

Dark Web Hackers Steal Millions From Casino | Cyber Extortion
Aug 3, 2025
Ricoh Danielson, a cybersecurity incident responder, sheds light on the alarming vulnerabilities in unsecured networks and devices, especially within hospitals. He discusses how ransomware gangs exploit these weaknesses through credential theft and phishing. The high stakes of cyber extortion are revealed, including the devastating impact of encrypted patient data and the complex negotiations surrounding ransom demands. With anecdotes from real incidents, Ricoh underscores the urgent need for robust cybersecurity measures to combat these modern threats.
AI Snips
Chapters
Books
Transcript
Episode notes
Threat Actors' Stealthy Tactics
- Threat actor gangs infiltrate networks by scanning and exploiting open ports and credentials over months.
- They exfiltrate data silently, then encrypt it for ransom, often remaining undetected for 6 to 18 months.
Hospital Ransomware Recovery
- Ricoh responded to a hospital ransomware attack that rendered it nonfunctional and demanded $1 million ransom.
- They restored data from backups, refused to pay ransom, and resumed patient care within a week.
Slot Machines as Network Entry
- Casino slot machines act as weak entry points on networks due to poor management and security.
- Threat actors exploit these 'smart dumb' machines to gain admin-level access and move laterally in systems.