The FBI has faced criticism before following a major cyber incident, but a new report Tuesday by Reuters calls out law enforcement for not making arrests for the September attacks on MGM Resorts International and Caesars Entertainment.Reuters quoted executives from leading security companies such as CrowdStrike and ZeroFox saying the FBI has known the identities of at least a dozen members of the hacking group Scattered Spider for more than six months, but not much has happened."I would love for somebody to explain it to me," Michael Sentonas, president of CrowdStrike told Reuters. "For such a small group, they are absolutely causing havoc.”The MGM hack disrupted operations at its casinos and hotels for days and cost the company roughly $100 million in damages, MGM said in a regulatory filing last month. Caesars reportedly paid $15 million in ransom to regain access to its systems from the hackers.According to Reuters, ZeroFox's Chief Executive Officer James Foster attributed law enforcement's sluggish response to a lack of manpower.This has become an issue for the FBI, as numerous press reports over the past two years have described how the FBI has lost many of its best cyber agents to the private sector for better paying jobs. And it’s not just the FBI that loses cyber talent, the issue afflicts all agencies across the federal government.Callie Guenther, senior manager, cyber threat research at Critical Start, added that issues such as limited manpower and the lure of lucrative private sector jobs for skilled cyber agents present significant hurdles. Additionally, Guenther said the hesitancy of victim companies to cooperate with investigations, fearing reputational damage or other consequences, further complicates the efforts of law enforcement agencies.
Incident Response, Ransomware
FBI takes heat from industry for not making arrests in MGM-Caesars cases

Security company executives were quoted by Reuters that the FBI knew the identities of at least a dozen members of the Scattered Spider group months before it took down MGM and Caesars in cyberattacks. (Adobe Stock)
An In-Depth Guide to Ransomware
Get essential knowledge and practical strategies to protect your organization from ransomware attacks.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds



