TwinSpires HACKED!!!!

P-Dub · September 10, 2012, 01:17:39 PM

TGJB Wrote:
-------------------------------------------------------
> So I gotta question. How come this is not the
> biggest story in the industry right now, coverage
> everywhere.

I\'m shocked it isn\'t.

I\'ve looked around and have found practically nothing. A few message boards are talking about it, saw nothing on the DRF site. Incredible. This is huge news.

miff · September 10, 2012, 01:18:10 PM

\"So I gotta question. How come this is not the biggest story in the industry right now, coverage everywhere\"

....well

1)It\'s a voiceless player issue and no one got robbed!

2.Because Joe Dope et al are too busy \"investigating\" stats on trainers with multiple class 3 and 4 pico positives or the inane lasix thing.

3.CD will downplay the crap out of it so that it goes away asap(when did CD know and when did they inform their customers?)

The bigger picture here, again, is that a $13 billion gambling business is run by mainly lightweights in all areas.Acknowledge that the computers geeks can hack into many things you would never expect but would also expect world class security on a betting site.

TGJB · September 10, 2012, 01:35:33 PM

Miff-- I agree and 3 is a very big deal.

I made a call after posting, the industry publication I talked to wasn\'t really aware of what was going on. I directed them to this string, we\'ll see where this goes from here.

Now that you mention it, it\'s freaking unbelievable that Drape isn\'t covering this.

Boscar Obarra · September 10, 2012, 03:34:50 PM

Still seeing a lot more \'hits\' than 20% would justify. Either they have a huge membership or they lowballed the #.

Don\'t forget to put that fraud alert on your account, it takes a few minutes to do online. Yes, online. lasts for 90 days at a time, then you have to renew.

Should reduce the chance of someone opening an account in your name, if attempted.

Of course, the bad guys may well sit on info for a long time until the \'heat\' is off.

RICH · September 10, 2012, 05:17:52 PM

I say go to CT OTB, plus you get a rebate for TG sheets, been there for over 20 yrs. I live in CT and can get money in/out in a split second. However, there is no online access only phone, never been shut out, and there is a push button betting no phone option, although its cumbersome.

banditbeau · September 10, 2012, 06:30:44 PM

Agree on the 20% number - seems to be much higher. Playing a different angle with this thought which could be totally out in right field but... I am curious how many of you that got the notice actually \"use\" their account there for actual wagering as in the bulk of their wagers vs how many only use the account to watch the races there and then make their wagers some other place or method? Could it be a way for Twin Spires to sort of weed out their low volume accounts, and thus, since they wager very little, not feel the urgency to inform account holders of the intrusion? Sounds crazy but so does not informing people for a month their data was violated. They picked up a number of Youbet accounts who maybe did not wager much also. So, it does not justify how it has/is being handled, but am curious as to the level of play for those receiving the notices? bb

Silver Charm · September 10, 2012, 06:50:18 PM

Taking the other side of that argument. If you were a Whale Player how would you feel if you were notifed of a Penetration and Breach of their Security Walls and you kept $10,000\'s of thousands of $dollars$ on account there??? What would you do next??

Secondly if TwinSpires told you your Account wasnt Violated in the Attack and your Identity was subsequently stolen, how could you prove it was because of the Twin Spires intrusion??

I know I know. Its because their word said it wasnt......

P-Dub · September 10, 2012, 06:59:29 PM

banditbeau Wrote:
-------------------------------------------------------
> Agree on the 20% number - seems to be much higher.
> Playing a different angle with this thought which
> could be totally out in right field but... I am
> curious how many of you that got the notice
> actually \"use\" their account there for actual
> wagering as in the bulk of their wagers vs how
> many only use the account to watch the races there
> and then make their wagers some other place or
> method? Could it be a way for Twin Spires to sort
> of weed out their low volume accounts, and thus,
> since they wager very little, not feel the urgency
> to inform account holders of the intrusion?
> Sounds crazy but so does not informing people for
> a month their data was violated. They picked up a
> number of Youbet accounts who maybe did not wager
> much also. So, it does not justify how it has/is
> being handled, but am curious as to the level of
> play for those receiving the notices? bb

I churn thousands a month, and wager there exclusively.

I don\'t care what percentage of accounts have \"low volume\". That shouldn\'t have any bearing on letting people know information was breached.

Themig · September 11, 2012, 05:16:52 AM

Just reading today\'s edition of Indian Charlie and they make mention of how it took the ONE MONTH to report it by mail and was sent by Experian and NOT CDI. Of course this is all known but I find it funny that Indian Charlie is writing about it and not the DRF.

miff · September 11, 2012, 05:55:10 AM

DRF should cover the hacking but far more sexy for DRF to be writing about 26 nano positives of a class 4 legal med,prednisone(used by many,many trainers as preventive for lung mucous.Many vets recommend it,Sight??

New super test picked up the overage,old test not as sensitive.A discussion to eliminate class 4\'s as a positive at all being looked at in several jurisdictions in light of the terrible perception of racing vs the benefit of the drug.This another example of the overuse of therapeutics,so change the rules already and stop permitting the legal regimen used by the super trainer.

Joe Dope on a plane with his investigative team heading for Chicago to cover this profound \"doping\" finding.The Twin Spires hacking story has no legs and is not sexy enough!

HP · September 11, 2012, 09:25:32 AM

Joe Dope. Hilarious. Racing has no one to blame for this but it\'s own inability to impose any discipline whatsoever on anyone.

Dutrow, 52, has been cited for nearly 70 violations at 15 racetracks in nine states.

You want to see change? Start throwing these guys our already. I suppose ALL of these violations are insignificant or nano-whatevers. Just like Mullins.

HP

miff · September 11, 2012, 09:52:12 AM

\"I suppose ALL of these violations are insignificant or nano-whatevers. Just like Mullins.

HP,

Close,most are nano/pico non performing enhancing whatevers. The more serious Class 1 and 2, which are rare at major circuits, are dealt with more forcefully.What Class 1/2 violations did Mullins get?, missed those.

We could also start jailing people for jay walking or spitting on the sidewalk while racing throws out the repeat Class 3/4 offenders.Or, they could just not make nano/pico overages violations any more, they\'ve done that with several drug type overages in the past.

Whatever floats your boat.

Mike

HP · September 11, 2012, 10:03:18 AM

They haven\'t thrown ONE person out. They don\'t enforce suspensions. I know, it\'s all aspirin. Nothing important. Blame Joe Drape. Good luck.

HP

miff · September 11, 2012, 10:04:49 AM

HP,

Ok lets play, name the person at a major circuit, that should be thrown out and why.The floor is yours!

Mike

TGJB · September 11, 2012, 10:07:30 AM

Pdub-- Right. And the fact that someone might think they have to move their money is exactly why you are obligated to tell them.

At some point there will be serious investigative reporting on this story and it will be interesting to see what the fallout is. Pretty sure CD isn\'t going to say \"we didn\'t tell customers they were in jeopardy because that would have cost us money\", though.