Attention shoppers: The next time you search the grocery aisles for Clorox cleaning supplies, especially with flu season around the corner, you may find shelves emptier than expected. The reason? A recent cyberattack on Clorox.
This isn’t a tale of pandemic-induced shortages but a stark reminder of the risks unprepared companies face from cyber threats. On Aug. 11, Clorox discovered unauthorized activity on its IT systems. This cyber breach hit their infrastructure and forced them into manually processing orders, affecting product availability.
MGM Resorts, too, recently felt the brunt of a cyberattack, demonstrating that no company, big or small, is immune to these threats.
These incidents emphasize a few crucial points:
The Risks of Unpreparedness:Â Not having robust cybersecurity measures can lead to significant disruptions, potentially leading to financial losses and loss of customer trust. Clorox, a household name, saw its operations grind nearly to a halt. It underscores that cyber threats are not just IT issues but business risks.
Cyber Security Insurance:Â With hackers becoming more sophisticated, cyber insurance isn’t just a want; it’s a need. It can be the buffer your company needs to mitigate the fallout from a breach, covering everything from notification costs to potential legal claims.
The Need for 24/7/365 Monitoring:Â This is where Managed Service Providers (MSPs) like WheelHouse IT come into the picture. We monitor your systems, ensuring any suspicious activities are caught early, minimizing potential damage.
Clorox’s woes might be making headlines now, but remember: any company, regardless of size, is vulnerable. With flu season on the horizon and consumer concerns rising, businesses can’t afford disruptions, especially self-inflicted ones from inadequate cybersecurity measures.
Don’t wait for a crisis to happen. Protect your company with the right tools, expertise, and insurance. Call WheelHouse IT to speak with an advisor today.
On September 8, 2023, MGM Resorts International, a colossal casino and hospitality sector force, was trapped in a relentless ransomware assault orchestrated by the notorious hacking conglomerate Scattered Spider.
This audacious breach sent shockwaves through MGM’s intricate web of systems and operations, casting a shroud of disruption that persisted for several harrowing days. The fallout rippled across MGM’s digital domain, wreaking havoc upon its website, mobile application, reservation infrastructure, and even the venerable slot machines gracing its casinos sprawled nationwide.
Scattered Spider, a nefarious organization with an unsettling penchant for manipulating human psychology, employed crafty social engineering strategies to infiltrate MGM’s corporate infrastructure. In a sinister twist, the hackers homed in on an unsuspecting employee prowling the professional network terrain of LinkedIn. This seemingly innocuous low-hanging fruit served as the conduit for their entry.
With this foothold, they brazenly dialed MGM’s help desk, leveraging this employee’s identity to gain unauthorized entry into the company’s sacred digital systems. Once inside, the nefarious hackers traversed the digital labyrinth, securing access to MGM’s most critical systems.
What Does this MGM Breach Mean?
This breach begs a troubling question: What treasures did these cyber hackers obtain from MGM’s digital databases during their malevolent raid? Scattered Spider, renowned for its audacious ransom demands, could hold stolen data as collateral, threatening data leaks as a grim ultimatum should MGM refuse to meet their unreasonable demands.
As the world speculates on MGM’s response to this digital siege, the company remains tight-lipped regarding whether a ransom was paid to Scattered Spider. Instead, they affirm their cooperation with law enforcement agencies in a relentless pursuit of justice and vow to fortify their cybersecurity efforts to foresee such insults in the future.
This MGM breach serves as a stark warning, highlighting the increasing menace of ransomware that casts its shadow indiscriminately upon businesses of all kinds. The evolving sophistication and frequency of ransomware incursions render it an ever more formidable adversary, necessitating vigilant safeguarding measures.
For businesses striving to armor themselves against this growing peril, consider the following strategies:
Educate employees
Illuminate your workforce on the dangerous art of social engineering and arm them with the knowledge to repel such tactics.
Fortify security controls
Implement robust defenses like multi-factor authentication and stringent access controls to ensure formidable digital security.
Data fortification
Regularly shuttle your data to secure repositories, erecting a protective defense against data loss.
Incident response
Prepare a meticulously detailed response plan should the dark threat of ransomware cast its shadow upon your enterprise.
The MGM breach also underscores the paramount importance of data privacy. Businesses must remain unwavering in their commitment to safeguarding their data, providing a resilient shield against the ever-looming specter of cyber attacks.
Now, let’s delve into the timeline of events that unfolded for MGM
Friday 9/8 – Saturday 9/9
During this critical timeframe, the threat actor executed a series of audacious maneuvers that led to their initial breach of MGM Resorts. Their tactics involved cunning social engineering tactics that successfully manipulated the IT help desk into unwittingly resetting a user account—a classic example of exploiting low-hanging fruit for nefarious purposes.
Furthermore, the adversary escalated their intrusion by securing privileges and granting domain controller access. They astutely exfiltrated credentials, subsequently employing their dark art to crack them. Adding to their arsenal, they claimed to have intercepted passwords during the synchronization process between Okta and, presumably, Active Directory.
