Global iGaming aggregator leverages Continent 8’s Vulnerability Assessment and Penetration Testing (VAPT) cybersecurity services to securely connect B2C operators to over 16,000 games from more than 160 providers.
The customer
Alea is an award-winning leader in the field of online gaming, with a decade of experience in the industry. Alea aggregation platform handles over 21,000 transactions per second, with bank-level security, full regulatory coverage and local insights that helps their customers move faster in markets like Brazil, South Africa, Spain and beyond.
Alea is one of the industry’s most rapidly expanding game aggregators. By utilising a single API integration, Alea offers customers access to over 16,000 games from more than 160 providers, simplifying technical complexities and enhancing operational efficiency. The security and reliability of these game APIs and integrations are vital to Alea’s operational integrity.
To address the evolving cybersecurity challenges associated with a rapidly growing network, Alea engaged Continent 8 to conduct a thorough assessment and evaluation of their cybersecurity framework through a comprehensive Vulnerability Assessment and Penetration Testing (VAPT) service.
The challenge
Alea’s coding platform comprises over 100 microservices leveraging diverse technologies, databases and queue systems, presenting a significant technical challenge in securing all connections. Additionally, Alea processes over 21,000 requests per second, necessitating the demonstration of successful transaction management. With a complex aggregation platform, Alea aimed to ensure and demonstrate their status as a secure and robust game aggregator provider.
The solution
Continent 8, along with its specialised cybersecurity division, C8 Secure, conducted the cybersecurity audit. They employed their Vulnerability Assessment and Penetration Testing (VAPT) service to perform a thorough security evaluation of Alea’s entire digital infrastructure, providing a complete view of their attack surface area.
The benefits
The VAPT service from Continent 8 and C8 Secure enabled Alea to safeguard their API, code and services against vulnerabilities such as broken authentications, cross-site scripting (XSS), sensitive data exposure and SQL injection. As a result, the cybersecurity audit identified no critical issues within their aggregation platform.
Project conclusion
The comprehensive VAPT assessment allowed Alea to detect potential internal and external IT vulnerabilities, enabling them to prioritise and implement security improvements to reduce risk exposure, thereby assuring their customers of a secure and reliable platform.
Patrick Gardner, Chief Security Officer at Continent 8, presenting Eduard Fumás, Chief Technology Officer at Alea, with their VAPT completion certificate.
Eduard Fumás, Chief Technology Officer at Alea said, “At Alea, security is at the core of everything we do. Our commitment to creating a secure, robust and scalable API solution sets a new standard in the iGaming industry, where data protection and system integrity are critical. Partnering with Continent 8 has been an important step for us in proactively safeguarding our platform and reinforcing the trust our partners place in us. This collaboration ensures that we continue to deliver a reliable, secure API experience to our clients. We’re proud to work with a partner that shares our dedication to cybersecurity excellence.”
Patrick Gardner, Chief Security Officer at Continent 8 said, “Alea’s three principles of security, scalability and robustness resonate with Continent 8. Given the number of APIs Alea is using, their proactive approach to assessing their business and guaranteeing security for its partners is imperative.
“It’s great to be supporting Alea; we encourage all businesses in this industry to take the cybersecurity threat seriously.”
Vulnerability Assessment and Penetration Testing (VAPT) service enables the independent gaming commission to test IT infrastructure for vulnerabilities
The Cherokee Tribal Gaming Commission is the independent tribal gaming regulatory authority established in 1993 under Chapter 16 of the Cherokee Code of the Eastern Band of Cherokee Indians (EBCI).Charged with the duty to ensure fairness and integrity of the gaming activities within its facilities, the commission enlisted Continent 8, and its cybersecurity division, C8 Secure, to conduct pen testing.
The VAPT service provides a comprehensive security assessment of an organizations infrastructure and applications. Often mandated by regulation, it helps organizations measure the real-world effectiveness of their security controls and incident response capabilities. Additionally, the service provides actionable insights, including prioritized recommendations and industry best practices to address identified vulnerabilities and strengthen overall cybersecurity posture.
