All it took for MGM Resorts International to be compromised with ransomware was a quick phone call, which some now call “voice phishing” or “vishing.” An attacker using LinkedIn information to pose as an employee asked MGM’s help desk for a password change, after which they were able to install ransomware. MGM is now up to $52 million in lost revenues and counting. Two takeaways. First, if you call support for a manual password reset, expect to be asked for a lot of verification, such as a video call where you show your driver’s license. Second, if you receive a call at work from an unknown person asking you to do anything involving money or account credentials, hang up, verify their identity and authorization, and proceed accordingly only if they check out.
(Images by iStock.com/1550539 and HT Ganzo)
Recent Posts
Apr. 04, 2025
Share Wi-Fi Network Passwords Using QR Codes
Apr. 04, 2025
Don’t Assume That Top Google Search Results Are Guaranteed Safe
Apr. 04, 2025
With iOS 18.2 and Later, You Can Share the Location of Lost Items in Find My
Apr. 04, 2025
Apple Says More Personalized Siri Will Be Delayed
Apr. 04, 2025
Security Precautions to Take While Traveling
Apr. 04, 2025
Working with Time Zones in Apple’s Calendar Apps
Apr. 04, 2025
Keep Your Browsing Organized with Browser Profiles
Apr. 04, 2025
Run a Business? Sign Up with Apple Business Connect
Mar. 07, 2025
Create Links to Selected Text in Long Web Pages
Mar. 07, 2025
HomePods Can Alert You of Smoke and Carbon Monoxide Alarms
View All Posts