Full House lottery, the charity lottery that contributed over $70 million towards advanced medical research and MRI technology, recently experienced a data security breach that compromised their servers. The phishing scam notice was posted on their Facebook page on Sunday.
Somehow, the hackers were able obtain their mailing list, and proceeded to send phishing emails to their customers.
In the emails, the lottery’s customers were invited to sign up for early VIP tickets at the bogus website address FHLottery.ca. The lottery’s real address is FullHouse.ca. The perpetrators requested all sorts of sensitive personal information, including credit card data.
Full House lottery confirmed there are no official early VIP tickets for sale. Apart from that, they also stated that they do not rent, sell, or share their mailing list, and that no credit card details are stored on their servers.
Frank Calder, the lottery’s manager, said that the group still does not have a clue how or when the data security breach occurred. According to him, it is likely that someone hacked their mailing list and sent out phishing emails to their customers.
The authorities have already been alerted, and the bogus website has since been taken down.
Last year, a similar breach occurred when digital thieves targeted Ontario’s Casino Rama. They got away with a decade’s worth of employee, customer, and vendor data. The hackers posted the stolen data online, but no extortion efforts have been made on their part. Apparently, this was only done to embarrass the casino.