Cyber Incident Victim: Casino Del Sol
Date:
Feb 2024
Location:
United States of America
Summary
Casino Del Sol experienced a widespread system outage following an attempted cyberattack, disrupting operations across multiple services including ATMs, credit card processing, and electronic room keys, forcing table games and dining facilities to operate on a cash-only basis. The incident also disabled Wi-Fi, televisions, phones, and gift certificate processing, with partial ATM functionality restored at one location while others remained affected. The establishment collaborated with law enforcement agencies including the FBI and Pascua Yaqui Police Department, issuing apologies for guest disruptions and emphasizing ongoing efforts to prioritize security and restore normal operations.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On February 21, 2024, Casino Del Sol near Tucson, Arizona, experienced a widespread system outage following an attempted cyberattack. The disruption immediately impacted multiple operational systems, including ATM functionality, credit card processing capabilities, and electronic payment systems for table games, forcing a shift to cash-only transactions. Hotel operations were compromised as electronic room keys became inoperative, requiring staff to manually escort guests to their rooms. Network-dependent services including Wi-Fi, televisions, and phones ceased functioning across the property. By February 27, ATMs at Casino Del Sol had been partially restored, though those at its sister property, Casino of the Sun, remained offline. All restaurants, bars, and retail outlets continued operating under cash-only restrictions, with the casino unable to process gift certificates or vouchers. The outage persisted for six days with no public indication of full system restoration at the time of reporting. Guests reported significant inconveniences due to the lack of digital services and payment options throughout the incident duration.
Casino Del Sol confirmed the cybersecurity incident in a public statement on February 27, 2024, characterizing it as "an outside attempt" to access their systems. The organization engaged the Federal Bureau of Investigation and Pascua Yaqui Police Department to investigate the breach attempt. Operational recovery efforts prioritized restoring ATM services first while maintaining cash-based transactions for other services. The casino issued a formal apology to guests for disruptions caused by the incident, emphasizing that customer trust and security were their top priorities. No evidence of guest data compromise was disclosed in available reports. The partial restoration of ATMs at the primary casino location indicated phased recovery efforts, though sister property systems and non-ATM digital services remained impaired. Continuous system monitoring and law enforcement collaboration were maintained throughout the outage period. The incident caused measurable operational constraints across gaming, hospitality, and retail services for nearly a week. Public communications focused on acknowledging service limitations without specifying technical details of the attack vector or full restoration timelines.