Cybersecurity Briefing: Ransomware Hits Save the Children and MGM Resorts

Lead Story: Ransomware Attack on Save the Children

On September 12, 2023, the BianLian ransomware group claimed responsibility for a significant breach of Save the Children’s IT systems. The attack resulted in the theft of approximately 6.8 TB of sensitive data, including financial and health records. This incident underscores a disturbing trend of cybercriminals targeting non-profit organizations and the healthcare sector, sectors that are typically seen as vulnerable due to their often limited cybersecurity resources. The implications of this breach could have long-lasting effects on the organization’s ability to operate securely and serve its mission.

Secondary Item 1: MGM Resorts Cybersecurity Incident

MGM Resorts experienced a major cyberattack that caused significant operational disruptions across its properties. The attack affected reservation systems and other critical services, although the extent of any data breach remains unclear. The company is currently cooperating with law enforcement to investigate the incident. This attack raises concerns about the security of the hospitality industry, which has become a prime target for cybercriminals looking to exploit operational weaknesses.

Secondary Item 2: Exploitation of CVE-2023-22515

The Cybersecurity and Infrastructure Security Agency (CISA) issued alerts concerning the active exploitation of CVE-2023-22515, a critical vulnerability in Atlassian Confluence. This vulnerability allows unauthorized access to affected instances and poses a significant risk to organizations that have not yet applied the necessary updates. CISA has urged organizations to prioritize upgrading their systems to mitigate potential threats stemming from this vulnerability.

Analyst Perspective

The events of September 12, 2023, highlight the escalating threats facing various sectors, particularly as cybercriminals become more brazen in their attacks. The targeting of non-profits like Save the Children reveals a shift in focus that could jeopardize critical services provided to vulnerable populations. Furthermore, the MGM Resorts incident serves as a reminder of the hospitality industry's ongoing vulnerabilities. As organizations grapple with these challenges, it is imperative that they adopt robust cybersecurity measures and stay vigilant against emerging threats.