Fresh Headache for MGM and Caesars as They Face Cyberattack-Related Lawsuits

  • Five class action lawsuits were filed last week in the Nevada District Court
  • The complaints allege that the companies didn’t protect customer data
  • MGM’s computer systems are now back up and running on the Las Vegas Strip
Andrew O’Malley

Lawsuit
MGM Resorts and Caesars Entertainment are both facing class-action lawsuits from customers who allege that the companies failed to protect their personal data following recent cyberattacks. [Image: Shutterstock.com]

Additional headaches

The woes continue for MGM Resorts International and Caesars Entertainment following recent cyberattacks. Both casino companies have been in the firing line after their respective system breaches and they are now facing class action lawsuits for failing to protect the data of their customers.

plaintiffs allege MGM and Caesars didn’t keep identifiable information secure

Five class action lawsuits were filed last week in the Nevada District Court. The plaintiffs allege MGM and Caesars didn’t keep identifiable information secure for people who were a part of loyalty programs.

A Las Vegas law firm and a Florida law firm filed a total of four lawsuits on Thursday, with a Chicago-based practice co-filing a lawsuit on Friday with a firm in Reno. The plaintiffs live in various US states.

Lacking proper protection

The complaints claim that the casino firms should have been aware of how important it is to properly protect private customer data. According to the plaintiffs, Caesars and MGM were not compliant with industry standards and guidelines from the Federal Trade Commission.

MGM was losing out on up to $8.4m in revenue every day that the cyberattack continued, according to certain industry analysts. The total cost of the hack is unconfirmed.

MGM specifically received numerous warnings from its IT vendor Okta regarding attempted social engineering attacks. The impacted parties believe that they are now more susceptible to falling foul of identity theft following the leaks.

A disruptive period

Both MGM and Caesars fell victim to social engineering cyberattacks by ALPHV, a Russian hacking group. Caesars kept its issue quiet until submitting a filing to the Securities and Exchange Commission on September 14 regarding the hack.

the hackers were able to access a copy of its loyalty program database

Caesars found that the hackers were able to access a copy of its loyalty program database, which included Social Security numbers and drivers license information. Caesars reportedly paid a ransom of $15m after an initial request of $30m from the hackers. In doing so, the company avoided losing control of any of its systems.

MGM’s experience was totally different, with the computer systems at its Las Vegas properties shut down for more than a week as a result of its cyberattack by ALPHV. This led to glitchy slot machines, people not being able to access hotel rooms, and malfunctioning payments.

MGM’s computer systems are now back to normal, including all slot machines and paid parking at its Las Vegas properties. The Las Vegas Review-Journal reported that the check-in lines for rooms at the MGM-owned Bellagio and Mandalay properties remained long on Monday afternoon. It is unknown if MGM paid any ransom to the attackers.

Leave a Reply

Your email address will not be published. Required fields are marked *

Other Related News

We use cookies on this site to enhance your user experience.
By clicking any link on this page, you are giving consent to our use of cookies.

Cookie Overview

VegasSlotsOnline uses cookies to enhance your experience as you navigate through the website. Some of these cookies are categorized as essential because they are essential for the working of the basic functionalities of the website. Essential cookies are stored on your browser. We also use third-party cookies that help us analyze and understand how you use this website. These are non-essential cookies and are stored on your browser only with your consent. You have the option to opt-out of non-essential cookies, but this may affect your browsing experience.

Necessary  (Always Enabled)

Essential cookies are absolutely essential for the website to function properly. This category only includes cookies that ensure the basic functionalities and security features of the website. These cookies do not store any personal information.

Non-Essential ( Enabled Disabled )

Any cookies that may not be particularly necessary for the website to function and are used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-essential cookies. It is mandatory to procure user consent prior to running these cookies on your website.