The casino and hotel company MGM Resorts and Caesars Entertainment have experienced significant disruptions in their operations due to cyberattacks. MGM Resorts had widespread system outages in its properties, including keycard malfunctions, dark slot machines, and out-of-order ATMs. Caesars Entertainment, on the other hand, suffered a data breach that resulted in the theft of Social Security numbers, driver’s license numbers, and other personal data of its loyalty program members.
These high-profile incidents have highlighted the ongoing threat of ransomware attacks. While the attacks on casinos attract attention due to their dramatic nature, experts emphasize that there are many other life-impacting attacks on critical infrastructure and healthcare that go unnoticed by the public. The cyberattacks on casinos fit into a larger cycle where certain attacks generate attention and spur action, but then fade into the background as new threats emerge.
The recent cyberattacks were attributed to Alphv, a Russia-based ransomware group known for its aggressive tactics. Casinos are attractive targets for cybercriminals because of the potential to access valuable customer data and the historically inadequate security measures in place. Alphv has not only targeted casinos but also healthcare organizations and critical institutions, using stolen data as leverage to demand ransom payments.
Law enforcement agencies have discouraged victims from paying ransoms, but the effectiveness of these efforts is limited. As ransomware attacks continue to rise, experts suggest that governments should impose stricter limitations on when ransoms can be legally paid. More importantly, institutions and legislators need to be educated about the risks posed by ransomware and invest in improving digital defenses.
While these cyberattacks have disrupted the operations of casinos, experts hope that they serve as catalysts for proactive action. By studying these cases and closing potential security gaps, organizations can be better prepared to defend against future attacks. The key is to use these incidents as opportunities to raise awareness and allocate resources to strengthen cybersecurity measures.
Definitions:
- Ransomware: A type of malicious software that encrypts a victim’s files and demands a ransom payment in exchange for unlocking the files.
- Cyberattack: An attempt to gain unauthorized access to a computer system or network for malicious purposes.
- Data breach: Unauthorized access, disclosure, or acquisition of sensitive information.
- Ransom: A sum of money demanded in exchange for the release of stolen or encrypted data.
Sources: The Wall Street Journal, Bloomberg