• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

The Fish Tank Casino Heist – Daily Security Byte

April 27, 2018 By Corey Nachreiner

According to a Darktrace, hackers stole a casino’s database through a fancy Internet of Things (IoT) fish tank. While the report doesn’t really share much technical detail, it does suggest the hacker found some hole in the cloud-connected thermometer the fish tank used. Watch the YouTube video below for more detail, and to hear what you should do to better protect your IoT devices.


Episode Runtime: 4:07

Direct YouTube Link: https://www.youtube.com/watch?v=06nH2wuthRQ

EPISODE REFERENCES:

  • Hackers steal a casino database through a fish tank – Business Insider
  • Darktrace’s 2017 Global Threat Report with the fish tank hack [PDF] – Darktrace.com

—Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Security Bytes Tagged With: data breach

Comments

  1. Jim Fuller says

    April 27, 2018 at 9:30 pm

    The use of a fish tank controller is a real possibility. Please look at the information at:
    https://www.neptunesystems.com/

    I own one of these. If you follow the installation instructions, the default logon is admin with password 1234. This creates a security whole. They use a site called Fusion for remote access. If you do not change passwords, etc, I can see and actually used mine to access a network.

    I am still in favor of people using IoT devices following your advice of changing at least the default password.

    Jim Fuller

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • US National Cybersecurity Strategy
  • Here Come The Regulations
  • Cybersecurity’s Toll on Mental Health

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • Cybersecurity News: LastPass Incident Revealed, White House Issues Cybersecurity Strategy, FBI Purchases Leaked USHOR PII Data, and a Slew of Other Breaches
  • An Update on Section 230
  • Here Come The Regulations
  • US National Cybersecurity Strategy
  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use