all InfoSec news
High-Stakes Identity Impersonation: Lessons From the MGM Attack
Security Boulevard securityboulevard.com
MGM Resorts recently found itself in the midst of a major cybersecurity incident that not only crippled its operations but also exposed sensitive customer data. The sophisticated attack orchestrated by a group known as Scattered Spider employed social engineering to the IT department to reset credentials. The attackers then gained access to the SSO, raised their identity credentials to super user level and then systematically got into other systems.
The post High-Stakes Identity Impersonation: Lessons From the MGM Attack appeared …
access attack attackers authentication credentials customer customer data cybersecurity cybersecurity incident data department engineering exposed found high identity identity & access impersonation incident major mgm mgm attack mgm resorts operations passwordless reset scattered spider security bulletin sensitive social social engineering spider