Teen Arrested in Connection with 2023 Las Vegas Casino Cyberattacks
Timeline of Events
On September 19, 2025, the Las Vegas Metropolitan Police Department (LVMPD) reported that a teenage boy has surrendered to authorities as a suspect in the widespread cyberattacks that plagued two major Las Vegas casino companies in 2023. The attacks led to significant disruptions and financial fallout for the affected businesses, highlighting vulnerabilities in the modern digital landscape.
In 2023, hackers employed vishing (voice phishing) techniques to impersonate casino employees and infiltrate internal systems, resulting in hundreds of millions of dollars in losses. (Image: Shutterstock)
The Suspect and Charges
While the boy’s name hasn’t been disclosed due to his minor status, he is currently held at the Clark County Juvenile Detention Center. He faces an array of serious charges, including:
- Three counts of obtaining and using personal identifying information to harm or impersonate another person.
- One count of extortion.
- One count of conspiracy to commit extortion.
- One count of unlawful acts regarding computers.
Prosecutors from the Clark County District Attorney’s Office are pursuing the transfer of his case to the criminal division, which could result in him facing charges as an adult.
The Broader Investigation
The investigation surrounding the cyberattacks is extensive, led by the FBI’s Las Vegas Cyber Task Force alongside LVMPD’s cyber investigators. In a previous phase of this investigation, four young men, aged 20 to 23, were indicted in November 2024 for their involvement in cyberattacks similar to those affecting MGM Resorts International and Caesars Entertainment. However, there were no formal connections drawn between those indictments and the attacks experienced by the casinos.
LVMPD’s latest statements tactfully avoided directly mentioning MGM and Caesars, referring instead to “multiple Las Vegas casino properties” that were targeted between August and October 2023. This enhances the sense of urgency surrounding casino security as the digital age continues to evolve.
The Nature of the Attacks
Cybersecurity experts suggest that the attacks are linked to a loosely organized hacker group known as Scattered Spider. This group operates under various aliases, including Octo Tempest, UNC3944, and 0ktapus3. Their tactics, particularly voice phishing, enabled them to manipulate employees into granting access to sensitive systems, making them a significant threat in the cyber landscape.
The fallout for MGM was particularly severe. Reports suggest that the casino complex refused to pay a ransom, resulting in an estimated loss of $100 million and a staggering 10-day system outage that disrupted reservations, slot machines, room keys, and websites. Conversely, Caesars reportedly capitulated to a ransom demand, paying $15 million of a $30 million request, which resulted in less operational disruption.
Implications for the Casino Industry
These incidents have prompted a reevaluation of cybersecurity measures across the casino industry. With the operations of these entertainment giants intertwined with technology, the risks associated with cyber vulnerabilities have become more pronounced. Casino operators are now under increasing pressure to bolster their defenses against such threats, ensuring the protection of both their assets and their customers’ personal information.
As the digital landscape continues to evolve, the fallout from events like the Las Vegas casino cyberattacks will influence regulatory changes and provoke discussions about best practices in cybersecurity. The involvement of a young suspect also raises societal questions about the role of youth in cybercrime and the challenges of enforcement in an era defined by digital anonymity.
This incident serves as a stark reminder of the ongoing battle between cyber criminals and businesses, a battle that has only just begun in the high-stakes world of online security.