Privacy settings

We use a number of cookies on our website. Some are essential, while others help us improve our portal for you.

Privacy settings

Here is an overview of all the cookies we use. You can choose to accept whole categories or view more information and select only certain cookies.

Essential (6)

Essential cookies enable basic functions and are necessary for the website to function properly.

Statistics (3)

Statistics cookies collect information anonymously. This information helps us to understand how our visitors use our website.
If the statistics cookies are subsequently deselected, they will remain on the computer until the expiry date. However, they are neither updated nor evaluated.

Online Casinos in general: Hacker attack on Merkur Bets (Page 23)

Topic created on 14th Mar. 2025 | Page: 23 of 23 | Answers: 344 | Views: 31,218
R3hab
Elite

Hacker attack on Merkur Bets

25th Apr. 2025, at 01:12 pm CEST#332
0 Likes

Nobody has liked this post so far
The data was never for sale, was it?
Think about what all those contacts are worth to operators of casinos abroad
If they were in their hands now
I'm pretty sure there would be big fines, not easy to get out of, but that's the way it is.
A few are filing a lawsuit to get money but that won't work

The hacker should have ripped off Merkur properly, now they're ripping us off again hahaha

This post has been translated automatically

frapi07
Elite

Hacker attack on Merkur Bets

25th Apr. 2025, at 01:43 pm CEST#333
1 Like

Liked this post: Avatar von Danny0815 Danny0815

R3hab wrote on 25.04.2025 at 13:12: The data was never for sale, was it?
Think about what all those contacts are worth to operators of casinos abroad
If they were in their hands now
I'm pretty sure there would be fat penalties, not easy to get out but so.
A few are filing a lawsuit to get money but that won't work

The hacker should have ripped off Merkur properly, now they're ripping us off again hahaha

That's right, the data was not for sale. There are strict rules for that.

I don't know if the data is that valuable for foreign casinos. Different laws apply than here. The data cannot be used simply because of the max bet or the Deposit limit. Due to the various parameters, a customer analysis does not make sense. Incidentally, a customer analysis was carried out by the hacker, who certainly did not have the consent of the company or the customers.


For criminals, on the other hand, the data is extremely valuable. They can do a lot with sensitive data. ID photos, e-mail address, telephone number, first and last name, bank information (IBAN) have been lost.

I don't know if you have read through all the pages, but there is already a company that is going to bring a class action (protectra). You pay nothing except a commission (if successful). I would only sue under certain conditions.

If encrypted data had been taken here, it would be easier to get out of it. But the data had no security and was encrypted. I don't know whether it's really easy to talk your way out of this. There really is gross negligence here - almost intent. We're not talking about a start-up here, but about a company worth billions.

This post has been translated automatically

R3hab
Elite

Hacker attack on Merkur Bets

25th Apr. 2025, at 03:04 pm CEST#334
0 Likes

Nobody has liked this post so far
Exactly we are talking about companies with infinite resources whose lawyers are certainly not the correct ones but the worst ones

I believe that casinos would pay a lot of money to get the customer contacts

Credit card data is important for criminals
But the contacts of the addicts are worth much more, because they can always pull off again

We'll see, I mean it's going nowhere, like puf paf it was nothing hehe😂

This post has been translated automatically

frapi07
Elite

Hacker attack on Merkur Bets

25th Apr. 2025, at 05:05 pm CEST#335
1 Like

Liked this post: Avatar von Danny0815 Danny0815

R3hab wrote on 25.04.2025 at 15:04: Exactly we are talking about companies with infinite resources whose lawyers are certainly not the correct ones but the worst ones

Believe that casinos would pay a lot of money to get the customer contacts like this

Credit card data is important for criminals
But the contacts of the addicts are worth much more, because they can always pull off again

We'll see, I mean it's going nowhere, like puf paf it was nothing hehe😂

Of course they have good lawyers. Just like Facebook (if not even better). Nevertheless, Facebook lost the class action lawsuit and had to pay. That's why I mentioned that I would only advise an individual lawsuit to a limited extent.

Can't tell you exactly. I'm not in it, but for me such data would be useless. At least a large part of it. The hacker found out that the casinos only earn really well with 8-10% of the players. This data might also be of some interest to them, even if a lot of it is throttled here.

Unfortunately, such a lawsuit takes time. I estimate 3-4 years. So nobody will see their money before 2027.

This post has been translated automatically

R3hab
Elite

Hacker attack on Merkur Bets

25th Apr. 2025, at 06:19 pm CEST#336
0 Likes

Nobody has liked this post so far

frapi07 wrote on April 25th, 2025 at 5:05 pm:

Sure they have good lawyers. Just like Facebook (if not even better). Nevertheless, Facebook lost the class action and had to pay. That's why I mentioned that I would only advise an individual lawsuit to a limited extent.

