Privacy settings

We use a number of cookies on our website. Some are essential, while others help us improve our portal for you.

Privacy settings

Here is an overview of all the cookies we use. You can choose to accept whole categories or view more information and select only certain cookies.

Essential (6)

Essential cookies enable basic functions and are necessary for the website to function properly.

Statistics (3)

Statistics cookies collect information anonymously. This information helps us to understand how our visitors use our website.
If the statistics cookies are subsequently deselected, they will remain on the computer until the expiry date. However, they are neither updated nor evaluated.

Online Casinos in general: Hacker attack on Merkur Bets (Page 2)

Topic created on 14th Mar. 2025 | Page: 2 of 22 | Answers: 319 | Views: 25,217
Benno444
Visitor

Hacker attack on Merkur Bets

14th Mar. 2025, at 10:05 am CET#16
1 Like

Liked this post: Avatar von bigbig bigbig
I also received the same e-mail from Crazy Buzzer. They're all connected somehow. But I've been fed up with being ripped off in Online Casinos for a while now and have had my account deleted or blocked. The only question is what they mean by deleting and blocking. Maybe request data information?

The problem with data theft is not necessarily just the money. In most cases, it will probably be possible to get it back. It's more complicated when it comes to creditworthiness or contracts and subscriptions.

This post has been translated automatically

frapi07
Elite

Hacker attack on Merkur Bets

14th Mar. 2025, at 10:12 am CET#17
1 Like

Liked this post: Avatar von Benno444 Benno444

Stromberg wrote on 14.03.2025 at 09:55:

I always thought the images were only used by the Verification service provider. Of course, if it's their own software, then it's not. Still, it's unacceptable that they are not deleted afterwards.

Yes, precisely because we know that a lot can be done with ID photos. I know someone whose email was also hacked (I don't know the method) and by chance there was still an old email with the ID in it. This person then received orders for things, financing was attempted, etc. There was no financial loss, but the parcels had to be returned etc. The whole thing really shouldn't be underestimated, even if no credit card information was lost. Depending on whether you write the truth here and really know that the culprits only want to point out security loopholes, you also have to expect that all the data records will be sold somewhere on the dark web or used yourself.

This post has been translated automatically

JJepsa96
Amateur

Hacker attack on Merkur Bets

14th Mar. 2025, at 10:23 am CET#18
4 Likes
I hope that Gamble Joe stays on top of this story with his editors.
After all, it concerns licensed stalls.

This post has been translated automatically

StarGames_Official
Top Member

Hacker attack on Merkur Bets

14th Mar. 2025, at 10:47 am CET#19
0 Likes

Nobody has liked this post so far
TonioKroeger wrote on 14.03.2025 at 09:29: I can no longer Deposit at StarGames. Could that be related to this?

No, we had technical difficulties that have since been resolved. Not related. Thank you for your understanding.

This post has been translated automatically

Zockerbernd
Amateur

Hacker attack on Merkur Bets

14th Mar. 2025, at 11:01 am CET#20
1 Like

Liked this post: Avatar von bigbig bigbig
If the GGL doesn't at least ban Gauselmann / Merkur for this on the German gambling market then I'll eat a broom on a stick. But I'm also looking forward to the 10 freespins in Fire Joker on 5 cents with 40x Wagering requirements and 50€ max cashout A complete data set with all information, ID, photos etc. is sold on the Darknet as Full Info Unused is worth about 50-100 € a single data set and now calculate how many customers and verified players are registered on these sites through the CrazyBuzzer 5€ bonus etc freespins alone. But yes, it was activists who handed over a data set worth millions as a whitehat hacker to Merkur, anyone who believes that is out of their depth, quite honestly

This post has been translated automatically

Zockerbernd
Amateur

Hacker attack on Merkur Bets

14th Mar. 2025, at 11:08 am CET#21
1 Like

Liked this post: Avatar von bigbig bigbig
Maybe Merkur has paid millions for it anyway, sweep it under the table and just send out these mails, don't worry haha, the dump is not deleted, strangers have the database even if Merkur was blackmailed and does not admit it now.

This post has been translated automatically

Zockerbernd
Amateur

Hacker attack on Merkur Bets

14th Mar. 2025, at 11:17 am CET#22
1 Like

Liked this post: Avatar von bigbig bigbig
I'm also really curious to see how many media reports will appear on the matter. For me, it's just a huge thing that's happened. You could actually call it a SUPER disaster.

