Okta Agent Involved in MGM Resorts Breach, Attackers Claim

ALPHV/BlackCat ransomware operators have used their leak site to "set the record straight" about the MGM Resorts cyberattack. Meanwhile, more attacks abusing Okta could be likely. [TechWeb]( Follow Dark Reading: [RSS]( September 18, 2023 LATEST SECURITY NEWS & COMMENTARY [Okta Flaw Involved in MGM Resorts Breach, Attackers Claim]( ALPHV/BlackCat ransomware operators have used their leak site to "set the record straight" about the MGM Resorts cyberattack. Meanwhile, more attacks abusing Okta could be likely. [DoD: China's ICS Cyber Onslaught Aimed at Gaining Kinetic Warfare Advantage]( Escalating incursions into military base infrastructure, telecom networks, utilities, and more signal that Beijing is laying the groundwork for mass disruption. [Microsoft Flushes Out 'Ncurses' Gremlins]( The maintainers of the widely used library recently patched multiple memory corruption vulnerabilities that attackers could have abused to, ahem, curse targets with malicious code and escalate privileges. [Microsoft: 'Peach Sandstorm' Cyberattacks Target Defense, Pharmaceutical Orgs]( For months, the Iran-backed APT has carried out waves of password spray attacks attempting to authenticate to thousands of environments across multiple targets worldwide. [Greater Manchester Police Hack Follows Third-Party Supplier Fumble]( This incident bears notable resemblance to an attack that occurred just last month affecting London's Metropolitan Police, raising concerns over UK cybersecurity safeguards for public safety. [Zero-Click iPhone Exploit Drops Pegasus Spyware on Exiled Russian Journalist]( The exploit is one of many that government and intelligence agencies have to infect target devices with the notorious surveillance tool. [MGM, Caesars File SEC Disclosures on Cybersecurity Incidents]( Pursuant to new regulation, both gaming companies reported recent cyber incidents to the SEC. [Cybercriminals Use Webex Brand to Target Corporate Users]( The false advertisement has been left up for days, flying under the radar by managing to adhere to Google Ads' policies. [How to Mitigate Cybersecurity Risks From Misguided Trust]( Trust is the crucial bridge between security and people, but excessive or misguided trust can pose serious security risks. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Microsoft Azure HDInsight Plagued With XSS Vulnerabilities]( To boot, the technology could be riddled with other flaws via its Apache services components, a security vendor says. [How to Transform Security Awareness Into Security Culture]( Leverage the human layer as a crucial cog in building cyber resilience within the organization. [When LockBit Ransomware Fails, Attackers Deploy Brand-New '3AM']( Nothing good happens after 2 a.m., they say, especially when hackers have two kinds of ransomware at their disposal. [Cybersecurity and Compliance in the Age of AI]( It takes a diverse village of experts to enact effective cybersecurity guidelines, practices, and processes. [MORE]( EDITORS' CHOICE ['Scattered Spider' Behind MGM Cyberattack, Targets Casinos]( The ransomware group is a collection of young adults who also recently breached Caesars Entertainment and made a ransom score in the tens of millions. LATEST FROM THE EDGE [Rail Cybersecurity Is a Complex Environment]( CISOs in the rail industry must protect an older, more complex infrastructure than most industries. Here are some of the unique, high-stakes challenges. LATEST FROM DR TECHNOLOGY [Will the AI Arms Race Lead to the Pollution of the Internet?]( Content creators want to protect their intellectual property from AI by poisoning data. Could this destroy the machine learning ecosystem? LATEST FROM DR GLOBAL [NCSC: Why Cyber Extortion Attacks No Longer Require Ransomware]( Ransomware becoming less of a factor as threat actors extort businesses with payment options that are less than regulatory fines. WEBINARS - [Securing Identities in the Cloud]( With enterprises increasingly shifting workloads to the cloud, they face different challenges including managing and securing user identities, as well as a web of machine identities. How do you map all of the identities that now reside in the cloud ... - [How Businesses Can Counterpunch against Generative AI-Powered Ransomware]( Join industry experts in AI and cybersecurity as they examine how ChatGPT and other generative AI tools are currently being used to improve the efficacy of ransomware attacks, how that will affect the cyber risk posture of most businesses, and ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [Threat Intelligence: Data, People and Processes]( - [Mandiant Threat Intelligence at Penn State Health]( - [Crucial Considerations when Enabling Secure Industrial Digital Transformation]( - [Work From Anywhere Doesn't Have to Be Complicated]( - [Essential SASE Must-haves]( - [Rediscovering Your Identity]( - [Cybersecurity in 2023 and beyond: 12 leaders share their forecasts]( [View More White Papers >>]( FEATURED REPORTS - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... - [Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks]( The most profound change to enterprise security with the rise of remote work is the way endpoint security has moved from last line of defense to being on the frontline. The user's endpoint is the first device attackers encounter, making ... - [How Enterprises Are Managing Application Security Risks in a Heightened Threat Environment]( Concerns over API security and low-code/no-code use added to an already-full plate of application security challenges for many organizations over the last year. IT and security decision-makers are deeply concerned about compromises resulting from vulnerabilities in the software supply ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [CISO Global Deepens Capabilities With Integrated Threat Intelligence Feed]( [Armis Launches Armis Centrix™, the AI-powered Cyber Exposure Management Platform]( [Enea Qosmos Threat Detection SDK Launched to Boost the Performance of Network-Based Cybersecurity]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [How to Deploy Zero Trust for Remote Workforce Security]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=118263&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_09.18.23&sp_cid=49858&utm_content=DR_NL_Dark%20Reading%20Daily_09.18.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#d6 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)