At KPMG’s eGaming Summit in the Isle of Man in September 2016 the audience placed cyber crime second in the list of risks for e-gaming operators and GBGC wrote last month about idea of national firewall for UK as part of government-led cyber security efforts. There have been a number of events since then to suggest that cyber security deserves to be a priority for e-gaming operators.

At the start of November 2016 William Hill’s website was the subject of a sustained DDoS attack. The attack was described as “sophisticated” and a company spokesman said “The online services of William Hill were intermittently impacted … following Distributed Denial of Service activity by third parties. This follows a significant increase in DDoS activity experienced by a number of online companies over recent weeks“.

A few days later Tesco Bank suspended parts of its internet banking system because it had detected attempts to remove cash from customer accounts. Tesco said some 40,000 accounts were targeted but did not say how the crime had been perpetrated.

Prior to these events, the east coast of the US has experienced a DDoS attack at the end of October. The attack targeted an internet infrastructure company called Dyn. Dyn provides Domain Name System (DNS) services. DNS is a key element of internet functionality and one thing it does is translate domain names to IP addresses, helping create the directory for the internet. Dyn described the attacks on it as “very sophisticated and complex”. They certainly stopped many internet users from accessing several prominent websites.

Verisign, in its DDoS trends report for the second quarter of 2016 did state that the number of DDoS attacks had increased by 75% year-on-year and that in the quarter the attacks “continued to become more frequent, persistent and complex”.

All of these episodes show that cyber crime will continue to be a top three risk for e-gaming operators in the years to come.