MGM Resorts International did not give in to ransomware attackers who breached its systems last month, resulting in the shutdown of several hotels and casinos. The cyberattack affected customers waiting to check into their rooms, including FTC chair Lina Kahn, who was in Las Vegas for meetings. The hackers stole customer data, such as names, contact information, and driver’s license numbers, as well as a limited number of social security and passport numbers. Although the company did not disclose the exact number of affected individuals, it confirmed that the stolen data belonged to customers who transacted with the company before March 2019. MGM reassured customers that passwords, bank account numbers, and card details were not compromised.
In response to the breach, MGM is notifying affected customers via email and offering free credit monitoring and identity theft protection services. According to the company’s filing with the US Securities and Exchange Commission, its domestic operations have returned to normal, with most guest-facing systems restored. Remaining systems are expected to be restored soon. However, MGM anticipates losing approximately $100 million due to the incident. The company has spent under $10 million on technology consulting services, legal fees, and expenses related to the attack. MGM has established a dedicated call center and webpage for customers who suspect they were affected to seek assistance and additional information.
Overall, MGM Resorts International held firm and refused to pay the ransom demanded by the hackers who breached its systems. The cyberattack led to temporary closures and disruptions at multiple hotels and casinos, inconveniencing guests, including high-profile individuals such as FTC chair Lina Kahn. The stolen customer data included names, contact information, and driver’s license numbers, and potentially a limited number of social security and passport numbers. While MGM assured customers that passwords, bank account numbers, and card details were safe, it is providing free credit monitoring and identity theft protection services as a precautionary measure. The company has successfully restored most of its guest-facing systems and expects remaining systems to be restored soon. Despite incurring significant expenses related to the incident, MGM did not disclose any plans to pay the attackers’ ransom. Customers who believe they may have been affected can access a dedicated call center and webpage for support and further information.
/cdn.vox-cdn.com/uploads/chorus_asset/file/24985327/1663573666.jpg&description=MGM%E2%80%99s+Non-Payment+Following+Hack+and+Customer+Data+Theft){kind=link}