Crown Resorts announced on Monday that a ransomware group had contacted the company, claiming to have gained access to some files related to Australia’s largest casino operator as a result of a data breach at file transfer service GoAnywhere.
“We were recently contacted by a ransomware group who claimed they have illegally obtained a limited number of Crown files,” a spokesperson said in a statement.
“We can confirm no customer data has been compromised and our business operations have not been impacted,” the spokesperson said, adding that the company is investigating the validity of the ransomware group’s claims.
Suspicious activity at GoAnywhere was discovered nearly two months ago by the cybersecurity firm Fortra, and it has impacted many organisations, including the mining giant Rio Tinto.
Crown has been under intense scrutiny in recent years after damaging investigations revealed that it enabled money laundering, while COVID-19 lockdowns harmed its profit and shares.
In the aftermath of state regulatory inquiries into Crown, all of which concluded that it was unfit for a gambling licence, the company was bought out in a $6.3 billion deal last June by U.S. private equity behemoth Blackstone Inc.