Advisers
Learn
Newsletter
Offers
Podcast
About
  Back
~
1
min read
· Posted on
February 21, 2024

Ocean's 404: MGM Resorts suffers cyberattack...and no, Danny Ocean is not a suspect

MGM Resorts have suffered a real-life Ocean's Eleven Heist.

What's the key learning?

  • All of the hotels and casinos in the MGM stable have had a major outage as a result of a 10-minute phone call, and it was a result of the use of social engineering.
  • The most vulnerable part of any security system is the person sitting behind it.
  • Social engineering is the non-technical way of manipulating people to reveal confidential information. Think: passwords, login details, access points.

👉 Background: MGM Resorts is one of the big names on the Las Vegas casino strip - it owns the Bellagio, Aria and Cosmopolitan hotels.

👉 What happened: Now, MGM Resorts have suffered a real-life Ocean's Eleven Heist. All of the hotels and casinos in the MGM stable have had a major outage as a result of a 10-minute phone call.

👉 What else: It was the ultimate use of social engineering. The hackers:

  • Found an employee on Linkedin with the right credentials
  • Impersonated the employee and called MGM's tech help desk to change their password.
  • Logged into that account and uploaded malware on the casino's systems.

As a result, slot machines were down, ATM machines were inoperable and hotel concierge were checking in customers with pen and paper.

What's the key learning?

💡The most vulnerable part of any security system is the person sitting behind it.

💡Normally, we hear about the technical way in which a hacker uncovered a gap in a company's security systems. But social engineering is the non-technical way of manipulating people to reveal confidential information. Think: passwords, login details, access points.

💡Given MGM Resorts earned $3.9 billion USD in revenue for the most recent quarter... that's around $44 million per day. And that's a LOT of money to be losing due to a cyberattack.

Ready to win at money?

Sign up for Flux and join 100,000 members of the Flux family

Sign Up
A button to App StoreGoogle Play store button
Excellent  4.9 out of 5
Star rating
© 2024 Flux Technologies Pty Ltd and Flux Media Pty Ltd
All rights reserved.
Explore
HomeLearnPodcastAboutNewsletterFlux at WorkAdvisers
Offers
Home LoansSavings AccountsBank AccountsShare TradingCar LoansCredit Cards
Support
CareersContact usPrivacy PolicyTerms of Use
Disclaimer: Flux Technologies Pty Ltd (ABN 86 634 507 172) is an authorised representative (Representative No. 1283166) of Mozo Pty Ltd who is the holder of AFSL No. 328141. We also provide general advice on credit products under our own Australian Credit Licence No. 530103. The product information presented does not constitute an offer and we are not recommending or suggesting any particular product. Any product advice presented is of a general nature only, and is not to be taken as any sort of advice as it has not taken into account your personal circumstances, objectives, financial situation or needs. Flux may not cover all products available to you. Check out our Credit Guide and Financial Services Guide for more information.

All information contained in the Flux app, www.flux.finance, www.joinflux.com, app.flux.finance and any podcast of Flux Media Pty Ltd (ABN 27 639 804 345) is for education and entertainment purposes only. It is not intended as a substitute for professional financial, legal or tax advice. Flux Media Pty Ltd is the owner of the registered trade mark, 'What the Flux'. While we do our best to provide accurate information on the podcast, we accept no responsibility for any inaccuracies that may be communicated.
No items found.