Can't tell you exactly. I'm not in it, but for me such data would be useless. At least a large part of it. The hacker found out that the casinos only make good money with 8-10% of the players. This data might also be of some interest to them, even if a lot of it is throttled here.

Unfortunately, such a lawsuit takes time. I estimate 3-4 years. So nobody will see their money before 2027.

Yep, you're right, it will drag on and certainly take forever

This post has been translated automatically

MisterL
Expert

Hacker attack on Merkur Bets

27th Apr. 2025, at 07:36 am CEST#337
0 Likes

Nobody has liked this post so far
when it comes to paying: "no mercy" for the germanic tribes

This post has been translated automatically

Danny0815
Rookie

Hacker attack on Merkur Bets

30th Apr. 2025, at 08:50 pm CEST#338
0 Likes

Nobody has liked this post so far
Looks like a lot of customers are exercising their right to information (or too few employees are processing the requests or the delay is part of a tactic).
From Merkur Sports:

Dear customer,

we once again confirm receipt of your request for information in accordance with Art 15 GDPR from ________ (date of successful customer identification) and inform you in accordance with Art 12 Para. 3 S 1 GDPR that due to the currently very high number of requests for information, the processing period must be extended. Due to the current situation, your request cannot be processed within 1 month of receipt. The response to your request is expected to take three months from receipt of the request. We will endeavor to process your request more quickly.

Yours sincerely,
Your Privacy Team


For those who are interested, I've selected the relevant text.

Art. 12 GDPR

(3) The controller shall provide the data subject with information on the measures taken in response to a request pursuant to Articles 15 to 22 without undue delay and in any event within one month of receipt of the request. This period may be extended by a further two months if necessary, taking into account the complexity and number of requests. The controller shall inform the data subject of any extension of the time limit within one month of receipt of the request, together with the reasons for the delay. If the data subject submits the request electronically, he or she shall be informed electronically wherever possible, unless he or she indicates otherwise.



This post has been translated automatically

Falko
Icon

Hacker attack on Merkur Bets

1st May. 2025, at 10:26 pm CEST#339
0 Likes

Nobody has liked this post so far
This week the electronic patient file was hacked by harmless hackers and then they reported it immediately. So it's comparable to the Merkur Bets hacker. But you can see from this that the electronic patient file is anything but secure. After all, they want the entire population to be recorded electronically in the future. Many millions would then be affected by data theft, many more than with the Merkur Bets hack. If even the EPA, a prestige object of the last government, is hacked, Merkur Bets will probably have nothing to fear here. That's just the way it is in digital spaces: you can't guarantee 100 % security.

This post has been translated automatically

gamble1
Icon

Hacker attack on Merkur Bets

1st May. 2025, at 11:14 pm CEST#340
6 Likes

Falko wrote on 01.05.2025 at 22:26: This week the electronic patient file was cracked by harmless hackers and then they reported it immediately. So it's comparable to the Merkur Bets hacker. But you can see from this that the electronic patient file is anything but secure. After all, they want the entire population to be recorded electronically in the future. Many millions would then be affected by data theft, many more than with the Merkur Bets hack. If even the EPA, a prestige object of the last government, is hacked, Merkur Bets will probably have nothing to fear here. That's just the way it is in digital spaces: you can't guarantee 100 % security.

In principle, you are right, but it should not be forgotten that, according to the hacker's own statement, no attempt was even made to adequately secure the data obtained. It could have been protected, but was either forgotten or deliberately omitted - and that makes a significant difference.

Of course, there is no such thing as one hundred percent security. But if someone breaks into your car and steals your wallet, the Insurance will pay out. However, if you leave the windows open or don't lock the car, you will be accused of negligence - and the insurance won't pay.

This post has been translated automatically

slotliebe89
Elite

Hacker attack on Merkur Bets

1st May. 2025, at 11:43 pm CEST#341
1 Like

Liked this post: Avatar von gamble1 gamble1

gamble1 wrote on 01.05.2025 at 23:14:

Basically you are right, but one must not disregard the fact that, according to the hacker's own statement, no attempt was even made to adequately secure the data obtained. So it could have been protected, but it was either forgotten or deliberately omitted - and that is a significant difference.

Of course, there is no such thing as one hundred percent security. But if someone breaks into your car and steals your wallet, the Insurance will pay out. However, if you leave the windows open or don't lock the car, you will be accused of negligence - and the insurance won't pay.

GUTS comparison.

This post has been translated automatically

frapi07
Elite

Hacker attack on Merkur Bets

2nd May. 2025, at 07:53 am CEST#342
4 Likes
gamble1 wrote on 01.05.2025 at 23:14:

Basically you are right, but one must not disregard the fact that, according to the hacker's own statement, no attempt was even made to adequately secure the data obtained. So it could have been protected, but it was either forgotten or deliberately omitted - and that is a significant difference.

