{"id":22895,"date":"2023-09-12T16:10:29","date_gmt":"2023-09-13T00:10:29","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2023\/09\/12\/news-16625\/"},"modified":"2023-09-12T16:10:29","modified_gmt":"2023-09-13T00:10:29","slug":"news-16625","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2023\/09\/12\/news-16625\/","title":{"rendered":"Major cyberattack leaves MGM Resorts reeling"},"content":{"rendered":"<p>A major incident impacting MGM Resorts&nbsp;has <a href=\"https:\/\/apnews.com\/article\/mgm-resorts-casino-vegas-cybersecurity-outage-06de044bdf1880af2a8bce1a38c986ee\" target=\"_blank\">caused computer shutdowns all over the US<\/a>. The systems most impacted are tied to casinos and hotel computer systems. According to the AP, locations caught by this shutdown range from New York and Ohio to Michigan and Mississippi.<\/p>\n<p>At this point I&rsquo;d link to the post on the company website explaining what&rsquo;s occurred but at time of writing, the site tends to not load properly which is probably due to heavy traffic. When it does, it simply says that the MGM Resorts website is <a href=\"https:\/\/www.mgmresorts.com\/en\/destinations.html\" target=\"_blank\">currently unavailable<\/a> and gives visitors a list of contact numbers. AP also mentions that other MGM websites have been replaced with &ldquo;back soon&rdquo; style pages while the clean up from the attack is&nbsp;no doubt still ongoing.<\/p>\n<p>At present, what&rsquo;s available is a <a href=\"https:\/\/twitter.com\/MGMResortsIntl\/status\/1701256032369164399\" target=\"_blank\">selection of posts<\/a> made to X (formerly Twitter) giving <a href=\"https:\/\/twitter.com\/MGMResortsIntl\/status\/1701443388086825231\" target=\"_blank\">brief details<\/a> of the incident.<\/p>\n<p>This is what MGM Resorts has to say on the matter:<\/p>\n<blockquote>\n<p>MGM Resorts recently identified a cybersecurity issue affecting some of the company&rsquo;s systems. Promptly after detecting the issue, we quickly began an investigation with assistance from leading external cybersecurity experts.&nbsp; We also notified law enforcement and took prompt action to protect our systems and data, including shutting down certain systems. Our investigation is ongoing, and we are working diligently to determine the nature and scope of the matter.<\/p>\n<\/blockquote>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"zxx\" dir=\"ltr\"><a href=\"https:\/\/t.co\/nxIweGInsB\">pic.twitter.com\/nxIweGInsB<\/a><\/p>\n<p> &mdash; MGM Resorts (@MGMResortsIntl) <a href=\"https:\/\/twitter.com\/MGMResortsIntl\/status\/1701256032369164399?ref_src=twsrc%5Etfw\">September 11, 2023<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script> <\/p>\n<p>MGM goes on to say that &ldquo;resorts are fully operational&rdquo;. Meanwhile, BBC reporter Joe Tidy <a href=\"https:\/\/twitter.com\/joetidy\/status\/1701527162614919286\" target=\"_blank\">reports<\/a> that slot machines and casino floors were left empty, and that physical room keys had to be distributed. An additional admin error caused a guest to walk in on someone else. Clearly things are not going swimmingly for MGM Resorts.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Scene in MGM Grand according to a TikTok user who said slots machines down and casino floor empty after cyber attack. She also says staff had to make and distribute physical room keys and an admin error caused her to walk in on another guest. Source: <a href=\"https:\/\/t.co\/etNWW0S49y\">https:\/\/t.co\/etNWW0S49y<\/a> <a href=\"https:\/\/t.co\/ZgYkv1fD58\">pic.twitter.com\/ZgYkv1fD58<\/a><\/p>\n<p> &mdash; Joe Tidy (@joetidy) <a href=\"https:\/\/twitter.com\/joetidy\/status\/1701527162614919286?ref_src=twsrc%5Etfw\">September 12, 2023<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script> <\/p>\n<p>Some systems are <a href=\"https:\/\/www.cnbc.com\/2023\/09\/12\/mgm-resorts-cybersecurity-incident-forces-system-outage.html\" target=\"_blank\">slowly coming back to life<\/a>, but there&rsquo;s no estimate for when full functionality will be restored. The initial fallout of the attack seems to have been the worst of it, with reports of &ldquo;thousands&rdquo; of guests <a href=\"https:\/\/www.dailymail.co.uk\/news\/article-12505921\/MGM-Resorts-Las-Vegas-cyber-attack.html\" target=\"_blank\">locked out of their rooms<\/a>.