Tourists descended on an ancient town in Thailand this week after UNESCO named it a world heritage site, prompting officials to consider banning visitors from climbing the 1,500-year-old ruins.
13.09.2023 - 16:45 / forbes.com
More than 60 hours after a brazen cyberattack targeted the computer systems at one of the world’s largest casino-hotel chains, patrons trying to access the MGM Resorts website are still met by a splash page that apologizes for the inconvenience.
Prominent among MGM’s stable of 19 U.S. properties are a dozen of the most iconic casino hotels in Las Vegas—including the Bellagio, Mandalay Bay and the Cosmopolitan.
Since the attack was discovered on Sunday evening, it has wreaked havoc on MGM’s operations, forcing guests to wait hours to check in and crippling electronic payments, digital key cards, slot machines, ATMs and paid parking systems.
On Tuesday night, VX-Underground, a malware research group with nearly 229,000 followers on X, posted that ransomware-as-a-service group ALPHV, also known as BlackCat, claimed responsibility for executing the attack by using social engineering to identify on LinkedIn an MGM employee who worked in IT support. The next step was simply to call the MGM help desk. Astonishingly, the attack took about 10 minutes to execute.
“Imagine you save up all year to go to Vegas, and then you have this experience. It’s going to leave a bad taste in your mouth.”
“MGM is a huge company, but small- and medium-sized businesses get hit with ransomware countless times per week and it doesn’t usually make the news,” says Alex Hammerstone, advisory solutions director at TrustedSec , an Ohio-based cybersecurity firm.
One bright red flag was the high visibility of the disruption. “The fact that everything’s down,” Hammerstone says. “I mean, if you’re gonna go in stealthily and steal data and then do something with it, everything wouldn’t be down.”
ALPHV is an extremely well-known black-hat actor in the cybersecurity industry, thought to be responsible for attacks against Reddit and Western Digital, among others. In April 2022, CISA, America’s cyber defense agency, issued an alert based on an FBI flash report on ALPHV, noting the criminal group had “compromised at least 60 entities worldwide.”
Neither MGM nor the FBI has publicly characterized the nature of the breach, and MGM has not responded to Forbes’ multiple requests for comment.
While ALPHV’s responsibility for the attack has not been verified, cybersecurity experts say VX-Underground is a reliable source.
“VX-Underground is well respected in the cybersecurity community and often talks with threat actors,” says Martin Zugec, technical solutions director at Bitdefender, a multinational cybersecurity firm. “Their info is usually solid.”
“Absolutely,” Hammerstone agrees. “VX-Underground is a researcher that absolutely knows cybersecurity.”
But it’s clear that what the company called a “cybersecurity issue” will be extremely costly. In
Tourists descended on an ancient town in Thailand this week after UNESCO named it a world heritage site, prompting officials to consider banning visitors from climbing the 1,500-year-old ruins.
Born in California, Alex Brightman is a two-time Tony nominee and writer living in New York City. He loves watching baseball and basketball when he's not on stage. Right now you can see him as Richard Dreyfuss in “The Shark is Broken” on Broadway.
The UNESCO World Heritage Committee added 42 sites to its World Heritage List this month, recognizing cultural and natural sites across the globe from Europe and Africa to the United States.
While we are focused on delivering the best global travel event this week, we also have a job to do delivering the essential travel news. So we did, and we also delivered something new: a comprehensive travel stock index that captures the breadth and the impact of the global travel industry. But no stock index currently does this because they are each split along categories that don’t serve the industry.
Jeff Weinstein is a medical operations associate manager at Global Rescue, with 18 years of combined experience in emergency and disaster response, critical care paramedicine, and emergency management. With specialty training in austere medicine and mountain rescue from The School of Medicine at UNM and is a Certified Wilderness Paramedic (WP-C) from the International Board of Specialty Certifications (IBSC).
Traveler satisfaction with North American airports climbed this year despite numerous challenges from an ongoing pilot shortage to record passenger volumes.According to the J.D. Power 2023 North America Airport Satisfaction Study released Wednesday, overall satisfaction improved by 3 points to 780 on a 1,000-point scale. The rise was propelled by improvements in three key areas, including terminal facilities, food and beverage and retail service and baggage claim.The study, currently in its 18th year, examines overall traveler satisfaction with mega (33 million or more passengers a year), large (10 to 32.9 million passengers a year) and medium (4.5 to 9.9 million passengers a year) North American airports across six factors, including terminal facilities; airport arrival/departure; baggage claim; security check; check-in/baggage check; and food, beverage and retail.The big winners among North American airports were Detroit Metropolitan Wayne County Airport (800) Tampa International Airport (832) and Indianapolis International Airport (843), which ranked highest among mega, large and medium airports, respectively. 2023 marks the second straight year that Tampa and Indy have won their respective categories.
Las Vegas is gearing up for its first-ever Formula One race on November 18 by building a temporary street track. In the lead-up months, as popular attractions are blocked by construction and scaffolding, some tourists regret the timing of their visits to the city.
Things might be better than they were a week ago, but it appears to still be a case of hit-or-miss mayhem at MGM Resorts following a "cybersecurity issue" the company acknowledged earlier this month.
23 years in the making, Fontainebleau Las Vegas will feature 3,644 rooms, 36 restaurants, and 150,000 square feet of gaming space.
In August 2021, I booked my first solo trip to Europe: A $439 United flight from Cleveland, Ohio, to Madrid, Spain, with a short layover in Newark, New Jersey.
When people talk about financial safety in Vegas, they’re usually talking about knowing when to walk away from the blackjack table. Recently, however, protecting your finances in Sin City has taken on a whole new (and even more serious) meaning. Over the past few weeks, some of Vegas’s biggest hotels and casinos were hit by a group of hackers who brought down gaming machines, disrupted websites, and stole a variety of personal guest and employee data at both MGM and Caesars, according to TechCrunch. The breach affected properties not only in Vegas, but the companies’ holdings around the world.
Think the Midwest is just a cornfield you fly over between coasts? Don’t be fooled by that nonsense.