Tag Archive for: Vegas

Orlando tech expert says Las Vegas level hotel hack could happen here

/in


ORLANDO, Fla. – Danny Jenkins dropped his credit card while checking into his hotel, leaving it stuck behind the front desk.

The employee generously let the former ethics hacker behind the counter, next to her computer. Jenkins grabbed his card, but he said he could have got a lot more.

“I’m not a cyber criminal … I was able to physically touch four USB ports on that computer. If I would have plugged something in, like a rubber ducky, which is a hacking device — I could’ve gained access to their network,” Jenkins said.

[TRENDING: Jury finds Othal Wallace guilty of manslaughter in shooting death of Daytona Beach police officer | Alligator missing upper jaw rescued in Florida. Here’s what’s next | Become a News 6 Insider]

Jenkins, CEO and co-founder of ThreatLocker, an Orlando-based cyber security firm weighed in on the recent cyber attack in Las Vegas resorts and casinos. Jenkins said, this million dollar attack could easily have happened here, if it didn’t already.

The affected casinos and resorts in Sin City were not taken down from a rubber ducky, but from a “social engineering attack on an outsourced IT support vendor used by the company,” according to SEC filings from Cesars Entertainment.

Jenkins said billions of records were extracted and are being held ransom by the hackers — information such as credit card and social security numbers are at risk.

Meanwhile, Jenkins said ransomware cyber attacks happen everyday in Orlando, but it may not be known as it is not required by law for companies to disclose it when it occurs.

“Everyday hundreds of businesses in Orlando get hit by ransomware attacks, sometimes they are smaller and they pay $20,000 and sometimes they are bigger and they pay $20 million to get their data back,” Jenkins said.

Overall, when going on vacation Jenkins said to put freezes on your credit or debit cards, as this doesn’t cost anything to do.

On the other hand, for companies, he suggests reading up on the guide created by the Center for Internet Security and to make sure employees have the proper training.

Get today’s headlines in minutes with Your Florida Daily:

Copyright 2023 by WKMG ClickOrlando – All rights reserved.

Source…

2 Las Vegas casinos fell victim to cyberattacks, shattering the image of impenetrable casino security

/in


AS VEGAS — A persistent error message greeted Dulce Martinez on Monday as she tried to access her casino rewards account to book accommodations for an upcoming business trip.

That’s odd, she thought, then toggled over to Facebook to search for clues about the issue on a group for MGM Resorts International loyalty members. There, she learned that the largest casino owner in Las Vegas had fallen victim to a cybersecurity breach.

Martinez, 45, immediately checked her bank statements for the credit card linked to her loyalty account. Now she was being greeted by four new transactions she did not recognize — charges that she said increased with each transaction, from $9.99 to $46. She canceled the credit card.

Unsettled by the thought of what other information the hackers may have stolen, Martinez, a publicist from Los Angeles, said she signed up for a credit report monitoring program, which will cost her $20 monthly.

“It’s been kind of an issue for me,” she said, “but I’m now monitoring my credit, and now I’m taking these extra steps.”

MGM Resorts said the incident began Sunday, affecting reservations and casino floors in Las Vegas and other states. Videos on social media showed video slot machines that had gone dark. Some customers said their hotel room cards weren’t working. Others said they were canceling their trips this weekend.

The situation entered its sixth day on Friday, with booking capabilities still down and MGM Resorts offering penalty-free room cancelations through Sept. 17. Brian Ahern, a company spokesperson, declined Friday to answer questions from The Associated Press, including what information had been compromised in the breach.

By Thursday, Caesars Entertainment — the largest casino owner in the world — confirmed it, too, had been hit by a cybersecurity attack. The casino giant said its casino and hotel computer operations weren’t disrupted but couldn’t say with certainty that personal information about tens of millions of its customers was secure following the data breach.

The security attacks that triggered an FBI probe shatter a public perception that casino security requires an “Oceans 11”-level effort to defeat…

Source…

U of A prof sues over lifetime ban from Las Vegas hacker convention | Subscriber

/in


During DEF CON, computer hackers from all over the world descend on Las Vegas to show off their skills in an environment where “radical viewpoints” are welcomed and rules are few.

So how did a University of Arizona professor receive a lifetime ban from such a proudly permissive conference?

Christopher Hadnagy insists he still doesn’t know.

In February, DEF CON organizers announced they had received “multiple” reports about Hadnagy for violations of the convention’s code of conduct against harassment.

“After conversations with the reporting parties and Chris, we are confident the severity of the transgressions merits a ban from DEF CON,” organizers said in a statement on the convention’s website.

But Hadnagy says he was never told what he was accused of, and he denies doing anything wrong.

People are also reading…

Now the adjunct professor in the UA’s College of Applied Science and Technology is suing the convention and its founding hacker, Jeff Moss, aka the Dark Tangent.

The defamation lawsuit filed Aug. 3 in a Pennsylvania federal court accuses Moss and DEF CON of ruining Hadnagy’s reputation and damaging his security consulting business with “vague yet scathing statements” that “falsely accuse him of what could only be despicable conduct.”

Hadnagy is seeking at least $375,000, plus punitive damages and legal fees.

Moss could not be reached. His attorney did not respond to a request for comment.

When contacted by email, Hadnagy professed his innocence and made several references to his lawsuit.

“My company and I consistently deny and continue to deny any and all allegations of misconduct,” he said in an email.

He referred all further questions to his lawyers, who declined to discuss the ongoing litigation.

Not many rules

Jeff Moss was just 18 when he organized the first DEF CON in 1993 as an excuse to party in Las Vegas with a few dozen of his hacker friends.

The event has grown…

Source…

Las Vegas data breach comes amid Homeland Security warning on Iranian cyber threat – News3LV

/in

Las Vegas data breach comes amid Homeland Security warning on Iranian cyber threat  News3LV
“data breach” – read more