A shocking cyberattack hit multiple Las Vegas casino properties in 2023, causing massive losses and disrupting hotel operations.

Massive Cyber Heist Hits Las Vegas Casinos

The attack affected major casinos, including MGM Resorts properties like the Bellagio, MGM Grand, Luxor, Excalibur, and the Cosmopolitan, as well as Caesars Entertainment.

Authorities said the breach cost MGM Resorts $100 million. Caesars also confirmed it was hacked, with customer information, including driver’s license numbers and social security details, reportedly accessed. While Caesars claimed the data was deleted by the hackers, cybersecurity experts believe the company may have paid to recover the stolen information.

The attack was described as “sophisticated,” but the method used by the hackers was surprisingly simple. According to reports, the hackers impersonated a casino employee in a phone call to the IT department. Using LinkedIn, they posed as a legitimate staff member and requested a password reset. Within 10 minutes, they had access to MGM’s internal systems.

The breach caused widespread disruption. Slot machines stopped working, hotel key cards failed, and employees could not access email or make guest reservations. The attack revealed how even large, secure organizations could be vulnerable when hackers target small gaps in human or system security.

Teen Hacker Identified as Key Suspect

The FBI’s Cyber Task Force and Las Vegas police investigated the breach and identified a male juvenile as a key suspect. The teen voluntarily turned himself in at the Clark County Juvenile Detention Center on September 17. His identity has not been released due to his age.

Authorities said the teen may face charges as an adult. Potential charges include extortion, using someone else’s identifying information to harm or impersonate, and unlawful computer activity.

KT confirms second cyber breach after micro payment scam as thousands face risk of data leaks

The teen is linked to a larger hacking group that goes by several names, including “Scattered Spider,” “Octo Tempest,” “UNC3944,” and “Oktapus.” This group has been tied to multiple cyberattacks and organized schemes targeting companies’ internal systems.

The investigation highlighted the growing threat of cyberattacks. Experts emphasized that hackers do not always need complicated codes or software to breach large organizations. In many cases, social engineering, which manipulates people rather than systems, is enough to gain access to sensitive information.

Cybersecurity Lessons from the Vegas Attack

The Las Vegas attack has drawn attention for both its scale and its simplicity. In MGM Resorts’ case, the breach caused $100 million in reported losses, showcasing the financial risks of cybercrime. Caesars Entertainment, meanwhile, warned that customer information was compromised. The company stated it had taken steps to delete the stolen data, though it could not guarantee it had been completely removed.

British teen faces U.S. charges for $115 million cybercrime spree targeting companies and courts

Authorities warned that the case is a reminder of how vulnerable even major companies can be. Hackers often exploit human errors or weak points in security rather than relying solely on technical expertise. The attack on Las Vegas casinos showed how quickly a skilled cybercriminal could disrupt operations and steal sensitive data.

The teen suspect remains in custody, and authorities continue to assess the full scope of the attack. Law enforcement agencies have emphasized that while the teen is a central figure, the investigation into the larger hacking network is ongoing.

This cyberattack has highlighted the risks facing companies in all industries, demonstrating the importance of strong cybersecurity measures and employee training to prevent breaches.