PIERRE, S.D. — The scandal unfolding in Iowa, where software allowed some results to be rigged in multi-state lotto drawings, has added to concerns among South Dakota Lottery officials, spurring them to proceed Thursday in requesting proposals for a security review of South Dakota Lottery facilities.
The review also would cover the statewide video-lottery system and the statewide lotto jackpot system.
Each separately connects with hundreds of private businesses.
The scratch-ticket system also would be analyzed.
State government gets more than $100 million annually from them.
The commission received a presentation on cyber security Thursday from Jim Edman, a top official in the state Bureau of Information and Telecommunications.
"This is a worldwide issue. We are not immune from it in South Dakota," Edman said.
Commission member Roger Novotny, of Fort Pierre, said BIT has done well staying ahead of hackers. He said the soft spot might be third-party vendors.
Novotny said he's confident that major vendors to the South Dakota Lottery have high-level security in place but, he asked, are there security checks?
"I think that's our greatest risk," Novotny said. "I don't view them as risks necessarily, but I don't know."
Edman said BIT deals with third-party vendors "all the time" and finds a range of attention paid by them to cyber-security.
The challenge is getting the vendors to understand "we are on the same team here" and BIT isn't interested in their proprietary business knowledge, Edman said.
The greatest frustration comes with vendors who don't understand that philosophy, he said. He called it "critical" to have outside experts play the role of hacking to test systems, policies and people.
Novotny wondered whether there should be some sort of regular report and whether third-party contracts should specifically cover the security issue. He suggested hiring an outside tester.
Novotny mentioned the Iowa lottery scam. "It was bigger than earlier anticipated and it was broader," Novotny said.
He doesn't want a broad-scale attack originating from South Dakota. "It would be a multi-million dollar disaster, not just for us but for other states," Novotny said.
Edman replied that BIT "would certainly participate" with the lottery staff on tightening contracts and conducting third-party risk assessments.
Norm Lingle, the lottery's director, told Novotny his points were well-taken. Lingle said BIT is "looped in" when the lottery works with vendors.
Edman said, "You need to lay the expectations on this particular topic; cyber-security is very important."
Commission member Jim Putnam, of Armour, said the threat of cyber crime is "frustrating" to anyone with an electronic device.
"In days gone by, we knew who the Dalton Gang was, and when they came to town, they went to the bank," Putnam said.
Putnam said there is tremendous pressure to conduct business electronically and it relies on trust. Putnam said the Iowa case is providing information.
Edman replied that the skilled cyber criminals seldom leave a trail.
"Finding the bad guy is more difficult than finding a needle in a haystack. It would be finding a needle in South Dakota," Edman said.
Timeline of the biggest crime in US lottery history
The following is a compilation of Lottery Post news coverage chronicling the Hot Lotto mystery and subsequently discovered crime.
We start the timeline with a news story indicating that only 3 months remained for the $16 million Hot Lotto jackpot to be claimed.
- Deadline for claiming $16.5M Hot Lotto jackpot nears, Sep. 21, 2011
- Unclaimed Iowa lottery jackpot to expire Dec. 29, Dec. 1, 2011
- Iowa $16.5M Hot Lotto winner claims prize with two hours to spare, Dec. 29, 2011
- Iowa Lottery security chief bent on determining identity of jackpot winner, Jan. 10, 2012
- NY lawyer in lottery mystery travels to Iowa this week, Jan. 17, 2012
- Iowa Lottery security chief to grill NY lawyer over Hot Lotto ticket, Jan. 17, 2012
- Representative of Hot Lotto winner named in lawsuit, Jan. 20, 2012
- Hot Lotto trust representative won't name winner, Jan. 20, 2012
- Iowa Lottery threatens to deny jackpot payout if winner stays anonymous, Jan. 23, 2012
- Lawyer gives up $14 million Iowa lottery ticket claim, Jan. 26, 2012
