MGM Resorts recently found itself in the midst of a major cybersecurity incident that not only crippled its operations but also exposed sensitive customer data. The sophisticated attack orchestrated by a group known as Scattered Spider employed social engineering to the IT department to reset credentials. The attackers then gained access to the SSO, raised their identity credentials to super user level and then systematically got into other systems.
The post High-Stakes Identity Impersonation: Lessons From the MGM Attack appeared first on < [...]
This article has been indexed from Security Boulevard