Skip to main content
  1. Home
  2. Computing
  3. Web
  4. News

Hackers expose personal details of 10 million MGM hotel guests

Trevor Mogg
By

A major security breach has hit MGM Resorts hotels after the personal details of 10.6 million guests were posted on a hacking forum this week.

The stolen data belongs not only to regular tourists but also to celebrities, tech CEOs, and government officials — among them Twitter CEO Jack Dorsey and Canadian singer Justin Bieber.

The hack, which has been confirmed by MGM Resorts, was first reported by ZDNet following a tip-off from Under the Breach, a soon-to-launch data breach monitoring service.

Leaked files contain the personal details of 10,683,188 former hotel guests, including full names, home addresses, phone numbers, emails, and dates of birth. In an emailed statement to Digital Trends, a spokesperson for MGM Resorts said its team is “confident that no financial, payment card or password data was involved in this matter.”

The company said that it discovered the breach in the summer of 2019. While it has apparently made no public statement about the incident until now, it said that at the time, it contacted guests who may have been affected. It also hired two leading cybersecurity forensics firms to assist with an internal investigation into the incident.

ZDNet said that its own research suggests that none of the data corresponds with guests who made their first booking at an MGM Resorts hotel after 2017.

MGM Resorts isn’t the first hotel group to be targeted by hackers, with Mandarin Oriental and Trump Hotels among others to be hit in recent years. The biggest hotel-related breach, however, affected hundreds of millions of Marriott guests after cybercriminals stole their personal information over a period of several years before the hack was spotted in 2018.

Cybercriminals who succeed in stealing personal data may attempt to sell it via illicit hacking forums, with buyers hoping to use financial data for online shopping sprees or to withdraw money from bank accounts. MGM Resorts said customers’ payment data is safe, but the stolen information in this case could leave victims vulnerable to phishing attacks, SIM swap fraud, and other scams.

MGM Resorts told Digital Trends it takes its responsibility to protect guest data “very seriously,” adding that it has “strengthened and enhanced the security of our network to prevent this from happening again.”

Editors' Recommendations

Hacking-as-a-service lets hackers steal your data for just $10
A depiction of a hacker breaking into a system via the use of code.
Hackers have found a way to log into your Microsoft email account
A depiction of a hacker breaking into a system via the use of code.
A data breach can cost millions of dollars — and you might be paying it
A dark mystery hand typing on a laptop computer at night.
You’ll never guess what hackers are using Microsoft Calculator for
A depiction of a hacker breaking into a system via the use of code.
Best laser printer deals: Save on Brother and Canon today
A person uses a smartphone to print something with a Brother MFC-L2710DW wireless monochrome laser printer on an office table.
The best gaming laptops in 2022
2019 Razer Blade Pro 17
The best Wi-Fi 6 routers for 2022
The Nighthawk RAXE300 on a tabletop in a home.
The best Chromebooks for 2022: great choices at every price point
Close up of the Chrome logo on the top of a Chromebook.
Best Chromebook deals for October 2022
Google Meets on an HP Chromebook.
Best HP Envy deals for October 2022
An HP Envy 17-inch laptop sits on an office desk.
Best desktop computer deals for October 2022
The HP Pavilion desktop computer accompanied by two gaming monitors and a colorful gaming keyboard.
Best VPN deals and sales for October 2022
A close-up of a computer monitor displaying a generic VPN.
Best refurbished laptops deals and sales for October 2022
microsoft surface laptop go 2020 on desk