- $14.3 million Hot Lotto prize claim withdrawn, Jan. 27, 2012
- Iowa Legislators satisfied with Lottery's handling of mystery jackpot winner, Feb. 1, 2012
- Iowa Lottery to give away millions from jackpot mystery, Feb. 26, 2012
- Iowa Lottery director: 50-50 that Hot Lotto mystery will be solved, Aug. 9, 2012
- Iowa officials trying to solve lotto mystery, may release surveillance video, Aug. 19, 2012
- 1 year later, Iowa Lottery still hunting for suspicious no-show winner, Jan. 30, 2013
- Inquiry in Iowa Lottery mystery touches Canada, Jul. 26, 2013
- Lottery jackpot probe heats up after immunity deal, Oct. 8, 2013
- Iowa Lottery still hunting mystery Hot Lotto winner [video], Oct. 10, 2014
- MUSL employee arrested in Hot Lotto jackpot mystery, Jan. 15, 2015
- BOMBSHELL: MUSL employee might have rigged Hot Lotto computerized drawing, Apr. 13, 2015
- Texas man charged in Iowa lottery case contests extradition, Apr. 20, 2015
- Extradition trial begins this week in $16.5M Hot Lotto fraud case, Jun. 7, 2015
- Inside the biggest lottery scam ever, Jul. 7, 2015
- Trial underway in world's biggest lottery fraud case, Jul. 14, 2015
- Lottery security chief: Rigging computerized game "sadly" possible, Jul. 15, 2015
- Prosecution rests in Hot Lotto trial, Jul. 16, 2015
- Defense quickly wraps up in Hot Lotto trial, Jul. 16, 2015
- Hot Lotto case moves to jury for deliberations, Jul. 17, 2015
- Former lottery security employee guilty of rigging $14.3M drawing, Jul. 20, 2015
- MUSL security worker who rigged drawing gets 10 years, Sep. 9, 2015
- HOT LOTTO DRAWING CHEAT CHARGED WITH RIGGING MORE JACKPOTS, Oct. 9, 2015
- Texas authorities had previously investigated brother of lottery cheat, Oct. 14, 2015
- Another $1.2M Hot Lotto jackpot rigged by Tipton, officials say, Nov. 21, 2015
- Jackpot-fixing investigation expands to more state lotteries, Dec. 18, 2015
- Prosecutors say Tipton rigged two jackpots he purchased tickets for in Kansas, Dec. 21, 2015
- Maine gives names of Hot Lotto winners to Iowa team looking into rigging scheme, Dec. 23, 2015
- S.C. Lottery assures public no computerized drawings used in state, Dec. 23, 2015
- Kansas lottery players questioning game's integrity, Dec. 23, 2015
- MUSL CHIEF OUSTED OVER JACKPOT-RIGGING SCANDAL, Dec. 23, 2015
- Lottery scandal unlikely to affect New Mexico, official says, Dec. 26, 2015
- Tipton granted delay in next trial until July, Dec. 29, 2015
- Iowa Lottery CEO Terry Rich to answer lottery player questions live Monday evening, Jan. 11, 2016
- First lawsuit in state lottery-fixing scandal seeks millions, Feb. 4, 2016
- MUSL seeks to dismiss lawsuit over rigged jackpot, Apr. 1, 2016
- Lottery scammer's brother facing criminal charges, Apr. 6, 2016
- Investigators find Tipton's software code to rig computerized lottery drawings, Apr. 7, 2016
I will take our Chief bottle washer's advice, Only bet on the mechanical draw games. No more computerized RNG draws.
Every time I read stories like this, involving the vulnerabilities inherent in RNG and the like, I start to shake my head. Some of the smart guys have already rigged the system, made their money, unrigged the system, moved on and are living the good life happily ever after. Only the overly selfish ones like TIPTON, that get caught. The lotteries are still non the wiser. BAN RNG FOR GOOD.
As much as players may want RNG banned, we heard it from the horse's mouth in January that RNG's are here to stay.
As hard as it may be, players that live in RNG states really need to make their voices heard by not playing any games that are RNG.
I agree, speak up players.
I like RNG because they aren't random.
Hot Lotto, PB, and MM are drawn in other states and Dakota Cash is the only drawn (online) game the South Dakota Lottery has.
"The commission received a presentation on cyber security Thursday from Jim Edman, a top official in the state Bureau of Information and Telecommunications."
Iowa had a fox guarding their hen house, but their RNG was not connected to any other computer, which makes SD Lottery concern about cyber security puzzling.
But mechanical draws have magnets and neon gas, that is lighter than air. I learned that on the internet.