International Gaming Technology (IGT) is recovering from what it is describing as a cybersecurity incident, the latest in a string of such attacks on gaming companies in recent years. IGT is an important technology and content provider for the casino industry.
The breach, disclosed in a Tuesday filing with the US Securities and Exchange Commission (SEC), revealed that an unauthorized third party accessed some of the company’s internal systems. As the investigation into the breach continues, IGT’s customers and stakeholders are wondering about the potential consequences of the attack.
“On November 17, 2024, International Game Technology became aware that an unauthorized third party gained access to certain of its systems, and the company has experienced disruptions in portions of its internal information technology systems and applications resulting from this cybersecurity incident,” the IGT filling read.
IGT slots include longstanding casino floor staples like Cleopatra, while its online games are equally widespread at US online casinos.
In a statement released on Friday, the company reassured stakeholders that, to date, there is no indication that any of its games or player-facing systems have been affected by the recent cybersecurity incident.
IGT activates contingency plans to continue serving customers
In the cyberattack’s aftermath, IGT immediately activated its contingency plans to keep operations running smoothly and minimize customer disruptions. The IGT November 2024 SEC filing stated:
“Promptly after detecting the issue, the company activated its cybersecurity incident response plan and launched an investigation with the support of its external advisors to assess and remediate the unauthorized activity.
The company is communicating with its customers and other stakeholders, as appropriate, and where possible, the company has implemented alternatives for certain operations in accordance with its business continuity plans to mitigate disruptions and continue servicing its customers.”
As a temporary measure, the company has taken some of its systems offline to prevent any potential further disruptions.
Meanwhile, in the peak of it all, IGT has acknowledged that it is still determining whether the incident has had a material impact on its operations.
IGT’s lottery division spin-off remains on track despite cyberattack
IGT’s predicament is coming at a critical juncture, just days after Everi investors approved a merger with IGT‘s global gaming and PlayDigital units.
Completion of the deal should be by the end of 2025, at which point the newly formed company will assume the IGT name and establish its base of operations in Las Vegas.
As part of the merger-acquisition agreement, IGT’s lottery division will spin off into a standalone company fully owned by shareholders.
Cybersecurity breaches pile up in gaming industry
The disclosure of a cyberattack on IGT has raised fresh concerns about the gaming industry’s vulnerability to cyber threats. The company became the third high-profile gaming firm to publicly announce a cybersecurity breach.
First, Caesars Entertainment Inc. fell victim to an attack in August 2023, reportedly paying a ransom to regain control of its systems.
Just a month later, MGM Resorts International was hit by a similar attack, but the company took a hardline stance and refused to pay the ransom demand.
Also, the Ohio Lottery had fallen prey to a devastating ransomware attack in December 2023, compromising sensitive customer and retailer data. As a result, a severe disruption of the lottery’s critical systems led to the temporary suspension of key services.