Saturday, March 30, 2024

NOT AGAIN ... REALLY?

By Trey Rusk

 


Yesterday, March 29, 2024, MGM Entertainment was hacked again.  The hack was so simple that it's mind boggling.  Now remember last fall MGM and Caesars were both hacked.  Caesars paid the ransom. MGM said no and paid nearly as much reworking their IT Security Division.  This hack really wasn't a hack.  Just a dumbass IT employee.  

Details:  "IT. How can I help you?  Yeah, this is Joe Blow from Park MGM and I can't log in.  I've tried my password but it may not be correct.  OK, Joe I've located you so give me your DOB and Employee number hanging on your badge."  Joe rattles off the numbers and VIOLA, IT gives him the info.  All is good except it ain't the real Joe Blow.  Joe Blow had all that info on his Facebook page.  The employee number was taken from a photo of him wearing his badge and was enlarged for clarity.  

Bam!  System failure!  MGM's phones, room keys, reservations, slot machines and anything that uses a computer is not working.  Guests cannot enter their rooms.  Restaurants cannot accept credit cards.  Cash is King, but nobody really carries a lot of cash anymore.  Everything is digital.  MGM estimates 100 million bucks in losses so far.

MGM tries to cover it up but they can't keep a lid on it.  Somehow the WSJ runs the story today and it's not good.  Easter Weekend and they are sold out.  Hotel guests are literally sleeping in the hallways because they can't open the electronic lock on their $300 a night hotel room.  Once they do get inside they beat feet to another hotel if they can find one.  

I told you the above to tell you this...  Anyone can be hacked.  Governments, Big Businesses, and Ma and Pa.  Banks are accused of stealing from depositors everyday.  However, in most cases the depositor/customers had given their information to someone that they thought was the fraud division of the bank during a phone call or an email.  Most of the time the victim is elderly.

Don't use a Debit Card on a gas pump or convenience store.  Never use self check out and keep your credit cards in a scan proof wallet.  

This happened to an elderly relative of mine and I can tell you that the bank will look into it but there is really nothing they can do. Sometimes a good homeowners policy will cover some of it.  The police will make a report. The end.

2 comments:

bob walsh said...

You would think they would improve their security, wouldn't you?

Anonymous said...

Bob, They did some upgrades and training last time. This was a pure OH SHIT moment. It appears that IT call desk f*cked up and cost MGM millions.