Firekeepers Casino Hotel data breach fallout has reached 85,000!
Firekeepers has been investigating a breach since May of this year, but announced Friday that they had confirmed that a breach had occurred. Now information about the breach is coming to light.
“We learned of the potential security incident involving our payment processing system on April 16, 2015, and immediately hired independent IT forensic experts to assist with the investigation.,” Firekeepers stated in a notification on their website, “The security compromise has been contained and payment cards have been processed securely since April 26, 2015.”
The investigation has revealed that an intruder gained unauthorized access to the Firekeepers system and file storage between September 7th, 2014 and April 25th, 2015. Information compromised during this time includes 85,000 employee and customer cardholder names, card numbers, verification codes, and expiration dates. It is also possible that customers’ tax-reportable winnings, addresses, social security numbers, and driver’s license numbers were compromised, along with employee social security numbers, addresses, medical information, and dependent’s names.
Information that was definitely not compromised includes data submitted through their website, Red hot Rewards Club information, credit and debit cards used for hotel reservations only, cash advances and ATM transactions.
In addition to offering credit monitoring, Firekeepers is replacing their point-of-sale systems, and increasing their firewall protections and incorporating two-factor authentication. All good things, and yet they are still missing a key area: internal security. We cannot stress enough how vulnerable organizations are from the inside.
For information on how you can prevent your organization from being breached, visit www.miltonsecurity.com or call 714-515-4011.