MGM resorts says 'cybersecurity issue' may have widespread impact

On Monday, MGM Resorts International announced that they had encountered a "cybersecurity issue" that could potentially impact their various properties for hospitality, gaming, and entertainment throughout the United States.

The problem could still be impacting the corporation that's listed on the stock exchange. A few of its web pages were not accessible on Monday evening, and it encouraged clients to phone in to arrange lodging and make reservations.

The complete effect of the company's actions on booking systems and gambling areas in Las Vegas (where the company is headquartered), along with various other sites in Maryland, Massachusetts, Michigan, Mississippi, New Jersey, New York, and Ohio is uncertain, according to representative Brian Ahern.

On Monday evening, the enterprise announced that the problem was still present, although its casino gaming areas were functioning effectively. The company stated that they are persistently working towards fixing the problem.

MGM resorts stated earlier that certain systems of the company were impacted, and they informed law enforcement about the issue.

MGM took steps to safeguard data by disabling some of their systems. In addition, the company initiated an internal inquiry with the support of well-respected cybersecurity specialists outside the organization.

Requests for comment from the FBI in Las Vegas and the Nevada Gaming Control Board were left unanswered.

MGM has got a total of 19 possessions in the United States of America. In Las Vegas, they possess some of the trendiest places such as the Bellagio, Mandalay Bay, and the Cosmopolitan. Moreover, they also own properties in China.

Towards the end of the previous year, Nevada's gaming board gave the go-ahead for more rigorous cybersecurity protocols. In accordance with these protocols, it is now mandatory to report any online system breaches within a timeframe of three days.

The Securities and Exchange Commission decided in July that big corporations that are publicly traded must follow a comparable regulation. This means that if there is a major breach, it must be disclosed within four business days. However, this new obligation won't take effect until December.

According to a statement made by SEC Chair Gary Gensler in July, investors may find it significant if a company experiences a loss, such as a factory damaged by fire or millions of files compromised in a cybersecurity attack.

According to Barry Lieberman, who works as an attorney for South Point Hotel and Casino, there are some measures that the Nevada board has yet to implement that he believes are unnecessary. He expressed this sentiment in a letter that he wrote to the board.

He wrote a letter to the executive secretary of the board stating that nearly every licensee has insurance covering cybersecurity. The licensees are obligated by their insurance providers to carry out measures that are necessary for the prevention of cyber attacks.

According to Josh Heller, who works as the person in charge of information security engineering at Digi International, a wireless technology company, modern-day cyberattacks can easily expand across businesses by disseminating a single, credible-looking email that persuades insiders to input their passwords.

He mentioned that a basic email that aims to deceive individuals could rapidly spread throughout the company's network.

Heller proposed that employing artificial intelligence could provide organizations with a speedy and reasonably priced method to inform managers about security breaches and reduce their negative effects.

On Monday, no responses were given by an MGM Resorts spokesperson in regards to additional questions.

Dennis Romero works as a reporter who covers breaking news for NBC News Digital.