{"id":53672,"date":"2023-09-14T20:47:03","date_gmt":"2023-09-14T20:47:03","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/caesars-says-cyber-crooks-stole-customer-data-as-mgm-casino-outage-drags-on\/"},"modified":"2023-09-14T20:47:03","modified_gmt":"2023-09-14T20:47:03","slug":"caesars-says-cyber-crooks-stole-customer-data-as-mgm-casino-outage-drags-on","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/caesars-says-cyber-crooks-stole-customer-data-as-mgm-casino-outage-drags-on\/","title":{"rendered":"Caesars says cyber-crooks stole customer data as MGM casino outage drags on"},"content":{"rendered":"

Casino giant Caesars Entertainment has confirmed miscreants stole a database containing customer info, including driver license and social security numbers for a “significant number” of its loyalty program members, in a social engineering attack earlier this month.<\/p>\n

The admission comes as MGM Resorts<\/a> enters its fourth day of inoperable IT systems and casinos following a “cybersecurity issue.” Internet crime gang Scattered Spider, understood to be responsible for that intrusion, reportedly bragged that all it took to break into the corporation’s networks was a ten-minute call with the help desk.<\/p>\n

It’s also reported the arachnid crew hit both Caesars and MGM Resorts, though reps for Scattered Spider, also known as 0ktapus, claimed they only hit MGM and had nothing to do with the Caesars raid.<\/p>\n

Then fall Caesars<\/h3>\n

In an 8-K form<\/a> submitted late last week to the SEC, America’s financial watchdog, Caesars \u2013 which owns more than 50 resorts and casinos in Las Vegas and 18 other US states \u2013 disclosed the theft of its customer database, which it blamed on “a social engineering attack on an outsourced IT support vendor.” <\/p>\n

Caesars declined to answer The Register<\/em>‘s questions. The digital break-in was discovered on September 7, according to its SEC filing. The crooks stole Caesars’ loyalty program database, which was stuffed with people’s sensitive personal information.<\/p>\n

“We are still investigating the extent of any additional personal or otherwise sensitive information contained in the files acquired by the unauthorized actor,” Caesars told the SEC. “We have no evidence to date that any member passwords\/PINs, bank account information, or payment card information (PCI) were acquired by the unauthorized actor.”<\/p>\n

Upon noticing suspicious IT network activity, the entertainment goliath said it not only immediately launched a probe, it also hired “leading cybersecurity firms” to help with its incident response and remediation efforts, and notified law enforcement and state gaming regulators.<\/p>\n