MGM Resorts Faces Major Ransomware Attack in Las Vegas
Cybersecurity | Sep 18, 2023
Image: Unsplash/David VivesMGM Resorts fell victim to a debilitating ransomware attack. The impact was widespread, affecting several of its properties, notably the iconic MGM Grand and Bellagio casinos in Las Vegas.
The recent cybersecurity breach at MGM Resorts has sent shockwaves throughout the industry, raising concerns about the vulnerability of even the most fortified systems.
The Incident and Perpetrators
- MGM Resorts, one of the largest casino owners in Las Vegas, fell victim to a significant cybersecurity attack. The first signs of the attack emerged on a Sunday evening, with guests experiencing difficulties accessing their rooms due to disabled mobile apps and digital key cards. The ramifications extended to ATMs, cashier offices, parking systems, and even slot machines.
- While the recovery process has been arduous, with MGM's digital platforms still facing issues days after the attack, the perpetrators remain a topic of debate. A group named ALPHV has claimed responsibility, citing a targeted approach via LinkedIn. However, another faction, Scattered Spiders, is also under suspicion.
- Videos circulated on social media showed video slot machines that had gone dark, and some customers reported that their hotel room cards weren't functioning. By the following Friday, booking capabilities were still down, with MGM Resorts offering penalty-free room cancellations through September 17th.
See: Small Businesses Incur Greatest Loss of Cyber Attacks | 67% Suffer Repeat Attacks Within 12 Months
- Among the affected was FTC Chairwoman Lina Khan, who, along with about 45 other guests, had to manually write down their credit card information when checking into the MGM Grand Hotel due to the reservation system's shutdown. This incident raised concerns about the protection of consumer data, especially when such high-profile individuals are involved.
Implications and Response
- The MGM breach wasn't an isolated incident. By the following Thursday, Caesars Entertainment, the world's largest casino owner, confirmed it too had been hit by a cybersecurity attack.
- While MGM Resorts' systems were still down, Caesars reported that its casino and hotel computer operations weren't disrupted. However, the company couldn't confirm the security of personal information of its vast customer base following the data breach. This series of attacks has shattered the public perception that casino security is impenetrable, requiring an "Oceans 11"-level effort to defeat.
- The financial impact can be calculated based on lost revenue and increased costs - one report calculates approximately $650k lost per hour.
- The nature and scope of the attack might indicate significant issues in the company's control system. Concerns include how so many systems were vulnerable to a single attack, potential failures in authentication procedures, and the inadequacy of backup systems and business continuity plans.
- The MGM incident has sparked discussions on the materiality of such breaches. From a quantitative standpoint, businesses need to evaluate the financial repercussions, considering lost revenues and additional costs. On the qualitative front, the nature and extent of the attack can indicate significant systemic issues that stakeholders should be made aware of.
- While the Securities and Exchange Commission's (SEC) new rules on cybersecurity attack disclosures were not applicable to this incident, they are set to be enforced by year-end, making this event all the more significant.
Lessons for the Future
The recent cyberattacks on MGM Resorts and Caesars Entertainment highlight the evolving challenges in the realm of cybersecurity. As technology continues to advance, so do the tactics and strategies of cybercriminals. The hospitality industry, with its vast troves of personal and financial data, remains a prime target. It's imperative for businesses to continually update and fortify their cybersecurity measures, ensuring the safety and trust of their patrons.
See: Zurich CEO: Cyber Attacks May Become ‘Uninsurable’
- The interconnectedness of modern systems and the risks associated with a single point of failure.
- The importance of stringent authentication procedures to prevent social engineering attacks.
- The critical role of backup systems and business continuity plans in ensuring operational resilience.
The incident emphasizes the need for businesses to adopt a proactive approach to cybersecurity, continually evaluating and updating their measures in line with evolving threats.
The National Crowdfunding & Fintech Association (NCFA Canada) is a financial innovation ecosystem that provides education, market intelligence, industry stewardship, networking and funding opportunities and services to thousands of community members and works closely with industry, government, partners and affiliates to create a vibrant and innovative fintech and funding industry in Canada. Decentralized and distributed, NCFA is engaged with global stakeholders and helps incubate projects and investment in fintech, alternative finance, crowdfunding, peer-to-peer finance, payments, digital assets and tokens, artificial intelligence, blockchain, cryptocurrency, regtech, and insurtech sectors. Join Canada's Fintech & Funding Community today FREE! Or become a contributing member and get perks. For more information, please visit: www.ncfacanada.org Related Posts
- SEO Powered Content & PR Distribution. Get Amplified Today.
- PlatoData.Network Vertical Generative Ai. Empower Yourself. Access Here.
- PlatoAiStream. Web3 Intelligence. Knowledge Amplified. Access Here.
- PlatoESG. Carbon, CleanTech, Energy, Environment, Solar, Waste Management. Access Here.
- PlatoHealth. Biotech and Clinical Trials Intelligence. Access Here.
- BlockOffsets. Modernizing Environmental Offset Ownership. Access Here.
