Overview A London Accounting firm specialising in tax consulting and financial advisory, for UK and US/EMEA clients, faced a growing concern regarding cyber threats. With an increase
In 2020, hackers obtained a database containing the personal information of over 142 million MGM Resorts guests and posted it for sale on a dark web marketplace.
The data included names, addresses, phone numbers, email addresses, and dates of birth—critical information for executing phishing, identity theft, and other forms of cybercrime.
The threat actors used this information to carry out phishing attacks and social engineering schemes. Victims were tricked into divulging sensitive information, such as bank account details, or clicking on malicious links that installed malware.
Some attackers also launched targeted SIM-swapping attacks, using stolen data to impersonate victims and gain control of their phone numbers. This allowed them to bypass two-factor authentication for various accounts, including banking and email.
The breached data was first advertised and sold on the dark web, where cybercriminals commonly buy stolen credentials to exploit or resell. This allowed multiple actors to use the data for different types of cyberattacks, amplifying the impact.
This case highlights how stolen data on the dark web can be weaponised in various attacks, posing ongoing risks to individuals and organisations long after the initial breach.
