Customer Data Exposed by Casino App Database
By
Jane Shaw
Senior Editor
Updated: 02/24/2024
We count on Jane to inform our readers about the latest slot games in the US market. With her passion for video games and a degree in engineering, she’s our gambling tech expert. Jane’s also active in our blog section, where she tackles the curiosities and changes in the industry.
Customer Data Exposed
It has been reported that a database containing sensitive personal information of users of the My WinStar app has left customer data exposed.
The app was developed for the WinStar casino resort and, according to reports, has potentially compromised the data of numerous customers. The security lapse was discovered by Anurag Sen, a security researcher, who came across the unprotected database.
The My WinStar app was designed by Nevada-based software startup Dexiga, and it offers guests of the WinStar casino resort a convenient platform to access various services. This includes hotel accommodation, reward points, and casino winnings.
However, a password-related oversight by Dexiga led to the exposure of a database without proper authentication measures, allowing unauthorized access to sensitive customer information.
A Range of Information Revealed
The exposed database is said to have contained a range of personal details, including full names, phone numbers, email addresses, and home addresses of WinStar app users.
An investigation by TechCrunch revealed additional information such as genders and device IP addresses stored in the database. It is claimed that none of the data was encrypted, posing a significant threat to the privacy and security of the people affected.
After learning about the security lapse from TechCrunch, Dexiga officials quickly acted to secure the exposed database. However, there are now ongoing concerns regarding the extent of the breach and whether any cybercriminals might have accessed the data during the time that it was exposed.
Dexiga’s founder, Rajini Jayaseelan, downplayed the severity of the incident, describing the exposed information as being ‘publicly available.’ However, the incident has raised questions about Dexiga’s commitment to user privacy and data security.
Officials from the company said:
We are further investigating the incident, continue to monitor our IT systems, and will take necessary future actions accordingly.
However, despite assurances from Dexiga, many are questioning the company’s response to the breach. Jayaseelan is said to have been reluctant to disclose whether Dexiga notified WinStar of the security lapse or informed affected customers, which has raised concerns over accountability and transparency.
The exact number of people impacted by the data spill remains unknown, and the situation has left many WinStar app users in limbo regarding the safety of their personal information.
Robust Security Measures Needed
Cybercrime has become a huge issue in many industries over recent years, and many companies in the casino industry have fallen victim to this type of digital crime. This has affected not only the companies in question, but also huge numbers of people whose data has been compromised.
Some officials have said that in light of this breach, it is vital for Dexiga to implement more robust security measures to prevent similar incidents in the future. In addition, transparency and proactive communication with affected parties, including WinStar and its customers, have been highlighted as crucial steps toward rebuilding trust and safeguarding user data.
Authorities now continue to investigate the security breach, and WinStar app users have been advised to remain vigilant and monitor their accounts for any suspicious activity.