Data Breach
MGM Resorts International Data Breach
10.6M records exposed • September 2023
Hackers called MGM's IT help desk, pretended to be an employee, and got them to reset a password. That simple trick let them take down slot machines, hotel systems, and more for days. The hackers (Scattered Spider) demanded ransom, but MGM refused to pay. It still cost MGM about $100 million, and customer data was stolen and leaked.
What Happened
The Scattered Spider hacking group used social engineering to trick MGM's IT help desk into resetting credentials, gaining access to MGM's systems. The attack disrupted casino operations for days, with slot machines, hotel key cards, and reservation systems all affected. MGM refused to pay the ransom, costing them an estimated $100 million in lost revenue and remediation.
Attack method: Social engineering attack via IT help desk (Scattered Spider)
What Data Was Exposed
Full names, Contact information, Driver's license numbers, Social Security numbers, Passport numbers, Dates of birth, Some financial information
Is your business exposed?
What to Do If You're Affected
- 1.
Check MGM breach notification for your specific exposure
- 2.
Freeze credit if SSN or passport number exposed
- 3.
Monitor for passport-related identity fraud if passport exposed
- 4.
Enroll in free identity monitoring offered by MGM
- 5.
Watch for targeted phishing using your MGM customer data
- 6.
Review credit card statements for unauthorized charges
Lessons for Businesses
- • Social engineering attacks targeting help desks are increasingly common
- • Verify identity through multiple channels before resetting credentials
- • Refusing to pay ransom is possible but requires preparation
- • Cybersecurity failures can cost far more than ransom demands
Sources
Related Breaches
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required