Madison Square Garden Hacked After Employee Falls for Phone Scam
Hackers called a Madison Square Garden employee and tricked them into giving access to company systems, stealing 45GB of data.
Source
DataBreaches.net
Original headline: How Hackers Broke into Madison Square Garden
Plain-English summary by GetCyberRight. Read the full report at the source above.
Madison Square Garden, the famous venue that hosts concerts and sporting events, was hacked after criminals called a low level employee and tricked them over the phone. The employee was fooled into giving the hackers access to the company's computer systems. The hackers then stole a massive amount of data, totaling 45 gigabytes of information, which they later leaked online.
This breach likely does not directly affect most families unless you work for Madison Square Garden or related companies. The stolen data probably includes internal business documents, employee information, and company records rather than customer ticket purchases or credit card details. However, if you are an MSG employee or have worked there recently, your personal employment information may have been exposed in this leak. If you work for Madison Square Garden or a related company, take these steps:
- Contact your HR department to find out if your personal information was included in the breach.
- Monitor your credit reports and bank accounts closely for the next several months.
- Consider placing a fraud alert or credit freeze with the three major credit bureaus.
- Be extremely cautious of any emails or calls claiming to be from your employer, especially if they ask you to click links or provide login information. This incident teaches an important lesson for everyone. Social engineering attacks, where criminals manipulate people instead of breaking through technical security, are increasingly common. Never give out login credentials or system access over the phone, even if the caller claims to be from IT support or management. Always verify requests through a separate communication channel. If someone calls asking for access or sensitive information, hang up and contact that person or department directly using contact information you already have. Train everyone in your household, especially teens with their first jobs, to be skeptical of unexpected calls or messages asking for passwords or access to anything.
Curated from trusted cybersecurity sources by GetCyberRight
Source: DataBreaches.netStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles
International Police Operation Shuts Down Major Criminal Hacking Networks
Law enforcement agencies worldwide took down criminal networks responsible for spreading ransomware and data-stealing malware in a coordinated strike.
2 min readInternational Police Operation Shuts Down Major Malware Networks
Europol and global partners dismantled criminal networks spreading ransomware and malware including SocGholish, Amadey, and StealC.
2 min read
Free Cybersecurity Certification Now Available for Career Changers
ISC2 made their professional cybersecurity certification completely free, including exam and study materials. It's a legitimate path into tech careers.
3 min readHow to Get Professional Cybersecurity Training for Free (And Why You Should)
ISC2 offers globally recognized cybersecurity certification at no cost, giving families the skills to protect themselves online without spending a penny.
4 min read