Emra Arkansas, Executive Directorat Cherokee Tribal Gaming Commissionsaid: We are sincerely grateful to Continent 8, especially Patrick Gardner, Anthony Engel and Jerad Swimmer, for their partnership and recognition of our ongoing cybersecurity initiatives. The Cherokee Tribal Gaming Commission remains firmly committed to protecting not only our critical infrastructure but also the sovereignty that underpins our regulatory authority. In an era of growing cyber threats, safeguarding Tribal IT systems is more than a technical priority, it is a sovereign responsibility. With Continent 8s trusted expertise, we are proud to set a higher standard for cybersecurity in Indian Country, ensuring our operations remain secure, resilient and self-determined.
Patrick Gardner, Chief Security Officer at Continent 8 said:In response to todays evolving cyber threat landscape, the Cherokee Tribal Gaming Commission is working to establish a new standard in cybersecurity and we are proud to support this important initiative. Their proactive efforts to safeguard critical infrastructure reflect a deep and ongoing investment in cybersecurity resilience.”
Jerad Swimmer, Regional Sales Director at Continent 8 added: “It was a pleasure collaborating with the Cherokee Tribal Gaming Commission in conducting a comprehensive evaluation of their IT infrastructure. Their team has shown a tremendous awareness of the escalating cybersecurity challenges within the tribal gaming sector. It is encouraging to see both enterprises and regulatory authorities actively enhancing their cybersecurity measures.”
For more information on how Continent 8 can support your cybersecurity initiatives or to schedule a no-obligation Cybersecurity Readiness Consultation, contact Regional Sales Director, Jerad Swimmer, at jerad.swimmer@continent8.com.
Continent 8’s Vulnerability Assessment and Penetration Testing, Security Audit and Vulnerability Scan services enable Alea to further strengthen the security and resilience of its iGaming platform
Continent 8 Technologies, the leading provider of global managed hosting, connectivity, cloud and cybersecurity solutions for the iGaming and online sports betting industry, announces that it has expanded its cybersecurity collaboration with Alea.
Patrick Gardner, CSO at Continent 8, presents the VAPT completion certificate to Eduard Fumás, CTO of Alea, and the Alea team at ICE Barcelona 2025.
Building on its current programme of Vulnerability Assessment and Penetration Testing (VAPT) services with Continent 8, Alea – the award-winning casino game aggregator – has deepened its partnership with Continent 8 and its cybersecurity division, C8 Secure, by integrating Security Audit and Vulnerability Scan (V-Scan) services. This strategic initiative further enhances Alea’s cybersecurity posture and underscores the company’s ongoing investment in the resilience and integrity of its infrastructure.
The expanded cybersecurity assessment programme delivers a wide range of benefits for Alea and its operator network, including:
Identifying, assessing and mitigating vulnerabilities in IT infrastructures, applications and networks
Ensuring compliance with industry best practises and cybersecurity frameworks by evaluating security policies, procedures and governance
Recognising new vulnerabilities, highlighting areas for improvement and prioritising remediation efforts
Developing a customised roadmap for ongoing improvement to enhance cybersecurity posture and maturity
Enhancing the trust and confidence of customers and partners by implementing industry-best cybersecurity measures
Eduard Fumás, CTO at Alea: “Security is built into everything we do at Alea. We’ve always believed that operators and their players deserve the highest level of protection. This is why we’ve invested in strong encryption, fraud prevention tools and a robust infrastructure from day one.
“Working with Continent 8 has helped us put that commitment to the test. Their expertise allows us to validate and strengthen our systems with confidence. We’re proud of how far we’ve come together, and even more excited about what’s next as we keep raising the bar and building a platform that our partners can trust completely.”
Patrick Gardner, Chief Security Officer at Continent 8 added: “As Alea continues to grow and expand, its proactive commitment to maintaining a secure iGaming aggregator platform becomes paramount. In our ongoing collaboration with Alea, we remain dedicated to fostering and supporting their cybersecurity initiatives – ensuring that both Alea and its extensive partner ecosystem stay protected, resilient and prepared.”
Continent 8 will be exhibiting at SBC Summit Lisbon, from 16-18 September at Stand C80. To arrange a show meeting and explore best practices and strategies for advancing your organisation’s cybersecurity initiatives, email sales@continent.com or fill out our Contact Us page.
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
Cookie
Duration
Description
cookielawinfo-checkbox-analytics
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional
11 months
The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy
11 months
The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
