Teen Arrested in Connection with MGM Resorts Ransomware Attack

Paige Henley
Paige Henley Editor
Paige Henley Paige Henley Editor

British police have arrested a 17-year-old boy in Walsall, England, believed to be linked to the “Scattered Spider” hacking collective responsible for last year’s devastating ransomware attacks on MGM Resorts and other companies. The arrest, made by the West Midlands Police in conjunction with the FBI, follows a complex investigation into the cyber attack that severely disrupted MGM’s operations in September 2023.

Last September, MGM Resorts, a major player in the hotel and casino industry, faced a severe cyber attack that left guests queuing for hours, disrupted ATM services, and took down websites, TV services, and phone lines across all its Las Vegas properties, including the Aria, Bellagio, Luxor, MGM Grand, and Mandalay Bay. The attack, which lasted ten days before MGM Resorts could announce a return to normal operations, exposed the personal information of guests, including names, contact details, and sensitive identification numbers​.

Authorities revealed that the hackers had used social engineering techniques to trick MGM’s IT helpdesk into providing login credentials, which were then used to deploy the ransomware. This breach ultimately cost MGM Resorts over $100 million in damages​.

“This arrest has been made following a complex investigation which stretches overseas to America,” Detective Inspector Hinesh Mehta of the Regional Organised Crime Unit for the West Midlands said. “These cyber groups have targeted well-known organizations with ransomware and successfully targeted multiple victims around the world, taking significant amounts of money from them. We want to send out a clear message that we will find you. It’s simply not worth it.”

Bryan Vorndran, assistant director of the FBI’s cybercrimes division, highlighted the collaborative effort, saying, “The FBI, in coordination with its partners, will continue to relentlessly pursue malicious actors who target American companies, no matter where they may be located or how sophisticated their techniques are.”​

MGM Resorts has expressed gratitude towards law enforcement for their efforts in tracking down and arresting the individuals responsible for the attack, reiterating their stance of not paying any ransom during the incident​.

About the Author

About the Author

Paige Henley is an editor at SafetyDetectives. She has three years of experience writing and editing various cybersecurity articles and blog posts about VPNs, antivirus software, and other data protection tools. As a freelancer, Paige enjoys working in a variety of content niches and is always expanding her knowledge base. When she isn't working as a "Safety Detective", she raises orphaned neonatal kittens, works on DIY projects around the house, and enjoys movie marathons on weekends with her husband and three cats.

Leave a Comment