DIRECTORY

  • Alerts
  • APTs
  • Blog
  • Books
  • Certifications
  • Cheat Sheets
  • Courses
  • Cyber Briefing
  • CyberDecoded
  • CyberReview
  • CyberStory
  • CyberTips
  • Definitions
  • Domains
  • Entertainment
  • FAQ
  • Frameworks
  • Hardware Tools
  • Incidents
  • Malware
  • News
  • Papers
  • Podcasts
  • Quotes
  • Reports
  • Tools
  • Threats
  • Tutorials
No Result
View All Result
  • Login
  • Register
  • Cyber Citizens
  • Cyber Professionals
  • Institutions
CyberMaterial
Talk To An Expert
  • Cyber Citizens
  • Cyber Professionals
  • Institutions
CyberMaterial
No Result
View All Result
Talk To An Expert
CyberMaterial
Home Incidents

Ransomware Targets Casino Giants

September 15, 2023
Reading Time: 2 mins read
in Incidents

In a recent cyber attack saga, both MGM Resorts and Caesars Entertainment, major players in the casino industry, have been targeted by a ransomware group. While MGM Resorts has not confirmed if a ransom was paid, the ongoing IT disruptions suggest otherwise.

In contrast, Caesars Entertainment reportedly paid approximately half of a $30 million ransom demand, a decision that has raised concerns about the sector becoming a more attractive target for cybercriminals. Security experts anticipate that other casino operators might face similar threats in the future.

MGM Resorts initially alerted the public about a “cybersecurity issue” affecting its operations, leading to the use of backup processes for various functions. Despite the company’s statement that its resorts remained operational, guests reported difficulties accessing services like payment cards or on-site ATMs.

The Alphv ransomware group claimed credit for the attack, alleging that they had manipulated the MGM Resorts IT help desk into granting them network access through social engineering.

Caesars Entertainment’s ransomware attack seems to have started with a social engineering attack against a third-party IT provider, possibly beginning as early as August 27. The attackers tricked an IT help desk into resetting a password, leading to the ransom demand.

The group responsible, UNC 3944, also known as Scattered Spider and Muddled Libra, is skilled in telephoning victims and convincing them to visit malicious websites or granting access through social engineering. Their successful attack on Caesars, including the reported ransom payment, has raised concerns about the cybersecurity of the casino industry and its vulnerability to future attacks.

The actions taken by Caesars Entertainment to deal with this cyber threat might make the casino sector more attractive to hackers. Security experts warn that other casino operators could become targets, especially those considered less resilient than major industry players like Caesars and MGM Resorts.

As the casino industry grapples with these cybersecurity challenges, the sophistication of ransomware attacks and social engineering tactics used by hacking groups like UNC 3944 continue to evolve, posing significant risks to organizations and their data security.

Source:
  • Caesars Confirms Ransomware Hack, Stolen Loyalty Program Database
  • Caesars Entertainment Paid Millions to Hackers in Attack
  • Caesars Paid Ransom After Suffering Cyberattack
Tags: Caesars EntertainmentCasinosCyberattackCybersecurityincidentsIncidents 2023MGM ResortRansomwareRansomware AttackSeptember 2023Vulnerabilities
22
VIEWS
ADVERTISEMENT

Related Posts

ChildFund NZ Partner’s Data Breach

ChildFund NZ Partner’s Data Breach

September 29, 2023
Baruch College Malware Incident Update

Baruch College Malware Incident Update

September 29, 2023
Russian Flight Booking System Cyberattack

Russian Flight Booking System Cyberattack

September 29, 2023
Volkswagen Faces Major IT Disruption

Volkswagen Faces Major IT Disruption

September 29, 2023

More Articles

Incidents

IT Services Provider Hit by Donut Gang

September 22, 2023
Alerts

Lazarus Group Threat to Healthcare

September 22, 2023
Cyber Briefing

September 22, 2023 – Cyber Briefing

September 22, 2023
Alerts

Chinese-Language Phishing Campaigns

September 20, 2023

Security through data

Cybersecurity Domains

  • API Security
  • Business Continuity
  • Career Development
  • Compliance
  • Cryptography
  • HSM
  • KPIs / KRIs
  • Penetration Testing
  • Shift Left
  • Vulnerability Scan

Emerging Technologies

  • 5G
  • Artificial Intelligence
  • Blockchain
  • Cryptocurrency
  • Deepfake
  • E-Commerce
  • Healthcare
  • IoT
  • Quantum Computing

Frameworks

  • CIS Controls
  • CCPA
  • GDPR
  • NIST
  • 23 NYCRR 500
  • HIPAA

Repository

  • Books
  • Certifications
  • Definitions
  • Documents
  • Entertainment
  • Quotes
  • Reports

Threats

  • APTs
  • DDoS
  • Insider Threat
  • Malware
  • Phishing
  • Ransomware
  • Social Engineering

© 2023 | CyberMaterial | All rights reserved.

World’s #1 Cybersecurity Repository

  • About
  • Legal and Privacy Policy
  • Site Map
No Result
View All Result
  • Alerts
  • Incidents
  • News
  • Audience
    • Cyber Citizens
    • Cyber Professionals
    • Institutions
  • Highlights
    • Blog
    • CyberDecoded
    • Cyber Review
    • CyberStory
    • CyberTips
  • Cyber Risks
    • Alerts
    • Attackers
    • Domains
    • Incidents
    • Threats
  • Opportunities
    • Events
    • Jobs
  • Repository
    • Books
    • Certifications
    • Cheat Sheets
    • Courses
    • Definitions
    • Frameworks
    • Games
    • Hardware Tools
    • Memes
    • Movies
    • Papers
    • Podcasts
    • Quotes
    • Reports
    • Tutorials
  • Report Cyber Incident
  • GET HELP
  • Contact Us

Subscribe to our newsletter

© 2022 Cybermaterial - Security Through Data .

Welcome Back!

Sign In with Google
Sign In with Linked In
OR

Forgotten Password? Sign Up

Create New Account!

Sign Up with Google
Sign Up with Linked In
OR

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.