cyber Ransomware

MGM Resorts International

Oct 4, 2023 1 min read
MGM Resorts International

Caesars Entertainment revealed in an SEC filing that the company had been the victim of a social engineering attack on an outsourced IT support vendor used by the company.

The website and smartphone apps for the corporation have been down for almost a week.

Weeks before the attack on MGM Resorts, Caesars was attacked.

The attack severely disrupted MGM's operations, making check-in for visitors a lengthy process and rendering electronic payments, digital key cards, slot machines, ATMs, and paid parking systems useless.

Known ransomware-as-a-service organizations seem to have targeted both businesses. ALPHV.

Source: https://www.forbes.com/sites/suzannerowankelleher/2023/09/14/2-casino-ransomware-attacks-caesars-mgm/?sh=2679d007402d

TPRM report: https://scoringcyber.rankiteo.com/company/mgm-resorts-international

"id": "mgm85317923",
"linkid": "mgm-resorts-international",
"type": "Cyber Attack",
"date": "09/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Entertainment',
                        'name': 'Caesars Entertainment',
                        'type': 'Corporation'}],
 'attack_vector': 'Phishing',
 'description': 'Caesars Entertainment revealed in an SEC filing that the '
                'company had been the victim of a social engineering attack on '
                'an outsourced IT support vendor used by the company. The '
                'website and smartphone apps for the corporation have been '
                'down for almost a week. Weeks before the attack on MGM '
                'Resorts, Caesars was attacked. The attack severely disrupted '
                "MGM's operations, making check-in for visitors a lengthy "
                'process and rendering electronic payments, digital key cards, '
                'slot machines, ATMs, and paid parking systems useless. Known '
                'ransomware-as-a-service organizations seem to have targeted '
                'both businesses. ALPHV.',
 'impact': {'downtime': 'Almost a week',
            'operational_impact': ['Lengthy check-in process',
                                   'Disruption of electronic payments',
                                   'Disruption of digital key cards',
                                   'Disruption of slot machines',
                                   'Disruption of ATMs',
                                   'Disruption of paid parking systems'],
            'systems_affected': ['Website',
                                 'Smartphone Apps',
                                 'Electronic Payments',
                                 'Digital Key Cards',
                                 'Slot Machines',
                                 'ATMs',
                                 'Paid Parking Systems']},
 'initial_access_broker': {'entry_point': 'Phishing'},
 'motivation': ['Financial Gain', 'Operational Disruption'],
 'ransomware': {'ransomware_strain': 'ALPHV'},
 'references': [{'source': 'SEC Filing'}],
 'threat_actor': 'ALPHV',
 'title': 'Social Engineering Attack on Caesars Entertainment',
 'type': 'Social Engineering'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.