<\/p>\n<p>In terms of what the attack could mean for guests, it&rsquo;s too early to say. MGM has not touched on whether or not customer data has been breached or exfiltrated, and if the culprit is ransomware this could rumble on for days or weeks. Nobody wants to think about their personal data being wrapped up and dropped onto a data dump website, but as with all these incidents it is a distinct possibility. Unverified sources are <a href=\"https:\/\/twitter.com\/LasVegasLocally\/status\/1701329325625323788\" target=\"_blank\">claiming this to be the case<\/a>, but we would suggest sticking to official sources only.<\/p>\n<p>If you&rsquo;re a guest at an MGM resort, don&rsquo;t panic. Keep note of the contact numbers, and ask staff what the process is for keeping you informed of any breaking developments. An abundance of caution would suggest monitoring credit and debit card payments for a little while, along with watching out for any MGM themed emails. If you do receive the latter, go back to an official point of contact and verify its authenticity. Sometimes organisations send out emails which are genuine, but look suspicious. It&rsquo;s always better to check.<\/p>\n<p>If this attack does prove to be ransomware, the next development we hear about could be the attackers announcing a data dump or additional demands. For the time being, don&rsquo;t panic and try to enjoy your resort time as best as you can given the unusual circumstances.<\/p>\n<hr \/>\n<p><strong>We don&rsquo;t just report on threats&mdash;we remove them<\/strong><\/p>\n<p>Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by <a href=\"https:\/\/www.malwarebytes.com\/for-home\">downloading Malwarebytes today<\/a>.<\/p>\n<p><a href=\"https:\/\/www.malwarebytes.com\/blog\/personal\/2023\/09\/major-cyberattack-leaves-mgm-resorts-reeling\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<table cellpadding=\"10\">\n<tr>\n<td valign=\"top\" align=\"left\">\n<p>Categories: <a href=\"https:\/\/www.malwarebytes.com\/blog\/category\/news\" rel=\"category tag\">News<\/a><\/p>\n<p>Categories: <a href=\"https:\/\/www.malwarebytes.com\/blog\/category\/personal\" rel=\"category tag\">Personal<\/a><\/p>\n<p>Tags: MGM resorts<\/p>\n<p>Tags:  hotel<\/p>\n<p>Tags:  casino<\/p>\n<p>Tags:  attack<\/p>\n<p>Tags:  cyber<\/p>\n<p>Tags:  shutdown<\/p>\n<p>MGM resorts has suffered a major cyberattack leading to shutdowns across the US.<\/p>\n<table width=\"100%\">\n<tr>\n<td align=\"right\">\n<p><b>(<a href=\"https:\/\/www.malwarebytes.com\/blog\/personal\/2023\/09\/major-cyberattack-leaves-mgm-resorts-reeling\" title=\"Major cyberattack leaves MGM Resorts reeling\">Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/www.malwarebytes.com\/blog\/personal\/2023\/09\/major-cyberattack-leaves-mgm-resorts-reeling\">Major cyberattack leaves MGM Resorts reeling<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/www.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[1191,30112,16128,8462,30111,32,26699,1343],"class_list":["post-22895","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-attack","tag-casino","tag-cyber","tag-hotel","tag-mgm-resorts","tag-news","tag-personal","tag-shutdown"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/22895","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=22895"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/22895\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=22895"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=22895"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=22895"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}