In a disturbingly pivotal development, the threat actor acquired Okta super user access and Azure Global Admin privileges. This conquest provided them with near-complete control over the expansive digital terrain.
The precise extent of data obtained during these incursions remains uncertain, but the threat actor’s insidious presence was firmly established.
Regrettably, MGM Resorts’ initial attempts at containment proved futile during this phase.
Sunday 9/10
MGM Resorts initiated additional containment measures on this fateful day, desperately striving to expel the audacious adversary from their digital domain. However, these valiant efforts were met with stubborn resistance as the attacker tenaciously clung to their internal foothold.
Monday 9/11
The threat actor escalated their campaign of digital terror, purportedly encrypting over 100 ESXi hypervisors. It is crucial to note that these hypervisors are the bedrock upon which virtual machines are hosted, amplifying the impact across many servers. The attacker exploited vulnerabilities that often lurk in the periphery—a grim reminder of how the low-hanging fruit can serve as a conduit for a massive company attack.
In an ominous gesture, the threat actor provided a link, presumably giving access to a sample of the stolen data. Thus, heightening concerns about the gravity of the situation.
Tuesday 9/12 – Wednesday 9/13
In concert with external experts, MGM Resorts persisted in tireless efforts to contain and neutralize the threat. These pivotal days were marked by intensive incident response and recovery operations, aiming to reclaim control over their besieged digital infrastructure.
Simultaneously, the threat actor continued their vigilance, monitoring the negotiation portal for any signs of interaction. Their evident frustration at the lack of engagement hinted at their evil intentions.
Thursday 9/14
Undeterred and fearless, the threat actor seized the digital podium to present a staggering 1,101-word statement. In this message, they asserted their enduring control over the environment and made chilling threats of further attacks unless MGM Resorts initiated contact.
Aftermath of MGM Breach
Our collective hearts go out to the steadfast MGM team grappling with this relentless adversary throughout this complicated ordeal.
In the shadow of this evolving crisis, it becomes abundantly clear that managing an active attacker situation is a formidable challenge, defying simplistic solutions. Further, the threat actor’s sophistication far surpasses conventional ransomware groups, rendering the MGM team’s task extremely challenging.
For those of us observing and learning from this unfolding drama, it is paramount to recognize the underlying value of this information. Understanding the insidious techniques employed by such groups empowers us to fortify our security programs, evolving them to then counter these evolving threats.
Acknowledging that an impervious security program remains an idealistic notion is imperative. In the face of a determined adversary, a breach remains a possibility regardless of the defenses in place.
In the aftermath of the MGM Resorts International cyber breach by Scattered Spider, a notorious hacking group, our cybersecurity-focused IT company offers assistance to businesses facing similar threats. WheelHouse IT can educate your workforce on cyber threats, fortify security controls, safeguard your data, create incident response plans, and ensure data privacy. The MGM breach serves as a stark reminder of the need for robust cybersecurity.
Contact us to tailor our services to your organization’s needs and strengthen your digital defenses against evolving cyber threats. Don’t wait; secure your digital assets now to prevent future breaches.
WheelHouse IT continues to stand out in the global technology industry, once again earning a spot on the prestigious Channel Futures MSP 501 rankings. This year marks the fifth consecutive year that WheelHouse IT has been recognized on this global list of premier managed service providers.Â
Being consistently recognized on this definitive list, which examines the performance of businesses worldwide based on criteria such as annual sales, recurring revenue, profit margins, and innovation, is a testament to WheelHouse IT’s unwavering commitment to excellence in the IT service sector.Â
“It’s an honor to be recognized once again on the Channel Futures MSP 501,” said Gani Zebersky, CEO & Managing Partner. “This ranking affirms our dedication to continuous innovation and commitment to our clients. Furthermore, we strive to deliver top-tier IT solutions that help businesses succeed, and we’re grateful to our dedicated team and loyal clients for making this achievement possible.”Â
While the MSP 501 list has become more competitive, WheelHouse IT continues to push the boundaries of IT service offerings, focusing on meeting customer needs in the areas of cloud, security, collaboration, and hybrid workforces.Â
The WheelHouse IT team will be recognized on the Channel Futures website and honored during a special ceremony at the Channel Futures Leadership Summit, Oct. 30-Nov. 2, in Miami, Florida.Â
 About WheelHouse IT
WheelHouse IT is a leading South Florida-based managed service provider that offers cost-effective infrastructure support and cyber-security solutions to meet the needs of businesses and nonprofit organizations. The award-winning company partners with industry leaders including Microsoft, Amazon, Dell and Cisco, among many others, to proactively secure workstations and networks against ever-changing online threats. Furthermore, It has been recognized as a 2017 Microsoft Southeast Partner of the Year, was named to the 2017 Inc. 500 as one of the nation’s fastest-growing private companies and is consistently ranked among the top tech companies in its industry by The Channel Company. With additional offices located in New York City, Long Island, Los Angeles, Iowa and Arkansas, WheelHouse IT is rapidly distinguishing itself as an innovator in the technology field. For more information, please visit us online at wheelhouseit.com, on Facebook at facebook.com/wheelhouseit and on Twitter @WheelHouseIT.
