What Happened
In November 2024, International Game Technology (IGT), a global gaming technology provider for lotteries, slot machines, sports betting, and casinos, suffered a cyberattack when an unauthorized third party gained access to certain internal IT systems on November 17, causing disruptions to portions of its applications. The Qilin ransomware group later claimed responsibility in 2025, asserting they exfiltrated 10GB of data (about 21,683 files) and published it on their dark web leak site after IGT reportedly refused to pay ransom demands, though IGT has not confirmed the ransomware link or specifics. A subsequent investigation, completed August 21, 2025, revealed the breach exposed sensitive personal information—including names, contact details, birthdates, government IDs, Social Security numbers, financial account details, and health data—for 103,879 individuals collected via IGT, Brightstar Lottery Group, and associated lottery/gaming venues; no public-facing or player systems were affected, and IGT activated its incident response, took systems offline, and implemented continuity measures.
