SBTech-powered sites have been down for more than 48 hours as the platform provider deals with a cybersecurity threat.
SBTech first its informed customers, including the Oregon Lottery, BetAmerica, Golden Nugget and Resorts late on Friday night.
It is understood SBTech shut down its global data centers as a protective measure against an attempted cyberattack. All of SBTech’s 50 B2B partners globally have been out of action since.
Customers of operators who use the full SBTech platform (rather than just the sportsbook) have been complaining about not having access to their funds.
However, it’s understood the firm’s data was properly encrypted and no data was stolen. US law enforcement agencies are currently looking into the attack.
SBTech-powered sites, like BetAmerica, currently show this message.
When will SBTech sites and sportsbooks be live again?
Following the closures, SBTech will need clearance from regulators before it is able to relaunch its US servers. As a result, there is currently no firm timeline for the relaunch of its sites, although one UK partner said it expected to be back live by 8 a.m. on Tuesday.
SBTech has a presence, via partners, in six US states:
Not ideal preparation for DraftKings merger
The attempted cyberattack comes just weeks before DraftKings’ acquisition of SBTech is expected to close. Sources close to the situation suggested the impending merger could feasibly have prompted the attack.
Otherwise, it’s a strange time for a cyberattack on a sportsbook-led company, with most sports currently canceled.
Who has been hit the hardest?
BetAmerica is likely the worst-affected of SBTech’s US partners, as it uses the entire SBTech platform, including the online casino. The Oregon Lottery Scoreboard product is also completely out of action. On the other hand, Golden Nugget and Resorts only take the SBTech sportsbook, so they still have a functioning online casino product.
It’s still unclear how operators will be compensated for the downtime, although they could be in line for service credits.
The Oregon Lottery specifically is not covered for compensation if the platform is hit with a DDOS attack, but the length of the outage suggests it was another type of cybercrime.
Geraint Williams, chief information security officer at IT services firm GRCI Group, said the incident had the hallmarks of a ransomware attack, where hackers attempt to steal company data and code.
“Companies of this size usually have the resources and back-up servers to resume services relatively quickly if its a DDOS attack. Whereas if its a ransomware attack, it can take quite a bit of time to restore systems and make sure they are clean,” Williams said.
The hacking group Maze carried out a number of ransomware attacks last week, with targets including Curacao-licensed online sportsbook BetUS, cybersecurity insurance firm Chubb, and the French firm Bouygues Construction.