th, 2014 at 1:45:05 AM permalink
Adelson started making his money with computer software I had thought, so surprising he would be so foolish. Wouldn't put it past him to be behind them in some way considering so much was lost when the government was after them.
I am a robot.
DrawingDead
DrawingDead
  • Threads: 9
  • Posts: 2263
Joined: Jun 13, 2014
December 12th, 2014 at 2:10:58 AM permalink
Oh good grief. Nauseating. He got started by putting on trade shows and organizing convention events, which amount to 20 hour days of a lot of logistical grunt work to pull off and grow. The Iranian mullahs and their Iranian military/government sponsored "hackers" in the Iranian "Revolutionary Guard" (along with some extremely childish little progressofascists right here) hate him because of his religion and his politics, and the "Supreme Leader" of Iran Ayatolla Khamenei issued a public decree that he should be killed. Sure, you betcha, he's secretly pulling the strings behind those Iranian "Death to Jews & infidels!" mullah's, when he has time to spare from actively supporting his personal friend Benjamin Netanyahu who is the Prime Minister of Israel.

In the unlikely event someone is actually interested in what it is about, rather than fevered political pontificating, here's a brief factual summary from a source not particularly friendly to him & his beliefs & personal causes:

http://www.lasvegassun.com/blogs/elsewhere/2014/dec/11/why-iranian-hackers-targeted-sheldon-adelsons-sand/
Suck dope, watch TV, make up stuff, be somebody on the internet.
GoldFather
GoldFather
  • Threads: 0
  • Posts: 1
Joined: Dec 20, 2014
December 30th, 2014 at 12:59:03 AM permalink
I also have a problem feeling bad for them. My 15 year old self could have protected them from these cyber threats. I feel as if they didn't even take rudimentary precautions to prevent something like this from happening. If you treat cyber security like a joke this is what happens. I'm sure the "vault" at the Venetian is damn secure, and similarly their website should be.
Where words prevail not, violence prevails; But gold doth more than either of them both.
tommyngo215
tommyngo215
  • Threads: 4
  • Posts: 47
Joined: Jul 13, 2015
July 16th, 2015 at 11:13:38 AM permalink
I was one of those lucky one whose personal info was hacked and stolen from Sands's database. And maybe, it's just me but this is not the first time my info got hacked. They all offer a standard 1 year of free credit monitoring and that's about it. I'm paying every month now to keep an eye on my credit (MyFICO).
SanchoPanza
SanchoPanza
  • Threads: 34
  • Posts: 3502
Joined: May 10, 2010
July 16th, 2015 at 12:20:10 PM permalink
Quote: beachbumbabs

I would think they're more vulnerable than most to attempted fraud and identity theft.

Nothing seems to be more vulnerable -- and more lackadaisical -- than the OPM and its being hacked for the personal and security data on 31 million folks with federal involvements, thanks to obsolete Cobol.
  • Jump to: