PartyPoker Reinforces Transparency After DDoS Attack
There is a stark difference between online poker sites in today’s internet gambling environment.
Operators that are part of publicly-traded companies are accountable to their customers and investors, so transparency is not only appreciated but required. Whether issues arise pertaining to customer satisfaction or in the technology sphere, they must all be taken seriously, addressed, and resolved.
On the other hand, independent, private companies do not have those requirements. However, operators that want to survive and thrive in a competitive industry – and in which some of them function on the fringes of the law – should want to be transparent and prove their trustworthiness. They should aspire to ally themselves with their customers, striving for the highest levels of reliability, honor, and transparency. But some of them shirk those responsibilities to their players because they can.
Over the past week, two online poker sites were victims of DDoS (distributed denial of service) attacks. Hackers of unknown origins attacked the baseline systems of PartyPoker and Americas Cardroom – in separate attacks, presumably – to disrupt their services. It put the sites and their customers in danger of the theft of private information, inconvenience, and financial losses of varying degrees.
The way the two sites handled the problems highlights the difference between the two primary types of poker operators in the business.
PartyPoker Uses Transparency
On a Thursday night, a couple thousand players are likely to be at the cash game and tournament tables of PartyPoker. The evening hours are the busiest; depending on what events and satellites are being offered, there could be anywhere from 1,000 to 2,500 players on the site at that time.
Last Thursday night, players were booted from PartyPoker without warning. Games stopped, players were unable to make any moves, including accessing their accounts.
We are aware of ongoing issues I can assure you our team are doing their very best to resolve and resume normal service
We apologise for the inconvenience and will update you all once resolved in full.— PartyPoker (@partypoker) August 9, 2018
Moments later, PartyPoker revealed via Twitter that it had been targeted by a DDoS attack, and the problem was being addressed.
Apologies for the technical difficulties, we are working to rectify, the site has been targeted with a DDoS attack from third parties. We hope to resume normal business very soon and will keep you updated. Thank you for your patience
— PartyPoker (@partypoker) August 9, 2018
The messages continued with regularity throughout the night, vowing a resolution by the following day. While players remained frustrated, it was clear that the operator was aware and capable of fixing the issues, as well as reimbursing all players.
We are still working on fixing the problems with the poker software, more information will follow. Please rest assured that all refunds will be processed tomorrow. We appreciate your patience.
— PartyPoker (@partypoker) August 9, 2018
Soon after, a note was posted prominently on the PartyPoker blog, complete with an explanation, a few words from Managing Director Tom Waters, and a link to the site’s disconnection and cancellation policy. They admitted that the initial DDoS attack from a third party was followed by subsequent attacks. There would also be an effort to mitigate future attacks.
The best news for players was that all refunds from tournaments that were affected would be completed within 24 hours. Players with concerns or questions were encouraged to contact the customer service department for more information.
Please read this apology and explanation for the recent downtime from our Managing Director Tom Waters. https://t.co/vMV0kWfCuj 18+|play responsibly|begambleaware pic.twitter.com/StKp5duwv2
— PartyPoker (@partypoker) August 10, 2018
As it happened, the problems continued into the weekend, and issues were still causing site problems into Saturday. Still, players were updated on a regular basis as the operator apologized and made customer reimbursements a priority.
There have been a number of questions about refunds, understandably, which have taken longer than we would have liked due to the scale of the issues faced. We apologise for this and hope to be resolving these into your accounts asap, the aim is today. Thank you for your patience pic.twitter.com/nzW0d4bikf
— PartyPoker (@partypoker) August 11, 2018
While DDoS attacks can be troublesome and cause problems that are more extensive than they seem in the beginning, customers can adjust when they are kept informed and compensated. PartyPoker’s response to the days-long issue focused on transparency while remaining understanding of the frustration on the part of the players.
Americas Cardroom Struggles
As the largest skin of the Winning Poker Network and the most popular offshore internet poker site for Americans, Americas Cardroom provides regular tournament series that tend to draw solid crowds. That was expected for the latest iteration of the Mini Series of Online Poker (MOSS) scheduled to begin on Sunday, August 5.
By the mid-afternoon of that first day of the series, however, there were problems.
We're currently experiencing technical issues. All tournaments have been paused and techs are working on it. Thanks for your patience.
— ACR Poker (@ACR_POKER) August 5, 2018
It didn’t take long to discover they were under a DDoS attack. Tournaments were paused, and players were kicked off the site in many cases, as well as denied the ability to access their accounts or withdraw funds. Meanwhile, more attacks ensued.
Update: attacker has initiated another DDoS attack, the techs are working on it
— ACR Poker (@ACR_POKER) August 5, 2018
Without any assurances that the attacks were over, however, Americas Cardroom quickly announced that the MOSS tournaments would resume on Monday. Unsurprisingly, the same thing happened on Monday.
We experiencing another DDoS attack, our techs are working on order to mitigate it. All tournaments have been paused. Apologies for the inconvenience
— ACR Poker (@ACR_POKER) August 6, 2018
And Tuesday, it happened again.
By Wednesday, instead of issuing an apology or explanation as to the reasons for the multiple attacks or the status of the games and tournaments, Americas Cardroom posted an article about the DDoS attacks on PartyPoker. The writer even discussed previous attacks on other poker sites like PokerStars but didn’t mention its own DDoS attack until the very part of the last paragraph:
“It’s an unpleasant part of the internet, but companies, including ACR react well to protect the interests of their customers. No one lost any money and any funds that had been paid to participate in tournaments was refunded. Yes, it’s very inconvenient, but sometimes things happen that cause a business to temporarily stop operations – it has even happened to Disneyland and American Airlines.”
Not only did the operator refuse to accept responsibility for its susceptibility to the attacks, but it pointed to other companies, as if to say, “See?! It happened to them!”
US regulated poker sites are not exempt from DDoS attacks
It would appear that partypoker is now dealing with its own DDoS headache, as it posted just about two hours ago on Twitter https://t.co/2dV2UaqPdi pic.twitter.com/3CYTMEVlsS
— ACR Poker (@ACR_POKER) August 9, 2018
The difference in ACR’s response to the same type of attacks and site disruptions versus that from PartyPoker is significant. Players in various parts of the world play on both sites for their own reasons, most of which are understandable. It is simply apparent in situations like the DDoS attacks on both sites that the disparity comes into very clear focus, as only one of them is obligated by regulations and laws to be completely transparent, putting the customers first in all efforts to identify, stop, and fix the attacks.
As of August 11, PartyPoker appears to have resolved all issues and handled all customer service-related inquiries, while Americas Cardroom hasn’t posted on Twitter for several days to update their players.
