Security News > 2024 > January > Securing helpdesks from hackers: What we can learn from the MGM breach
In the wake of the MGM Resorts service desk hack, it's clear that organizations need to rethink their approach to security, particularly when it comes to verifying the identity of employees contacting the helpdesk.
They meticulously researched and impersonated an MGM Resorts employee using information gathered from LinkedIn, creating a convincing facade to deceive the helpdesk staff.
Helpdesk staff are on the frontline when it comes to security.
Regularly audit your helpdesk and user verification processes to identify and mitigate potential vulnerabilities.
Employ penetration testing to simulate social engineering attacks and assess the resilience of your helpdesk staff and security protocols.
The MGM Resorts service desk hack serves as a stark reminder of the importance of secure verification processes at the helpdesk level.
News URL
Related news
- Hackers lurked in Treasury OCC’s systems since June 2023 breach (source)
- Lazarus hackers breach six companies in watering hole attacks (source)
- Commvault Confirms Hackers Exploited CVE-2025-3928 as Zero-Day in Azure Breach (source)
- Luna Moth extortion hackers pose as IT help desks to breach US firms (source)
- Russian hackers breach orgs to track aid routes to Ukraine (source)
- Chinese hackers breach US local governments using Cityworks zero-day (source)
- Ivanti EPMM flaw exploited by Chinese hackers to breach govt agencies (source)
- Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages (source)