MGM, Caesars Cyberattack Responses Required Brutal Choices

Tens of millions in losses later, the MGM and Caesars systems are back online following dual cyberattacks by the same threat actor — here's what experts say about their incident responses. [TechWeb]( Follow Dark Reading: [RSS]( September 25, 2023 LATEST SECURITY NEWS & COMMENTARY [MGM, Caesars Cyberattack Responses Required Brutal Choices]( Tens of millions in losses later, the MGM and Caesars systems are back online following dual cyberattacks by the same threat actor — here's what experts say about their incident responses. [Akira Ransomware Mutates to Target Linux Systems, Adds TTPs]( The newly emerged ransomware actively targets both Windows and Linux systems with a double-extortion approach. [NFL, CISA Look to Intercept Cyber Threats to Super Bowl LVIII]( The league is working with more than 100 partners to workshop responses to a host of hypothetical cyberattacks on the upcoming Big Game in Las Vegas. [Hackers Let Loose on Voting Gear Ahead of US Election Season]( Ethical hackers were given voluntary access to digital scanners, ballot markers, and electronic pollbooks, all in the name of making the voting process more resilient to cyber threats. [Apple Fixes 3 More Zero-Day Vulnerabilities]( All of the security bugs are under active attacks, but the extent of their exploitation is unknown. [Guardians of the Cyberverse: Building a Resilient Security Culture]( Whether achieved through AI-enabled automation, proactive identification and resolution of issues, or the equitable distribution of risk management responsibilities, the goal must be resilience. [TikTok API Rules Stymie Analysis of US User Data, Academics Say]( Terms of service for API access give TikTok publication review over findings and limit access to critical data on the platform's impact on US users, researchers say. [(Sponsored Article) Evaluating New Partners and Vendors From an Identity Security Perspective]( Before working with new vendors, it's important to understand the potential risks they may pose to your digital environments. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [MGM Restores Casino Operations 10 Days After Cyberattack]( The lost revenue due to downtime for gaming and hotel bookings is difficult to ballpark. [Mastering Defense-in-Depth and Data Security in the Cloud Era]( Though widely used in many organizations, the concept still requires adaptation when aimed at protecting against new types of attacks. [Understanding the Differences Between On-Premises and Cloud Cybersecurity]( The nature of cloud environments means security and technical teams need a different mindset to understand and manage their new attack surface. [Cisco Moves Into SIEM With $28B Deal to Acquire Splunk]( Cisco's surprise agreement could reshape secure information and event management (SIEM) and extended detection and response (XDR) markets. [MORE]( EDITORS' CHOICE ['Gold Melody' Access Broker Plays on Unpatched Servers' Strings]( A financially motivated threat actor uses known vulnerabilities, ordinary TTPs, and off-the-shelf tools to exploit the unprepared, highlighting the fact that many organizations still don't focus on the security basics. LATEST FROM THE EDGE [Do CISOs Have to Report Security Flaws to the SEC?]( The new SEC rules make it seem that there is no need to report the presence of security vulnerabilities, but that doesn't quite tell the full story. LATEST FROM DR TECHNOLOGY [ASPM Is Good, but It's Not a Cure-All for App Security]( What application security posture management does, it does well. But you'll still need to fill in some holes, especially concerning API security. LATEST FROM DR GLOBAL [Bot Swarm: Attacks From Middle East & Africa Are Notably Up]( Most automated attacks from the regions were against e-commerce and telecommunications organizations. WEBINARS - [Fundamentals of a Cyber Risk Assessment]( Executives are increasingly thinking about cyberattacks and security threats in terms of risk to their organization. It can be difficult for organizations to quantitatively measure risk, or to assess how an attack or breach would impact the business. In this ... - [The Evolution of the Vulnerability Landscape in 2023]( While this summer has been jokingly called "zero-day summer" by some, 2023 fits Mandiant observations that zero-day exploitation has been trending upward for the last few years. As shown in our zero-day trends blog post, Mandiant tracked 55 zero-day vulnerabilities that we ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [The Forrester Wave: External Threat Intelligence Service Providers, Q3 2023]( - [Threat Intelligence: Data, People and Processes]( - [Global Perspectives on Threat Intelligence]( - [Digital Transformation and Connected Systems Have Opened the Door to New Threat Vectors]( - [Evaluating SASE for the Work-From-Anywhere Era]( - [9 Traits You Need to Succeed as a Cybersecurity Leader]( - [Cybersecurity in a post pandemic world: A focus on financial services]( [View More White Papers >>]( FEATURED REPORTS - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... - [How to Use Threat Intelligence to Mitigate Third-Party Risk]( The report discusses the various steps of a continuous third-party intelligence lifecycle: Data collection, Data classification, Data storage, Data analysis, reporting, dissemination, continuous monitoring, data governance, and choosing the right technology stack. The report also includes information about how attackers ... - [Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks]( The most profound change to enterprise security with the rise of remote work is the way endpoint security has moved from last line of defense to being on the frontline. The user's endpoint is the first device attackers encounter, making ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [OPSWAT-Sponsored SANS 2023 ICS/OT Cybersecurity Report Reveals Vital Priorities to Mitigate Ongoing Threats]( [Salvador Technologies Wins Funding for $2.2M Cybersecurity Project From BIRD Foundation]( [OneLayer Expands Its Private Cellular Network Security Solutions to Operations and Asset Management]( [Bishop Fox Expands Leadership With First CISO and CTO]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [How to Deploy Zero Trust for Remote Workforce Security]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=118345&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_09.25.23&sp_cid=49919&utm_content=DR_NL_Dark%20Reading%20Daily_09.25.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#55 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)