Oh yes, I'm abiding by the German blackmail laws and am being robbed at unfair conditions and to top it all off, I'm being leaked and doxxed. You can't make it all up anymore,

This post has been translated automatically

Zockerbernd
Amateur

Hacker attack on Merkur Bets

14th Mar. 2025, at 11:39 am CET#23
1 Like

Liked this post: Avatar von Stromberg Stromberg
I also understand the people who now say, well, I always take the Risk wherever I register anyway, but you still have to differentiate between a webshop database and a database like the one that was apparently stolen here with ALL the information. In the worst case, as it seems to be with the ID, photos and possible Verification selfies etc. you can't describe it any other way than Black Friday today or SUPERGAU in the German gambling market.

PS: I don't want to create a mood, even if it comes across that way, I just want to point out what a no-go fatal error the whole thing is.

This post has been translated automatically

frapi07
Elite

Hacker attack on Merkur Bets

14th Mar. 2025, at 12:13 pm CET#24
1 Like

Liked this post: Avatar von Toastbrot Toastbrot

Zockerbernd wrote on 14.03.2025 at 11:39 am: I also understand the people who now say, yes well, I always take the Risk wherever I register anyway, but you still have to distinguish between a webshop database and a database like the one that was apparently stolen here with ALL the information. In the worst case, as it seems to be with the ID, photos and possible Verification selfies etc. you can't describe it any other way than Black Friday today or SUPERGAU in the German gambling market.

PS: I don't want to create a mood, even if it comes across that way, but rather to show what a no-go fatal error the whole thing is.

No one has given me the impression that they are taking this report lightly. But what do you want to do at the moment? Unfortunately, it is probably normal for companies to first try to reassure customers and possibly even talk down the incident. I don't think you can get any further without a class action anyway. Companies don't like to admit that they've messed something up. Especially when there is a theoretical compensation in the room.

No compensation after data leak from music streaming platform Here is a 1-year-old judgment. Not every data leak entitles you to compensation. I think that the judges could decide differently here, especially because ID photos etc. were also tapped. These should have been 100% more secure (encrypted) or destroyed after use.

This post has been translated automatically

Frankey
Experienced

Hacker attack on Merkur Bets

14th Mar. 2025, at 12:16 pm CET#25
0 Likes

Nobody has liked this post so far

Win wrote on March 14, 2025 at 06:51: Hello,

i received this email last night:


Hello XXX,

we are contacting you today to inform you about a recent data breach on our platform merkurbets.de : Our IT systems have been attacked by hackers. They have gained unauthorized access to customer data. As the hackers acted in a highly professional manner, but not criminally, they informed the responsible supervisory authority, but did not use the data to the detriment of our customers.

We attach great importance to transparency and would therefore like to explain the background and possible risks to you and explain what steps we have already taken.

Despite extensive security measures, the IT system of one of our service providers was the target of a cyber attack. Unauthorized third parties, who apparently wanted to draw attention to potential security gaps, discovered points of attack in our systems and gained access to personal customer data. However, as far as we are currently aware, these activists have no intention of passing on or misusing the information obtained.

Based on current information, the incident concerns the following customer data: Name, address, transactions and account data (if these were available), ID data, photos from video identification and Risk ratings regarding the risk of gambling addiction.

The important thing is: Your passwords have not been stolen and are still secure, so there is no need to change your passwords. However, if you would like a greater sense of security, we recommend that you update your passwords at regular intervals.

As far as is currently known, the attack was primarily directed against our company and not specifically against individual customers. There are no indications that the data viewed was or is being misused for fraudulent purposes. In addition, the report was made to us via the Joint Gaming Authority of the federal states (GGL) and not via the hackers themselves. Nevertheless, we are monitoring the situation very closely and are in close contact with our IT security experts and the relevant authorities.

Although we consider the risk to be low, we would like to draw your attention to the following potential risks:

Identity theft: Your data could be used for fraudulent purposes, for example to conclude contracts.

Phishing attacks: Fraudsters could use personal data to contact you specifically by e-mail, telephone or text message in order to obtain further information from you or to persuade you to click on malicious links.

As a precautionary measure, we recommend that you remain vigilant, do not send sensitive data unencrypted and check your bank and credit card statements for unusual transactions.

Upon discovery of the incident, we immediately took all necessary measures to restore the security of the systems. For example, we arranged for all identified security gaps to be closed immediately. The responsible data protection authorities have been informed in accordance with the regulations. We are still in contact with the Joint Gaming Authority of the federal states and are working intensively on the protective mechanisms.

We also continuously review our security measures and update internal processes and employee training in order to prevent similar incidents in the future. We will also carry out more audits with other security experts in order to identify and eliminate any weaknesses at an early stage and prevent a recurrence of such an incident.

