In a shocking turn of events, hackers managed to disrupt the operations of MGM Resorts allegedly through a 10-minute phone call. According to Engadget’s report, ALPHV ransomware group claimed responsibility for the incident. Their method was alarmingly simple: they impersonated a company executive and used social engineering tactics to deceive an Helpdesk employee into granting them access to the company’s computer systems. This breach, raised serious concerns about the cybersecurity measures in place at one of Las Vegas’s largest hospitality and entertainment conglomerates.
The Vulnerability of Social Engineering
The MGM Resorts incident underscores the vulnerability of social engineering, a method that relies on manipulating individuals to divulge sensitive information or grant unauthorized access. In this case, the hackers convinced an employee to unknowingly assist them in their cyberattack. Social engineering attacks can take various forms, including phishing emails, phone calls, or in-person interactions, making them difficult to defend against solely with technology.
The recent MGM Resorts incident serves as a stark reminder of the growing threat of cybersecurity breaches facing all the industries. Hackers are becoming increasingly sophisticated in their methods, and even a 10-minute phone call can have devastating consequences. It is crucial for businesses to prioritize cybersecurity and stay vigilant against the ever-present threats.
Source: “Hackers claim it only took a 10-minute phone call to shut down MGM Resorts” – Engadget (https://www.engadget.com/hackers-claim-it-only-took-a-10-minute-phone-call-to-shutdown-mgm-resorts-143147493.html)