The Cybersecurity Defenders Podcast

#67 - A close look at the MGM cyberattack

LimaCharlie

On the special episode of The Cybersecurity Defenders Podcast we take a close look at the MGM cyberattack that took place in September 2023.

On September 11 numerous MGM Resorts International properties in Las Vegas and throughout the United States were attacked by ransomware which shut down many aspects of its IT. Checking in and out, reservations, digital room keys, tickets, credit card systems, some slot machines, and even elevators at several MGM casino hotels became inoperative, forcing their staffs to use manual methods to serve their clientele, i.e. analog pen and paper. MGM filed a Form 8-K report with the SEC the next day. The relatively recent criminal hacking group Scattered Spider is believed to have used social engineering to bypass multi-factor authentication.

The published statement by Scattered Spider can be found here.

A list of APT groups/names can be found here.

The Cybersecurity Defenders Podcast: a show about cybersecurity and the people that defend the internet.