The personal details of 142 million MGM Hotel guests were put up for sale on the Dark Web.
The personal details of 142 million MGM Hotel guests were put up for sale on the Dark Web.
MGM Resorts International is the parent company for the MGM Grand operating in Las Vegas, Atlantic City as well as properties in China and Japan. The company owns popular hotel chains such as Bellagio, Aria, Mandalay Bay, Mirage, Luxor and Excalibur.
The hacker posted an advertisement on a dark web cybercrime marketplace and appeared to be selling information for $2,940 (roughly Rs. 2.21 lakhs). It is believed that the hacker had allegedly obtained guest MGM guest’s data from a US based cybersecurity company.
The cybersecurity company NightLion denied the hackers' claim and told the news portal that it never owned a copy of the full MGM database. The NightLion also added that the hackers are trying to ruin the company’s reputation after it faced a data breach recently.
The data obtained includes contact information like names, postal addresses and email addresses.
MGM Resorts claimed that they were aware of the data breach but it is still unclear whether all the affected guests are notified.
The security breach came into attention during February 2020, where a batch of 10.6 million MGM hotel guests data was offered as a free download on a hacking forum. The information exposed included sensitive data and all the guests were notified in accordance with applicable state laws. The list of customers whose data data were stolen includes celebrities, tech CEOs, reporters, government officials and employees at some of the major tech companies.
“MGM Resorts was aware of the scope of this previously reported incident from last summer and has already addressed the situation, ” said an MGM spokesperson to ZDNet in an email.
“The MGM data could be even bigger than the 142 million count we have today, ” reported ZDNet.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: “BlueLeaks” Exposes Data of 200 US police Departments and Exposed Online