Summary of the Event:
In September 2023, MGM Resorts International, a leading global hospitality and entertainment company, experienced a significant cybersecurity breach. The attack, attributed to the ALPHV/BlackCat ransomware group in collaboration with the Scattered Spider hacking collective, disrupted operations across MGM’s properties, including iconic Las Vegas resorts such as the Bellagio, Mandalay Bay, and the MGM Grand. Critical systems, including hotel check-in, digital room keys, slot machines, ATMs, and online booking platforms, were rendered inoperative, leading to substantial operational challenges.
The breach was initiated through sophisticated social engineering tactics. Attackers impersonated an MGM employee, leveraging information obtained from professional networking sites to deceive the company’s IT help desk. This allowed unauthorised access to MGM’s internal systems, culminating in the deployment of ransomware that encrypted vital data and disrupted services for approximately ten days.
Analysis of Key Decisions or Actions:
MGM Resorts’ leadership faced critical decisions in the immediate aftermath of the breach. Opting…
Elite Content — Operator Pass required
Full access to every vertical update, board briefing, and all 118 intelligence tools.
The Operator Pass is £2,400/year with a 7-day grace period.
