According to sources, MGM Resorts (a Critical Infrastructure organization in Nevada) was hit with a cyber attack. It was first reported on 2023-09-12.

A Cyberattack Shuts Down MGM Resorts In Las Vegas And Other Cities

“The stable of MGM properties, including a dozen of the most iconic hotels in Las Vegas, have been out of service for more than 24 hours due to an ongoing cybersecurity issue. “

“A cyberattack has breached the computer system at MGM Resorts, forcing the company to shut down operations at a dozen of the most iconic casino hotels in Las Vegas—including the Bellagio, Mandalay Bay and the Cosmopolitan—as well as another half-dozen MGM properties around the United States.“

“The attack left hotel guests locked out of their rooms for hours and unable to use their digital key cards to charge goods and services. Eventually, the hotels resorted to manual processes and transactions. “

'Scattered Spider' Behind MGM Cyberattack, Targets Casinos

“A threat group called "Scattered Spider" is reportedly behind the Sept. 10 MGM Resorts cyberattack, which days later is still keeping systems offline across the conglomerate's more than 30 hotels and casinos scattered around the globe. “

“According to a Reuters report that attributes the attack, citing sources familiar with the matter, the Scattered Spider ransomware group is believed to be made up of young adults in the US and UK. The group is known for using social engineering schemes to trick users into handing over their login credentials and is tracked as an affiliate for the BlackCat/ALPHV ransomware. “

“Scattered Spider also recently targeted Caesars Entertainment, which paid tens of millions in ransom to the cyberattackers, according to Bloomberg, which added that Caesars is expected to submit a required SEC regulatory filing in the coming days with more details on the attack. The group began targeting Caesars in late August, sources said. “

AlphV responds to MGM incident and sloppy reporting

“AlphV has posted a statement about their attack on MGM Resorts.“

“ Of note, their statement also asserts, “The ALPHV ransomware group has not before privately or publicly claimed responsibility for an attack before this point. Rumors were leaked from MGM Resorts International by unhappy employees or outside cybersecurity experts prior to this disclosure. Based on unverified disclosures, news outlets made the decision to falsely claim that we had claimed responsibility for the attack before we had.”“

Cyber-Protecting Our Nation’s Critical Infrastructure

At SecuLore, our mission is to cyber-protect our nation’s critical infrastructure. Led by experts in 9-1-1 technology, cyberwarfare, and ethical hacking, our team provides the technology, expertise, and training needed to defend customers from increasingly sophisticated cyber threats.