🗃️💣
MGM Resorts International Security Incident
2019 and 2023
830 days ago
Resolved
Incident Overview
Situation Description
MGM Resorts International suffered two major data breaches in 2019 and 2023, leading to a $45 million settlement in a class action lawsuit over alleged failures to protect customer data.
Event Types
Data Breach
Malware / Destructive Attack
Industry Sector
HospitalityGeographic Scope
National (US)Response Actions
Fulfilled Formal Breach Disclosure Obligations
Notified Affected Individuals & Entities
Paid Regulatory Fines or Legal Settlements
Managed Public Narrative & Crisis Communications
Impact Analysis
Event Types (2 identified)
Data Breach
Malware / Destructive Attack
Financial Impact
$145,000,000 USDRecords Affected
37,000,000Data Types Compromised
PII
Credentials
Primary Impacts
Financial Loss
Data Exposure
Operational Disruption
Reputational Damage
Legal/Regulatory Penalties
Key Decisions Made
MGM agreed to a $45 million settlement to resolve class action lawsuits stemming from data breaches in 2019 and 2023.; MGM discovered the 2019 data breach in the summer of 2019 and notified affected guests by September 5, 2019.; MGM reported that the 2023 cyberattack resulted in approximately $100 million in lost revenue due to business downtime.
Technical Analysis
Attack Method
Unknown
Additional Information
Quick Facts
- Company:
- MGM Resorts International
- Date:
- 2019 and 2023
- Status:
- Resolved
- Decision Maker:
- nan
- Position:
- nan
- Published:
- 16/03/2025
Source Information
Original Query
MGM Resorts ransomware attack customer data breach notification content analysisTimeline
Information Published
16/03/2025
Incident Occurred
2019 and 2023 (830 days ago)
Status: Resolved
Estimated resolution based on age