William Turton, Christopher Palmeri, and Katrina Manson report:
MGM Resorts International was hacked by the same group of attackers that breached Caesars Entertainment Inc. weeks earlier, according to four people familiar with the matter.
The hackers demanded a ransom from MGM, according to two of the people. It wasn’t immediately clear how much ransom was requested or if the hackers deployed ransomware to lock up the company’s files.
Read more at Bloomberg (sub. req.)
Multiple outlets now report that the “Scattered Spider” group was responsible for both attacks. Reuters quotes Charles Carmakal, chief technology officer at Alphabet Inc’s Mandiant Intelligence, as commenting that Scattered Spider is “one of the most prevalent and aggressive threat actors impacting organizations in the United States today.”
So when Caesar’s got hit a few weeks earlier, with whom did they share that information? Did MGM get any heads up or information that might have set off alarms that they might be next or on a very short list of targets?