Cyber Incident Victim: Clearwater River Casino & Lodge
Date:
Oct 2020
Location:
United States of America
Summary
A cyberattack forced the temporary closure of two tribal gaming facilities, including Clearwater River Casino & Lodge, disrupting operations for approximately 10 days before services resumed. The incident impacted multiple casinos within the same tribal network, leading to a significant operational shutdown affecting both gaming and hospitality functions. Cybersecurity experts highlighted the event as an unusual but instructive case underscoring persistent digital threats facing the gaming industry, emphasizing the need for heightened preparedness against such disruptive attacks.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
A cyberattack targeting Clearwater River Casino & Lodge in Lewiston, Idaho, and It’se Ye-Ye Casino in Kamiah, Idaho, forced both tribal gaming properties to temporarily cease operations in late September or early October 2020. The attack disrupted normal business activities, necessitating a full closure that lasted approximately 10 days. This operational shutdown directly impacted casino services, guest accommodations at the Lodge, and associated facilities. The incident marked a significant disruption to tribal gaming operations in the region, with both properties remaining non-operational for over a week. No specific details regarding the attack vector, data compromise, or ransom demands were disclosed publicly.
The casinos resumed operations on Monday, October 5, 2020, following containment and recovery efforts. The reopening concluded the disruptive 10-day closure period triggered by the cybersecurity incident. Cybersecurity legal experts cited the event as an unusual but instructive case highlighting persistent risks to gaming infrastructure. While financial losses or data breach specifics remained undisclosed, the forced closure demonstrated tangible operational and reputational consequences. The coordinated reopening of both Idaho facilities indicated successful incident response measures, though technical remediation details were not shared publicly. Industry observers noted the incident underscored the need for heightened cybersecurity preparedness across tribal gaming enterprises facing similar threats.