Online gambling site reported security breach 18 months after attack

Online gambling site reported security breach 18 months after attack

Many online gambling websites have been banned to U.S. consumers in the past several months, but one surviving site - Betfair - suffered a massive security breach and reported it 18 months after it occurred.

According to a recent BankInfo Security report, the incident is disturbing for banking and security experts alike. The breach occurred in March and April 2010 and cybercriminals obtained credit and debit card information on 2.3 million Betfair customers. Also, more than 3.1 million Betfair usernames were exposed during the breach.

Kevin Lee, CEO of a cloud-based security provider, said Betfair did not appear to follow the requirements issued by the Payment Card Industry Data Security Standard, according to the news provider.

Lee told BankInfo Security that it is unknown how the hackers obtained the information, but malware, which is able to steal large quantities of data, was most likely used.

Unless more organizations increase their PCI compliance efforts, breaches are likely to occur. According to Verizon Wireless' director of PCI consulting services Jen Mack, companies need to improve their risk assessments, which have declined by 10 percent since 2010, BankInfo Security recently reported.