10/21/24
Cybersecurity – What Is a “Cybercrime”?
• Generally defined as any criminal activity where a computer or network is the agent of the crime, the facility of a crime, or the target of a crime. • Examples of cybercrime a casino or casino regulator might be the target of – • A computer virus installs a key logger. The logger captures usernames and passwords used to access the systems. • A system user is victimized by a phishing attack. In a phishing attack, the user is directed to click a link that installs malicious software or to divulge information that could compromise the system. The attack is usually structured such that the victim thinks what they are doing is legitimately necessary.
company confidential
35
Cybersecurity – Attacks
• William Hill • In this case a phishing attack on William Hill in 2020. The criminals used malicious emails to get the login credentials of employees. And with access to employee’s information, they easily gained entry to the company’s data. This attack again showed how essential employee training programs are and highlighted the need to raise awareness among casino providers • MGM and Caesars • MGM Resorts was compromised by Russian-linked ALPHV, also known as BlackCat, through a phone call impersonating an employee on the IT staff. They found an employee to impersonate on LinkedIn. The attack was due to a multi-layered social engineering scheme executed by the hacking group Scattered Spider. ALPHV claimed to have initially infiltrated MGM's network by exploiting vulnerabilities in the global casino owner's Okta Agent without deploying any ransomware. The hack exposed names, address, and passport numbers for former guests, but MGM said it was "confident" no financial information had been exposed.
company confidential
36
18
Made with FlippingBook - Online catalogs