Of course, there is no such thing as one hundred percent security. But if someone breaks into your car and steals your wallet, the Insurance will pay out. However, if you leave the windows open or don't lock the car, you will be accused of negligence - and the insurance won't pay.

If even GJ encrypts its data (not just passwords, but also e-mail addresses), then an online casino should do so all the more. The data appears to have been in plain text, otherwise the hacker would surely have written that she first had to decrypt the data records she had obtained. As you and I have pointed out several times --> negligent and naive (especially in the year 2025). If this is not punished, then it really is an indictment.

This post has been translated automatically

gagapapamama
Elite

Hacker attack on Merkur Bets

2nd May. 2025, at 09:49 am CEST#343
1 Like

Liked this post: Avatar von Druff Druff

frapi07 wrote on 02.05.2025 at 07:53:
If even GJ encrypts his data (not only passwords, but also e-mail addresses), then an online game library should do it all the more. The data seems to have been in plain text, otherwise the hacker would surely have written that she first had to decrypt the data records she had obtained. As you and I have pointed out several times --> negligent and naive (especially in the year 2025). If this is not punished, then it really is an indictment.

I say again that nothing will come of it, you can get your hopes up but they die last. My guess is that the Ggl will impose a fine and the players will go away empty-handed as usual.

This post has been translated automatically

frapi07
Elite

Hacker attack on Merkur Bets

2nd May. 2025, at 10:16 am CEST#344
2 Likes

Liked this post: Avatar von Danny0815 Danny0815, Avatar von Yvonka Yvonka

gagapapamama wrote on 02.05.2025 09:49:

I say again that nothing will come of it, you can get your hopes up but they die last. My guess is that the Ggl will impose a fine and the players will go away empty-handed as usual.

Maybe. I'm not clairvoyant. A fine is possible, but I somehow have my doubts. Facebook didn't have to pay a fine in Germany back then. They were fined for it, but by the Irish data protection authority. Ultimately, the attempt does no harm because Protectra only pays if the lawsuit is successful. From that point of view, you can only join in and wait and see

This post has been translated automatically

Danny0815
Rookie

Hacker attack on Merkur Bets

20th May. 2025, at 05:18 pm CEST#345
0 Likes

Nobody has liked this post so far
I found SlotMagie's response to my request for data information very amusing (cheeky):



In order to process your request, please attach proof of identity (e.g. a copy of a valid ID document).



Danny0815 wrote on March 31st, 2025 at 1:19 pm:
Yeah no, it's clear. I will definitely send a copy of my ID to the club that has just lost control over, among other things, copies of ID.
Uh... no.

In the meantime, Crazy Buzzer (or after the merger now Slot Magie) has handed over the requested data - without any additional proof of identity, which they would have had to justify, which they obviously couldn't or didn't want to do.

This shows quite well that you don't necessarily have to jump over every stick that is held out to you.
But also how long everything takes.
you can't get "quick money" here, only a certain probability of X amount in X years.
On the other hand, you have nothing to lose in a class action and almost no personal expense.

Protectra, which represents those affected in a potential future class action, was quite helpful in this case and promptly emailed me a suitable template on request, which I only had to complete with my details.
It basically simply explained the relevant paragraphs again and pointed out the possibility of lodging a complaint with the data protection supervisory authority.

This post has been translated automatically

DieWunderharke5000
Expert

Hacker attack on Merkur Bets

6th Jun. 2025, at 11:06 am CEST#346
0 Likes

Nobody has liked this post so far
Almost a month after my GDPR 15 request, I received the information that it will take 3 months to process it due to the high number of requests.

But I also expected the same.

This post has been translated automatically

Hot Topics15th Jun. 2025 at 02:33 pm CEST

Sports betting
0
Bonus
0
Offline Casinos
0

GambleJoe Team

Profile picture of JulianJulian
Community-Manager / Complaint SpecialistProfile picture of CounterCounter
Software developerProfile picture of MatthiasMatthias
Project manager
Profile picture of DanielDaniel
Founder

Community Forum-Moderators

Members who assist the GJ team in moderating the forum.
Profile picture of AndreAndre
Profile picture of gamble1gamble1
Profile picture of Langhans_innenLanghans_innen
Profile picture of SaphiraSaphira
GambleJoe is aimed exclusively at user whose allowed to play legally with his current location in online casinos and does not violate the current law.
It is the responsibility of the user to inform himself about the current legal situation. Gambling is prohibited for children and adolescents under the age of 18.
GambleJoe is a registered trademark with the EUIPO of GJ International Ltd.
© 2012-2025 GambleJoe.com

Forgotten your password?

Create a new password here

  • 1. Fill in the 3 fields carefully and click on the green button
  • 2. Check your email inbox for a message from GambleJoe
  • 3. Click on the confirmation link in the email and your new password will be active immediately