MGM, Caesars attacks raise new concerns about social engineering tactics
Multiple threat groups have employed the same criminal tool kit to target vulnerable systems.
What are the recent social engineering attacks?
Recent social engineering attacks against MGM Resorts and Caesars Entertainment involved threat groups using similar tactics to compromise vulnerable systems. These attacks raised concerns about the vulnerabilities exploited and the methods employed, such as sending messages to employees to reauthenticate their identities, which allowed hackers to gain access to sensitive systems.
Who are the threat actors involved?
The attacks are attributed to the threat group AlphV, also known as BlackCat, which has been linked to Muddled Libra. This group has a history of targeting outsourcing firms associated with high-value cryptocurrency entities. They utilize a toolkit that includes social engineering tactics to manipulate employees into providing access to systems.
What can organizations do to defend against these attacks?
Organizations can enhance their defenses by focusing on the human element, which remains a vulnerable point in cybersecurity. Implementing robust training programs to educate employees about social engineering tactics, alongside sophisticated security controls, can help mitigate risks. Additionally, firms providing identity authentication services should continuously improve their security measures to prevent credential compromise.
MGM, Caesars attacks raise new concerns about social engineering tactics
published by Tech-Gofer
We're a Technology Consulting, Marketing and Distribution firm with over 400 vendors, dozens of subject matter experts and unique tolls to help our clients and partners be more efficient and successful in their technology projects.
Sign in with LinkedIn