MGM Resorts Cyberattack
A reminder from TallMark Security to protect yourself from social engineering scams
MGM Resorts International, a major hospitality and entertainment company, was recently the victim of a cyberattack that cost the company over $52 million in lost revenue. The attack began with a simple social engineering scam, in which a cybercriminal impersonated an MGM employee and called the IT department to request a password reset. The IT department complied, giving the cybercriminal access to the employee's account and eventually leading to the cybercriminal taking over MGM's entire system. This incident is a stark reminder of the importance of protecting yourself from social engineering scams. Social engineering is a type of cyberattack that relies on human psychology to trick people into revealing confidential information or clicking on malicious links. Cybercriminals can use a variety of social engineering techniques, such as phishing, vishing, and baiting, to gain access to sensitive data or systems. Here are some tips to stay safe from social engineering scams:
- Be careful with the information you share online. Cybercriminals can use information from social media, LinkedIn, and other online sources to target you in phishing attacks.
- Be suspicious of unsolicited emails, texts, and phone calls. If someone contacts you claiming to be from a legitimate organization, such as your bank or credit card company, verify their identity before providing any personal information..
- Never click on links in suspicious emails or texts. If you're unsure whether a link is safe, hover over it with your mouse to see the actual URL. You can also check the website's security certificate by clicking on the lock icon in the address bar.
- Be aware of common social engineering scams. Some popular scams include phishing emails that appear to be from legitimate organizations, phone calls from people claiming to be tech support representatives, and fake websites that look like real websites.
Tallant Smith, cofounder of TallMark Security says, "If you think you may have been the victim of a social engineering scam, report it to your IT department at work, the appropriate authorities or get in touch with TallMark. We can always point you in the right direction." By following these tips, you can help protect yourself from social engineering scams and keep your personal information safe.