International Cyber Expo International Cyber Expo
  • About Us
Wednesday, 8 July, 2026
IT Security Guru
International Cyber Expo
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Cybercriminals Continue To Target Online Gambling Platforms.

By Luke Rodeheffer, Cybercrime Intelligence Analyst, Flashpoint

by The Gurus
November 7, 2019
in Featured, Opinions & Analysis
Card Payment Online
Share on FacebookShare on Twitter

The size of the online gambling industry is expected to approach $75 billion by 2024, driven largely by technological advancements and favourable regulatory shifts. This projected growth presents ample opportunity to companies operating in the industry, but it comes with the drawback of attracting unwanted cybercriminal interest.

The online gambling industry has often been a pioneer in developing anti-fraud and device-fingerprinting technology to prevent the abuse of its platforms. But as cybercriminals continue to refine their methods, organisations in the industry must remain mindful of the following threats:

Account Cash-Out Schemes

One common cybercriminal tactic is to cash out balances on compromised online gambling accounts. Online gambling accounts can be compromised through brute forcing activity, botnets, or credential-stealing malware sold on underground forums. Compromised accounts are sold for varying prices depending on the age of the account and the amount of money in the balance.

Fraudulent Account Creation

A related cybercriminal activity is the creation of fake user accounts on gambling platforms, which are used for money laundering, whether it be for funds extracted from compromised gambling accounts or the fruits of other financially motivated schemes.

Cybercriminals use a variety of different technologies to establish fake accounts on gambling platforms. Flashpoint analysts observed a Russian-speaking actor advertising servers capable of creating accounts on leading gambling platforms without detection on their Telegram channel. Analysts have also observed users on a lower-tier, Russian-language cybercrime forum discussing that same actor’s anti-detect software to create dozens of accounts within a 24-hour time frame on some gambling sites, though they acknowledged the service was less effective on certain gambling platforms with more sophisticated anti-fraud protections.

Mobile proxy abuse is also being leveraged to create fraudulent accounts, with one notable Russian-language proxy service advertising its ability to create fraudulent accounts on gambling sites and providing tips on the security and document verification systems used by several high-profile online gambling platforms. On its homepage, the service falsely claims to have partnerships with some of these platforms, stating that users are able to “make bets on any gambling website without any risks,” and “trust our professional team to allow users to make multiple accounts across platforms.”

Partnerkas and Traffic Arbitrage

Many online gambling platforms rely on online advertisements to attract new users. In some cases, gambling platforms rely on affiliate systems that place its ads on other sites. These affiliate systems often overlap with the cybercriminal underground, however, especially those based in Eastern Europe, where they are known as partnerkas. In the past, partnerkas have received law enforcement and media scrutiny for directing web traffic to illicit offshore pharmacy websites and using botnets to distribute spam or malware via advertisements on compromised web pages.

Working with partnerkas poses significant third-party risk to online gambling platforms, with potential ramifications including reputational damage and the compromise of sensitive customer data. As such, thorough due diligence should be conducted when it comes to all aspects of online advertising.

Efforts to Bypass Security Controls

Flashpoint analysts have also observed Russian-speaking actors advertising services they claim are capable of bypassing certain security controls put in place by gambling platforms. However, domain records provide no further clues as to who is behind this service.

Distributed Denial-of-Service (DDoS) Attacks

DDoS attacks are another threat for the online gambling industry that have grown increasingly pervasive over the past few years. Since online gambling activity is often conducted in real time, these platforms are particularly sensitive to the latency created by DDoS attacks due to user bases located around the world who require streaming access. In August 2018, the popular platforms PokerStars and partypoker faced extended periods of downtime as a result of DDoS attacks, and a wave of attacks crippled Hong Kong-based gambling platforms in May 2017 that cybersecurity firm Arbor Networks linked to extortion attempts.

Assessment

The growth of the online gambling industry will only make it a more lucrative target for cybercrime in the coming years. As technology for subverting account authentication and anti-fraud defences continues to rapidly develop and more accounts are compromised through the proliferation of credential-stealing malware, botnets, and brute-forcing tools, the industry will need to monitor for emerging cyber threats and evolving tactics, techniques, and procedures (TTPs) on an ongoing basis.

Share1Tweet
Previous Post

Okta Research Shows Workers Are Ready To Go Passwordless This Year.

Next Post

Trusted Cyber Security Solutions In Austria Joins Radiflow’s OT MSSP Partner Program

Recent News

malware

Huntress Uncovers ‘Vibe-Coded’ Malware Used to Map Active Directory Environments

July 8, 2026
Check Point’s ThreatCloud AI Blocked 4.6 Billion Attacks in 2025, Latest ESG Report Reveals

Check Point’s ThreatCloud AI Blocked 4.6 Billion Attacks in 2025, Latest ESG Report Reveals

July 8, 2026
Kirsty Fowler, WorkNest Secure

Next Gen Spotlights: Building a More Resilient Future – Q&A with WorkNest Secure

July 8, 2026
Mike Winston on Why Jet.AI Shifted From Aviation to AI Infrastructure

Mike Winston on Why Jet.AI Shifted From Aviation to AI Infrastructure

July 7, 2026

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2026 IT Security Guru - Website Managed by Dessol

  • About Us
Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2026 IT Security Guru - Website Managed by Dessol