Skip to main content

Digital Trends may earn a commission when you buy through links on our site. Why trust us?

Hackers expose personal details of 10 million MGM hotel guests

A major security breach has hit MGM Resorts hotels after the personal details of 10.6 million guests were posted on a hacking forum this week.

Recommended Videos

The stolen data belongs not only to regular tourists but also to celebrities, tech CEOs, and government officials — among them Twitter CEO Jack Dorsey and Canadian singer Justin Bieber.

Please enable Javascript to view this content

The hack, which has been confirmed by MGM Resorts, was first reported by ZDNet following a tip-off from Under the Breach, a soon-to-launch data breach monitoring service.

Leaked files contain the personal details of 10,683,188 former hotel guests, including full names, home addresses, phone numbers, emails, and dates of birth. In an emailed statement to Digital Trends, a spokesperson for MGM Resorts said its team is “confident that no financial, payment card or password data was involved in this matter.”

The company said that it discovered the breach in the summer of 2019. While it has apparently made no public statement about the incident until now, it said that at the time, it contacted guests who may have been affected. It also hired two leading cybersecurity forensics firms to assist with an internal investigation into the incident.

ZDNet said that its own research suggests that none of the data corresponds with guests who made their first booking at an MGM Resorts hotel after 2017.

MGM Resorts isn’t the first hotel group to be targeted by hackers, with Mandarin Oriental and Trump Hotels among others to be hit in recent years. The biggest hotel-related breach, however, affected hundreds of millions of Marriott guests after cybercriminals stole their personal information over a period of several years before the hack was spotted in 2018.

Cybercriminals who succeed in stealing personal data may attempt to sell it via illicit hacking forums, with buyers hoping to use financial data for online shopping sprees or to withdraw money from bank accounts. MGM Resorts said customers’ payment data is safe, but the stolen information in this case could leave victims vulnerable to phishing attacks, SIM swap fraud, and other scams.

MGM Resorts told Digital Trends it takes its responsibility to protect guest data “very seriously,” adding that it has “strengthened and enhanced the security of our network to prevent this from happening again.”

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Virgin Media breach disclosed details about adult content and gambling habits
Stock photo of lock and data

British telecom provider Virgin Media experienced a data breach that allowed unauthorized access to highly personal information about hundreds of customers.

"We recently became aware that one of our marketing databases was incorrectly configured which allowed unauthorized access," Lutz Schüler, CEO of Virgin Media said in a statement. "We immediately solved the issue by shutting down access to this database, which contained some contact details of approximately 900,000 people, including fixed-line customers representing approximately 15% of that customer base. Protecting our customers’ data is a top priority and we sincerely apologize."

Read more
Wawa data breach: Hacker is selling 30 million credit cards on the dark web
wallet with cash and cards

Credit card data from a security breach that affected an East Coast convenience store chain last year was discovered being sold in the corners of the dark web this week. The amount of data stolen makes it the third-largest credit card breach in history.

Wawa convenience stores announced the attempts to sell the data in a news release on January 28. According to the Gemini Advisory Board, a company that identifies cyberthreats, the credit card information was found on the website called Joker’s Stash marketplace and exposed customer data from 30 million cards. 

Read more
Post Cyber Week savings: Take $350 off this HP 27-inch all-in-one
A man taking a video call with the HP 27-inch All-in-One.

While laptop deals tend to be the lion’s share of the PC promotions we discover, every once in a while, we see a fantastic offer on a great all-in-one machine. For those unaware, an all-in-one is a desktop computer with an integrated monitor. That means you won’t have to worry about shopping for a screen to go with that new HP desktop. It's all tucked behind the monitor, processor and everything. And speaking of HP, we just came across this awesome all-in-one markdown. For a limited time, when you purchase the HP 27-inch All-in-One (model CR1064), you’ll only pay $900. At full price, this model sells for $1,250. If a dedicated laptop is more up your alley, you may also want to check out our roundup of the best HP laptop deals.

Why you should buy the HP 27-inch All-in-One
Like any good PC, what’s running underneath the hood is ultimately the star of the show. In the case of the CR1064, you’ll be working with an Intel Core Ultra 7 that delivers max clock speeds of 4.8GHz, Intel Graphics, 16GB of RAM, and 1TB of storage. Whether you’re in need of a reliable PC to run a business, do some photo editing, watch HD movies and play HD games, or simply browse the web, the HP CR1064 has got you covered. And with its 1920 x 1080 IPS screen, you’ll be able to enjoy crisp-clear visuals at nearly any angle.

Read more