Ransomware attack on Sault Tribe operations shut down gaming at Kewadin Casinos

The Sault Ste. Marie Tribe of Chippewa Indians suffered a widespread ransomware attack that began on Sunday morning, February 10, 2025, severely impacting their operations. The attack affected multiple tribal systems and businesses, most notably forcing the shutdown of all five Kewadin Casino locations.

The ransomware attack's impact extended far beyond the casinos, affecting multiple tribal administrative systems, including computer networks and phone services. The tribe's health centers, various businesses, and administrative offices were all impacted by the security breach. The attack also disrupted hotel operations at Kewadin properties, preventing new guest check-ins, though existing guests were allowed to remain. The tribal website, kewadin.com, experienced downtime but was restored by Monday afternoon.

The number of affected individuals and any data types exposed are not disclosed.

The Tribe has implemented contingency operations, with many departments continuing to operate in a limited capacity. They have established temporary contact numbers for essential services and are maintaining critical functions such as Elder Services, Education Services, and Tribal Court operations through alternative means.

Tribal Chairman Austin Lowes indicated that while they hope to resolve the issue within a week, they are prepared for a longer disruption.

Update - As of 10th of September 2025, The Sault Ste. Marie Tribe of Chippewa Indians is offering free identity protection services for those affected in the February data breach. The number of affected individuals and any data types exposed are still not disclosed.