DraftKings and FanDuel Cyberattacks: FBI Investigating

The FBI is investigating a recent spate of cybercrime at leading US sportsbooks, including DraftKings and FanDuel, an “industry source” has told ESPN. That’s after the attacks proved to be more sophisticated than first thought.

DraftKings hack
Sophisticated hackers are targeting gamblers online, and may be doing reputational harm to sportsbooks in the fledgling US markets. (Image: iStock/Getty)

DraftKings acknowledged two weeks ago that the login details of some of its customers had been compromised, and that hackers had been able to withdraw funds from customer accounts. The revelation caused shares in the sportsbook to fall 5% on the Nasdaq, investors fearing a drop-off in consumer confidence.

DraftKings denied its system had been breached. It said it believed the customer login details had been found elsewhere on the internet, and that no more than $300K had been stolen in total.

All affected customers would be reimbursed fully, the company added, though some bettors told ESPN last week they had not yet seen their balances reinstated.

Sportsbooks Hypervigilant

DraftKings and FanDuel said the fraudulent activity began occurring on or around November 19. Using stolen credentials, hackers were able to make deposits from bank accounts linked to sportsbook accounts.

The funds were then quickly withdrawn into digital wallets, presumably fraudulently set up in the victims’ names.

FanDuel told ESPN it was still detecting fraudulent activity late last week and had established a task force to tackle the problem.

The hacks have led sports books to become hypervigilant of anything that could constitute suspicious behavior. This has resulted in delays, locked accounts, and increased customer frustration.

News of the attacks came amid reports that members of the poker community have been targeted by hackers using a similar ploy.

Poker Players Hit

Dozens of players reported on social media that they had fallen victim to the scam last month. It typically involved someone fraudulently opening an account on BetMGM in a victim’s name using bogus credentials. That’s before transferring thousands from their bank accounts using a service offered by Global Payments Gaming (GPG) called “VIP Preferred.”

VIP Preferred allows users to deposit funds at numerous online gaming sites, and even land-based casinos, without having to go through the usual strict security checks. That’s provided the user has undergone a more stringent age verification process on another site that uses GPG and that they have a good history of previous transactions.

And so, all the scammers needed to access the players’ bank accounts were rudimentary credentials like a name, address, and the last four digits of a social security number.

Once the funds were transferred to BetMGM, they were quickly withdrawn into a Venmo account controlled by the hacker.

It’s not clear whether this is the exact method that was used to defraud DraftKings and FanDuel customers, or whether these crimes were in any way related.

Philip Conneller
Philip Conneller Senior Reporter

In Philip Conneller’s eight years with Casino.org, he has covered the gaming industry from Las Vegas to Macau and everything in between. He currently focuses his coverage on gaming law, white-collar crime, global money laundering, tribal gaming, politics, and regulation.

Philip was the original features editor for poker’s Bluff Magazine and editor for Bluff Europe, which he helped launch. His writing has also been featured in ESPN, Forbes, Time Out, The Sun, and The Daily Star, as well as iGaming Business, eGaming Review, and numerous other industry news and tech websites.

His news stories for Casino.org/news have been linked by The Washington Post, The Daily Mail, People Magazine, and Jimmy Fallon's Tonight Show, among many others.

Philip once won $20,000 with 7-2 off-suit. He has been reprimanded for unwittingly playing Elton John’s piano on two separate occasions on both sides of the Atlantic.

He became a writer because he is a lousy pianist.

Philip lives outside London with his wife and children, where he spends his time agonizing about Arsenal FC.

Contact Philip at philip.conneller@casino.org.

Comments icon

Conversation (1 comment)

+ Add a comment
  • A
    Amber January 19, 2023
    I am hoping someone can help me. I recently have been receiving letters in the mail from a collection agency on behalf of fanduel stating… I am hoping someone can help me. I recently have been receiving letters in the mail from a collection agency on behalf of fanduel stating I owe them money which is absolutely IMPOSSIBLE and I stupidly ignored the letters assuming it was another scammer attempt... well today I checked my bank account and around 65 withdrawals of $25 were made... fanduel completely drained my account to the point I will never be able to catch my account back up once I receive a $36 overdraft charge for EVERY SINGLE TRANSACTION! I have 2 kids and can't even buy my daughter diapers now because of this! I can't get in touch with anyone feom fanduel about this. I don't know what to do and I really need someone's help!
    Reply

Write a comment

Your email address will not be published.