industryThe Ransomware & AI Era (2020–2023) Daily Briefing
Cybersecurity Briefing: Major Breaches and Vulnerabilities on Sept 18, 2023
Monday, September 18, 2023
Lead Story: MGM Resorts Cyber-Attack
On September 18, 2023, MGM Resorts suffered a significant cyber-attack attributed to the hacking group Scattered Spider. The attack resulted in the shutdown of various systems, including ATMs and slot machines, disrupting operations across multiple venues. This incident not only highlights the vulnerabilities within the hospitality sector but also raises concerns regarding the financial implications of such breaches, as potential impacts on MGM's financial ratings are being assessed. The incident underscores the persistent threat posed by sophisticated cyber adversaries targeting high-profile organizations in critical sectors. Check Point ResearchSecondary Items:
- Airbus Data Breach: Ransomed, a notorious hacking group, claimed responsibility for a data breach at Airbus, exposing sensitive information from approximately 3,200 vendors. This breach exemplifies the ongoing trend of high-profile organizations being targeted, highlighting the need for enhanced security measures in supply chain management. Check Point Research
- Critical Vulnerabilities and Patches: On this date, major tech companies, including Microsoft and Adobe, released critical updates to address vulnerabilities that are currently being actively exploited. Organizations are urged to prioritize patch management to mitigate the risk of attacks leveraging these vulnerabilities. eSecurity Planet
- DarkBeam Data Leak: A significant data leak involving over 3.8 billion records was discovered, attributed to human error by the cybersecurity firm DarkBeam. The exposed database contained credentials previously leaked from other breaches, raising concerns about the risks associated with unsecured data. Cybersecurity Hub