- Source: https://ncfacanada.org/mgm-resorts-faces-major-ransomware-attack-in-las-vegas/
- :has
- :is
- :not
- 11
- 12
- 12 months
- 150
- 17th
- 2018
- 300
- 32
- a
- About
- accessing
- Additional
- adopt
- advance
- affecting
- affiliates
- After
- alerts
- All
- along
- also
- alternative
- alternative finance
- an
- and
- Another
- applicable
- approach
- approximately
- apps
- ARE
- artificial
- artificial intelligence
- AS
- Assets
- associated
- At
- ATMs
- attack
- Attacks
- Authentication
- aware
- Backup
- base
- based
- BE
- become
- been
- blockchain
- booking
- breach
- business
- business continuity
- businesses
- by
- cache
- Caesars
- calculated
- calculates
- CAN
- Canada
- capabilities
- card
- Cards
- Casino
- Casinos
- Category
- ceo
- challenges
- checking
- claimed
- closely
- commission
- community
- company
- computer
- Concerns
- Confirm
- considering
- consumer
- continually
- continues
- continuity
- control
- Costs
- couldn
- create
- credit
- credit card
- critical
- Crowdfunding
- cryptocurrency
- customer
- customer base
- Customers
- cyber
- Cyber Attacks
- cyberattacks
- cybercrime
- Cybersecurity
- Dark
- data
- data breach
- David
- Days
- debate
- decentralized
- difficulties
- digital
- Digital Assets
- digital platforms
- disabled
- discussions
- distributed
- do
- down
- due
- Earnings
- ecosystem
- Education
- effort
- emerged
- emphasizes
- engaged
- Engineering
- ensuring
- Entertainment
- entry
- especially
- Ether (ETH)
- evaluate
- evaluating
- Even
- evening
- Event
- evolving
- exchange
- Exchange Commission
- experiencing
- extent
- faces
- facing
- Failure
- finance
- financial
- financial data
- financial innovation
- fintech
- First
- following
- For
- fraud
- Friday
- from
- front
- FTC
- funding
- funding opportunities
- get
- Global
- gone
- Government
- grand
- greatest
- guests
- hacks
- had
- helps
- High
- high-profile
- Highlight
- hospitality
- hotel
- How
- However
- HTTPS
- iconic
- image
- Impact
- imperative
- importance
- in
- incident
- include
- increased
- indicate
- individuals
- industry
- information
- Innovation
- innovative
- Insurtech
- Intelligence
- interconnectedness
- into
- investing
- investment
- involved
- isolated
- issues
- IT
- ITS
- Jan
- jpg
- Key
- largest
- LAS
- Las Vegas
- Line
- loss
- lost
- Machines
- made
- major
- Making
- manually
- many
- Market
- max-width
- May..
- measures
- Media
- member
- Members
- might
- Mobile
- mobile-apps
- Modern
- months
- more
- most
- Named
- Nature
- Need
- networking
- notably
- oceans
- of
- offering
- offices
- on
- ONE
- operational
- operational resilience
- Operations
- opportunities
- or
- Other
- owner
- owners
- parking
- partners
- payments
- peer to peer
- per
- perception
- perks
- personal
- plans
- Platforms
- plato
- Plato Data Intelligence
- PlatoData
- please
- Point
- potential
- prevent
- Prime
- Proactive
- procedures
- process
- projects
- properties
- protection
- provides
- public
- qualitative
- quantitative
- raised
- raising
- ramifications
- ransomware
- Ransomware Attack
- realm
- recent
- recovery
- Regtech
- remain
- remains
- repeat
- repercussions
- report
- Reported
- reservation
- reservation system
- resilience
- Resorts
- revenue
- revenues
- risks
- Role
- Room
- Rooms
- rules
- s
- Safety
- scattered
- scope
- SEC
- Sectors
- Securities
- Securities and Exchange Commission
- security
- sent
- September
- Series
- Services
- set
- several
- should
- showed
- shutdown
- significant
- Signs
- single
- slot
- small
- small businesses
- So
- Social
- social media
- some
- stakeholders
- standpoint
- Stewardship
- Still
- strategies
- such
- sunday
- system
- systemic
- Systems
- T
- tactics
- TAG
- Target
- targeted
- Technology
- that
- The
- the world
- their
- they
- this
- thousands
- threats
- Through
- throughout
- thursday
- Title
- to
- today
- Tokens
- too
- topic
- Trust
- under
- Unsplash
- Update
- updating
- Vast
- VEGAS
- via
- vibrant
- Victim
- Visit
- VOX
- vulnerability
- Vulnerable
- was
- were
- when
- WHO
- widespread
- Wikipedia
- with
- within
- works
- world
- write
- zephyrnet
- Zurich
More from NC facan Ada
CATO: Response to Request for Information on Digital Assets R&D
Source Node: 2007574
Time Stamp: Mar 11, 2023
The world’s most successful startups have two characteristics in common
Source Node: 1867676
Time Stamp: Jan 4, 2023
Game-changer for Remote Work? Introducing the AR Laptop by Spacetop | National Crowdfunding & Fintech Association of Canada
Source Node: 2662636
Time Stamp: May 19, 2023
Sequoia Splits into Distinct Entities: Unraveling the Impact on Venture Capital Landscape | National Crowdfunding & Fintech Association of Canada
Source Node: 2704803
Time Stamp: Jun 6, 2023
Stanford Faculty Members Emerge as Bankman-Fried’s $250M Bail Guarantors
Source Node: 1970328
Time Stamp: Feb 21, 2023
BUSD Depegged and Fell to $0.20 on Binance After Single $647k Sell Order
Source Node: 1975576
Time Stamp: Feb 23, 2023
Kraken (Payward Inc.) in Advanced Stages of SEC Unregistered Securities Probe
Source Node: 1952781
Time Stamp: Feb 9, 2023
Fintech SEO Can Generate Leads and Sales Success: An Unrivaled Strategy
Source Node: 2911453
Time Stamp: Sep 28, 2023