If you have any further questions about this incident, you will find a wealth of information in our FAQs. You can access these under the following link:

www.merkurbets.de/de/page/wichtige_informationen

Thank you for your trust and support.

With kind regards,
Your MERKUR BETS Team



Now I have verified myself via video. This means that a hacker has all my data and pictures (why are these pictures stored at all) and could do God knows what with them. Where does Merkur Bets get the certainty that this data will not be sold on the darknet or elsewhere and subsequently misused? Only from the fact that the oh-so-great gambling authority has been informed.

Is anyone here still with Merkur (verified) in the forum? What do you think?

For someone like me who places a lot of value on privacy on the internet (no social media, no picture or anything like that), this is like a nightmare right now.

Your data is okay. It was 'white hat hackers' who did it either because there was one or, as here, for fun. They stole nothing but showed how to do it on Merkur

This post has been translated automatically

Falko
Icon

Hacker attack on Merkur Bets

14th Mar. 2025, at 12:58 pm CET#26
0 Likes

Nobody has liked this post so far
As the hackers acted in a highly professional manner, but not criminally, they informed the relevant supervisory authority, but did not use the data to the detriment of our customers. - I find this sentence confusing, how can this be described as non-criminal, what else is it if not criminal?

This post has been translated automatically

Stromberg
Legend

Hacker attack on Merkur Bets

14th Mar. 2025, at 01:02 pm CET#27
0 Likes

Nobody has liked this post so far

Frankey wrote on March 14, 2025 at 12:16 pm:

Your data is okay. It was 'white hat hackers' who did it either because there was one, or like here, for fun. They stole nothing but showed how to do it with Merkur

Grey Hat Hacker rather or? Are white hat hackers not commissioned?


I just googled it, don't know my way around... 😄

This post has been translated automatically

slotliebe89
Elite

Hacker attack on Merkur Bets

14th Mar. 2025, at 01:03 pm CET#28
1 Like

Liked this post: Avatar von Falko Falko

Falko wrote on 14.03.2025 at 12:58: Since the hackers acted in a highly professional but not criminal manner, they informed the responsible supervisory authority, but did not use the data to the detriment of our customers. - I find this sentence confusing, how can this be described as non-criminal, what else is it if not criminal?

And how does Merkur Bets know that the hackers acted in a highly professional manner, but not criminally, and that the data was not used to our disadvantage? Have you had another brief consultation with the hackers?

This post has been translated automatically

Stromberg
Legend

Hacker attack on Merkur Bets

14th Mar. 2025, at 01:04 pm CET#29
1 Like

Liked this post: Avatar von Falko Falko

Falko wrote on 14.03.2025 at 12:58: Since the hackers acted in a highly professional but not criminal manner, they informed the responsible supervisory authority, but did not use the data to the detriment of our customers. - I find this sentence confusing, how can this be described as non-criminal, what else is it if not criminal?

It is criminal if it is not commissioned, yes. But there may be no malicious intent behind it, it's just to draw attention to security vulnerabilities.

So irge diwe criminal but also somehow good... Like Robin hood😂

Let's hope that this was actually the case here too.

This post has been translated automatically

Gamer
Rookie

Hacker attack on Merkur Bets

14th Mar. 2025, at 01:25 pm CET#30
0 Likes

Nobody has liked this post so far
I hope that other casinos that are not yet affected have noticed the problem and are checking and improving their own security standards.

This post has been translated automatically

Hot Topics16th Apr. 2025 at 07:52 pm CEST

Online Casinos
0
Miscellaneous
0
Miscellaneous
0

GambleJoe Team

Profile picture of JulianJulian
Community-Manager / Complaint SpecialistProfile picture of CounterCounter
Software developerProfile picture of MatthiasMatthias
Project manager
Profile picture of DanielDaniel
Founder

Community Forum-Moderators

Members who assist the GJ team in moderating the forum.
Profile picture of AndreAndre
Profile picture of gamble1gamble1
Profile picture of Langhans_innenLanghans_innen
Profile picture of SaphiraSaphira
GambleJoe is aimed exclusively at user whose allowed to play legally with his current location in online casinos and does not violate the current law.
It is the responsibility of the user to inform himself about the current legal situation. Gambling is prohibited for children and adolescents under the age of 18.
GambleJoe is a registered trademark with the EUIPO of GJ International Ltd.
© 2012-2025 GambleJoe.com

Forgotten your password?

Create a new password here

  • 1. Fill in the 3 fields carefully and click on the green button
  • 2. Check your email inbox for a message from GambleJoe
  • 3. Click on the confirmation link in the email and your new password will be active immediately