MGM Resorts Reports A "Cyber-Security Issue"

P

plat

Level 29
Thread author
Top Poster
Sep 13, 2018
1,793
Content source
https://techcrunch.com/2023/09/11/mgm-resorts-cybersecurity-issue-outage/
Uh oh. Spaghetti-O đź‘€

A source with knowledge of the incident told TechCrunch that all of MGM’s properties, including those outside of Las Vegas, appear to be affected by the incident. The websites of several of MGM’s regional resorts, including MGM Springfield in Massachusetts, MGM National Harbor and the Empire City Casino in New York, were all offline at the time of writing.
Click to expand...

X source vx-underground was a little more blunt (this is a snip of the tweet):

mgm resorts.PNG
 
  • Like
  • +Reputation
  • Wow
Reactions: Nevi, harlan4096, silversurfer and 4 others
vtqhtr413

vtqhtr413

Level 26
Verified
Top Poster
Well-known
Aug 17, 2017
1,498
MGM Resorts last experienced a significant cybersecurity incident last year when the personal information of more than 140 million guests was shared on Telegram. The stolen data included guests’ full names, postal addresses, email addresses, phone numbers, dates of birth and, in some cases, passport and driver license numbers.
Click to expand...
Couldn't happen to a better bunch.
 
  • HaHa
  • Like
Reactions: Nevi, [correlate] and plat
vtqhtr413

vtqhtr413

Level 26
Verified
Top Poster
Well-known
Aug 17, 2017
1,498
Caesars Entertainment reportedly paid "tens of millions of dollars" to hackers who threatened to release company data, Bloomberg has reported. The attack was reportedly perpetrated by a group called Scattered Spider (aka UNC 3944), a group skilled at using social engineering to bypass corporate network security. It's the second notable attack of a Las Vegas casino group, following a hack that caused a cyber outage at MGM Resorts.

Members of the hacking group are reportedly located in the US and UK and are as young as 19 years old. They began targeting Caesars as early as August 27th, and obtained access to an outside vendor before entering the company's network, according to the report. Caesars is expected to disclose the attack "imminently" in a regulatory filing.
Click to expand...
www.engadget.com

Caesars reportedly paid millions to stop hackers releasing its data

Caesars Entertainment reportedly paid "tens of millions of dollars" to hackers who threatened to release company data.
www.engadget.com www.engadget.com

The ALPHV/BlackCat ransomware group claimed responsibility for the MGM Resorts cyber outage on Tuesday, and it apparently took the group only 10 minutes on a phone call to glean the information needed to shut down systems and slot machines — not the slot machines! — at casinos owned by MGM Resorts.

“All ALPHV ransomware group did to compromise MGM Resorts was hop on LinkedIn, find an employee, then call the Help Desk,” the organization wrote in a post on X. Those details came from ALPHV but have not been independently confirmed by security researchers. MGM Resorts didn’t respond to a request for comment but said on Tuesday that “Our resorts, including dining, entertainment and gaming, are currently operational.”
Click to expand...
www.engadget.com

The Morning After: Hacking a Vegas casino may just take a single phone call

The biggest news stories this morning: Coca-Cola made an AI-generated soda, Microsoft reveals its underwhelming Xbox Game Pass Core library, hackers claim they shut down a Las Vegas casino with a phone call.
www.engadget.com www.engadget.com
 
  • Like
  • +Reputation
Reactions: simmerskool, Nevi and plat
P

plat

Level 29
Thread author
Top Poster
Sep 13, 2018
1,793
Thanks for confirming that it was indeed ransomware, BryanB. (y)

Is MGM going to pay? You often hear about these high-profile attacks and then the news just dies away and is largely forgotten by the public. Anyone remember Western Digital's ransom? All this data leakage and a highly provocative and obscene personal message from ALPHV to Western Digital made public but the news stories just fizzled out. Besides a "confirmation" by Western Digital, nothing further was disclosed (that I could find). A closed door, locked and bolted.

That attack happened back in April
 
  • Like
  • Hundred Points
Reactions: upnorth, simmerskool, vtqhtr413 and 1 other person
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
Security News Ubisoft says it's investigating reports of a new security breach
Replies
0
Views
855
Security News
Gandalf_The_Grey
Gandalf_The_Grey
In2an3_PpG
    • Like
Feds Dismantle Ukrainian's $530 Million Carding Empire
Replies
0
Views
1,340
News Archive
In2an3_PpG
In2an3_PpG

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top