27 Malicious PyPI Packages with Thousands of Downloads Found Targeting IT Experts
An unknown threat actor has been observed publishing typosquat packages to the Python Package Index (PyPI) repository for nearly six months with an aim to deliver malware capable of gaining persistence, stealing sensitive data, and accessing cryptocurrency wallets for financial gain.
The 27 packages, which masqueraded as popular legitimate Python libraries, attracted thousands of downloads, Read More
The Hacker News | #1 Trusted Cybersecurity News Site
When a breach goes from 25 documents to 1.3 terabytes…
If 25 documents stolen is “very serious,” I’m not sure the words exist to describe the 1.3 terabytes of data that Leicester City Council now says it has had stolen by hackers. Read More
Cyber Attack at MGM Systems Forces IT Systems Shutdown
In a recent development, MGM Resorts, a prominent hotel and casino giant, has confirmed the presence of a cybersecurity issue responsible for an ongoing system outage that has affected its properties in Las Vegas.
In a statement on social media, the company stated, “MGM Resorts recently identified a cybersecurity issue affecting some of the company’s systems.”
The statement continued, “Promptly after detecting the issue, we quickly began an investigation with assistance from leading external cybersecurity experts.
Protect your Business Email from threats like tracking, blocking, modifying, phishing, account takeover, business email compromise, malware, and ransomware with Trustifi’s AI-powered email security solution.
We also notified law enforcement and took prompt action to protect our systems and data, including shutting down certain systems. Our investigation is ongoing, and we are working diligently to determine the nature and scope of the matter.”
Reports on social media indicate that this incident has caused disruptions across MGM’s Las Vegas casinos, impacting ATM cash dispensers and slot machines and forcing hotel restaurants to accept cash-only payments.
Guests have reported being unable to charge expenses to their rooms or use digital room keys.
An official notice on the MGM Resorts website, also affected by the outage, confirms that all Las Vegas resorts under MGM’s umbrella, including Aria, the Bellagio, Luxor, MGM Grand, and Mandalay Bay, are impacted.
Guests are encouraged to call for reservations or assistance from concierge services.
Sources familiar with the situation suggest that this incident has affected all of MGM’s properties, not just those in Las Vegas.
The websites of several regional resorts, including MGM Springfield in Massachusetts, MGM National Harbor, and the Empire City Casino in New York, were also offline during this time.
Many crucial details about the incident remain unknown, including the specific nature of the cyberattack and whether any data has been exfiltrated from MGM’s systems.
It is also uncertain when MGM expects to restore its computer systems to full functionality.
TechCrunch reached out to an MGM spokesperson for further information, but there was no immediate response at the time of the report.
It remains unclear whether MGM employees currently have access to corporate email systems.
This incident marks another cybersecurity challenge for MGM Resorts, as it comes after a significant incident last year where the personal information of over 140 million guests was shared on Telegram.
The stolen data included guests’ full names, postal addresses, email addresses, phone numbers, dates of birth, and, in some cases, passport and driver’s license numbers.
The Vulnerability of Zero Trust: Lessons from the Storm 0558 Hack
While IT security managers in companies and public administrations rely on the concept of Zero Trust, APTS (Advanced Persistent Threats) are putting its practical effectiveness to the test. Analysts, on the other hand, understand that Zero Trust can only be achieved with comprehensive insight into one’s own network.
Just recently, an attack believed to be perpetrated by the Chinese hacker group Read More
The Hacker News | #1 Trusted Cybersecurity News Site