Hackers claim it only took a 10-minute phone call to shut down MGM Resorts

The ALPHV/BlackCat ransomware group claimed responsibility for the MGM Resorts cyber outage on Tuesday, according to a post by malware archive vx-underground. The group claims to have used common social engineering tactics, or gaining trust from employees to get inside information, to try and get a ransom out of MGM Resorts, but the company reportedly refuses to pay. The conversation that granted initial access took just 10 minutes, according to the group. 

"All ALPHV ransomware group did to compromise MGM Resorts was hop on LinkedIn, find an employee, then call the Help Desk," the organization wrote in a post on X. Those details came from ALPHV, but have not been independently confirmed by security researchers.

The international resort chain started experiencing outages earlier this week, as customers noticed slot machines at casinos owned by MGM Resorts shut down on the Las Vegas strip. As of Wednesday morning, MGM Resorts still shows signs that it's experiencing downtime, like continued website disruptions. MGM Resorts has not responded to a request for comment, but said in a statement on Tuesday that "Our resorts, including dining, entertainment and gaming are currently operational."

The MGM Resorts homepage on Wednesday morning still says that the website is unavailable.
Katie Malone for Engadget

ALPHV has a reputation in the cybersecurity community as being "remarkably gifted at social engineering for initial access," according to vx-underground. From there, it usually uses ransomware ploys to extort a target into paying up, and it's been going after huge corporate targets. In July, ALPHV and another threat actor Clop listed beauty giant Estée Lauder on their data leak sites

This article originally appeared on Engadget at https://www.engadget.com/hackers-claim-it-only-took-a-10-minute-phone-call-to-shutdown-mgm-resorts-143147493.html?src=rss https://www.engadget.com/hackers-claim-it-only-took-a-10-minute-phone-call-to-shutdown-mgm-resorts-143147493.html?src=rss
Created 2y | Sep 13, 2023, 3:20:14 PM


Login to add comment

Other posts in this group

NVIDIA confirms the Switch 2 has DLSS

This week's Nintendo Direct

Apr 3, 2025, 8:10:15 PM | Engadget
The world’s smallest pacemaker is injectable and powered by light

Engineers at Northwestern University have developed the world’

Apr 3, 2025, 5:50:09 PM | Engadget
TikTok reportedly faces a €500 million fine for sending private user data to China

TikTok will reportedly face a fine of over €500 million ($553 million) for transferring Europeans' private data to China. Bloomberg

Apr 3, 2025, 5:50:08 PM | Engadget