Hacking group Anubis claims $700 million Catawba Two Kings Resort casino hack

Criminals are demanding ransom, holding exhaustive plans for servers, chip storage, CCTV and evacuation systems

The recently built Catawba Two Kings casino in North Carolina has been hacked in a major cyberattack: hackers from Anubis have issued an ultimatum on their darknet website. They claim to have seized an “extremely detailed archive” that includes:

• Plans of the main hall, hotel and parking
• Location of server rooms and safes
• Location of surveillance cameras
• Evacuation plans, areas for personnel interrogation
• Even cadastral documentation and seismic reports

If the company refuses to pay the ransom, they promise to make all the files publicly available. The attack potentially threatens the security of the future casino, which is planned to house 4,300 slot machines, 100 tables, a 400-room hotel and dozens of restricted areas. Complicating matters, the project has been plagued by controversy from the very beginning, from fines for lack of licenses to lawsuits with previous partners and conflicts with the Cherokee tribe, which considers the construction illegal.

Anubis is a new but aggressive group that has been active since December 2024. Its business model is ransomware-as-a-service: hackers offer access to their own infrastructure to other criminals. They use a double extortion tactic – file encryption and the threat of data disclosure if a ransom is not paid. Such attacks are becoming increasingly frequent and are aimed at infrastructure and construction sites – especially those associated with public resonance or conflict projects.

Catawba Resort risks becoming the first major building in history to have its security compromised before it’s even finished. If the leaked blueprints are confirmed, it would set a precedent that would force investors and developers to rethink their approach to cybersecurity, not just in the gaming industry, but across all real-world infrastructure.