Google-owned Mandiant reports that the hacking group responsible for the MGM Resorts attack, known as UNC3944, is diversifying its targets and monetization strategies from SMS phishing (smishing) to ransomware deployment. The group, active since late 2021, typically uses smishing to obtain legitimate employee credentials. Mandiant projects the group will continue broadening its skills and may further develop monetization schemes.

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
Cybersecurity researchers have revealed details about Outlaw, an “auto-propagating” cryptocurrency mining botnet that targets SSH servers with weak credentials. The Romanian-origin malware performs SSH brute-force