Spain apprehended individual linked to MGM assault incident
Hackers Organized by Scattered Spider Strike MGM Resorts, Causing $100 Million Loss
In an audacious move, a notorious cybercriminal group, Scattered Spider, has been identified as the mastermind behind a devastating attack on the gaming giant MGM Resorts. The attack took place last fall, and according to Next.io's reports, it left a significant impact.
The Attack: A Brief Overview
In this attack, the hackers infiltrated the personal data of MGM's casino clients, demanding a ransom. However, following the U.S. government's advice, MGM chose not to comply. Consequently, the attack resulted in a significant disturbance in the system's operation, causing a decline of $100 million in the company's EBITDA for the third quarter compared to the same period the previous year.
Behind the Veil: Scattered Spider's Operations
Scattered Spider, a cunning and adaptable cybercriminal group, is notorious for high-profile social engineering and ransomware attacks. Consisting of young, English-speaking individuals aged between 16-22, the group operates from the UK and US. Their decentralized structure and scattered membership model help them evade detection.
In the MGM Resorts attack, they used phishing techniques to gather personal data and gain direct access to sensitive information and cryptocurrencies.
The MGM Resorts Attack: A Deeper Dive
The attack over the MGM Resorts involved meticulous reconnaissance, tracking MGM employees via LinkedIn for personal detail collection. Then, impersonating an employee, they tricked MGM's IT help desk into providing crucial credentials in a phone call, widely known as vishing.
Eventually, using the stolen credentials, they breached the systems and deployed BlackCat ransomware on over 100 VMware ESXi hypervisors. The attack caused operational chaos, led to customer data theft, and resulted in estimated losses of $100 million.
Their Modus Operandi: SIM Swapping, Phishing, and More
Scattered Spider employs various tactics to bypass security, such as SIM swapping and a relentless focus on phishing emails targeting single sign-on (SSO) platforms for credential theft. Despite recent arrests in the US, UK, and Spain, their decentralized structure allows them to regroup quickly.
This MGM attack served as a stark reminder of Scattered Spider's potential to execute large-scale ransomware operations by leveraging social engineering tactics.
- The notorious cybercriminal group, Scattered Spider, was responsible for the attack on MGM Resorts, causing a $100 million loss.
- Scattered Spider, well-known for social engineering and ransomware attacks, comprises English-speaking individuals aged between 16-22, operating from the UK and US.
- In the MGM Resorts attack, Scattered Spider utilized phishing techniques to gather personal data and gain access to sensitive information.
- The MGM attack was a significant demonstration of Scattered Spider's ability to execute big-wins using social engineering tactics in the casino-and-gambling industry.
- The cybersecurity breach at MGM Resorts led to a decline of $100 million in the company's EBITDA for the third quarter compared to the same period the previous year.
- Reports from general news outlets suggest that the MGM Resorts attack is another example of the ongoing threat of crime-and-justice in today's technology-driven world.
- As the MGM Resorts incident underscores, lotteries and casino-games are increasingly vulnerable to cyber threats, emphasizing the importance of robust cybersecurity measures in the casino-and-gambling industry.
