Browse articles by topic

MGM Resorts systems down after cyber attack


MGM Resorts International has been forced to shut down certain systems at its properties across the US after identifying a cybersecurity issue.

The operator confirmed the incident in a post on X, formerly Twitter, after reports began to emerge across social media. The MGM Resorts website also remains down, with visitors being greeted by a list of key contact numbers.

MGM Resorts did not disclose which systems are being impacted by the issues, but player posts on social media suggest issues with retail slot machines and hotel room access.

The operator says it has contacted law enforcement and cybersecurity experts over the issue, which reportedly began on Sunday.

“MGM Resorts recently identified a cybersecurity issue affecting some of the company’s systems,” MGM Resorts said on X yesterday (September 11). “Promptly after detecting the issue, we quickly began an investigation with assistance from leading external cybersecurity experts.

“We also notified law enforcement and took prompt action to protect our systems and data. This included shutting down certain systems.

“Our investigation is ongoing and we are working diligently to determine the nature and scope of the matter.”

In an update posted 12 hours later, MGM Resorts said its properties continue to operate dining, entertainment and gaming. It added that on-site staff supporting customers with any issues.

MGM Resorts operates a total of 19 properties in the US. These include locations in Nevada, Maryland, Massachusetts, Michigan, Mississippi, New Jersey, New York and Ohio. It is not yet clear how many venues have been impacted by the issue.

FBI says Lazarus Group responsible for attack

The news comes after cryptocurrency online sportsbook and casino was last week hit by a series of unauthorized transfers. identified issues related to Ethereum, Polygon and the Binance Smart Chain (BSC). Reports at the time suggested $41.0m worth of cryptocurrency had been impacted.

Later in the week, the US Federal Bureau of Investigation (FBI) said it identified cybercrime organization Lazarus Group as the party responsible.

Also known as APT38, Lazarus Group is affiliated with Democratic People’s Republic of Korea (DPRK). According to the FBI, cyber actors moved the stolen funds from into a number of virtual currency addresses.