Previously known as Microsoft Office, the all-new Microsoft 365 allows you to find, create, and collaborate all in one place. Microsoft 365 is a cloud-powered productivity platform with popular applications such as Microsoft Teams, Word, Excel, PowerPoint, Outlook, OneDrive, and more. Â
What’s new?Â
New kinds of content creation and templatesÂ
Create is the starting point to quickly access projects across Microsoft 365 applications using blank or recommended templates. The Create module is available now to all web, Windows, and mobile users. More templates are coming soon.Â
Â
New Apps moduleÂ
Explore, start, and pin the most commonly used tools. This will be available to all web and Windows users next month. In the coming months, it will also be available for mobile users.Â
Â
Â
Welcome BadgingÂ
It contains users’ Microsoft 365 subscription status and keeps track of storage space in one location. This will be available to all web and Windows users next month.Â
My ContentÂ
Allows access to all the user’s content, including those files created or shared with you, in one location. This popular feature among business owners will be available to all web and Windows users next month.Â
FeedÂ
A simple-to-navigate interface containing relevant content from other users you work with or users who create similar projects allows for a more streamlined workflow. This is available now for commercial users of the web, Windows, and mobile. Â
TaggingÂ
a new feature that allows custom tags to organize various content into groups. This is available now for commercial users of the web and Windows. Â
What is changing, and when will these changes occur?Â
Microsoft 365 has evolved into Microsoft’s forerunner productivity suite. In the next few months, Office.com, the Office mobile app, and the Office app for Windows will become the new Microsoft 365 app. With it comes a new look, icon, and features. Beginning in November 2022, changes will begin for Office.com. Beginning January 2023, changes will start for the Office app on Windows and the Office mobile app.Â
Who will these changes apply to and how will these changes affect me?Â
These changes will apply to all Office app users for work, school, or personal use. These changes will not affect users’ existing accounts, profiles, subscriptions, or files. The application will automatically update, and the new look will include a new name and icon. Â
Is Office going away completely?Â
No. With Microsoft 365, users will continue accessing Word, Excel, PowerPoint, and Outlook applications. Microsoft will continue to offer one-time purchases for those applications to consumers and businesses. There are no changes to Office 365 subscription plans.Â
Where do I get the new app?Â
You can get started with the free web and mobile apps or upgrade to a premium plan for access to additional applications, storage, and features. Â
Once the new Microsoft 365 app is released, it will be available on the web at Microsoft365.com and Windows via the Microsoft Store, Google Play, and the Apple App Store. To upgrade to the premium plan, you can now buy a Microsoft 365 subscription. The app will automatically update with the new look, name, and icon beginning in November 2022 for web users.Â
For more information on the new Microsoft 365 app or any questions regarding IT needs, contact us at WheelHouse IT at 954.474.2204
Headquartered in South Florida, WheelHouse IT has been named one of the world’s premier Managed Service Providers in the 2022 Channel Futures MSP 501 rankings for the fourth year in a row. For the last three years, WheelHouse IT has been in the top 100.
2022 – Ranked Globally #84
2021 – Ranked Globally #72
2020 – Ranked Globally #94
2019 – Ranked Globally #127
This prestigious award is given to only the top technology solution providers worldwide and is based on annual sales, recurring revenue, profit margins, revenue mix, growth opportunities, innovation, technology solutions supported, and company and customer demographics.
WheelHouse IT has experienced significant growth over the past year and attributes its success to its team of dedicated employees who are committed to providing excellent service. The company plans to expand its business and serve its clients with distinction. “We are honored to be recognized as one of the top MSPs in the country,” said Rory Cooksey of WheelHouse IT. “This award is a testament to our team’s hard work and dedication to our clients. We look forward to continuing our growth and providing the best possible service to our customers.”
WheelHouse IT’s ranking in the top 100 for the last three years is impressive. This award is a great way to show their clients that they are always keeping up with the latest technology solutions and providing them with the best possible service. Every year, managed IT service providers compete for the ChannelFutures 501 rankings.
This award shows customers that WheelHouse IT is striving to be the best in the business. MSPs who make it to the top must demonstrate excellence and innovation in the managed IT services industry.
 About WheelHouse IT
WheelHouse IT is a leading South Florida-based managed service provider that offers cost-effective infrastructure support and cyber-security solutions to meet the needs of businesses and nonprofit organizations. The award-winning company partners with industry leaders including Microsoft, Amazon, Dell and Cisco, among many others, to proactively secure workstations and networks against ever-changing online threats. It has been recognized as a 2017 Microsoft Southeast Partner of the Year, was named to the 2017 Inc. 500 as one of the nation’s fastest-growing private companies and is consistently ranked among the top tech companies in its industry by The Channel Company. With additional offices located in New York City, Long Island, Los Angeles, Iowa and Arkansas, WheelHouse IT is rapidly distinguishing itself as an innovator in the technology field. For more information, please visit us online at wheelhouseit.com, on Facebook at facebook.com/wheelhouseit and on Twitter @WheelHouseIT.
