Anyone impacted by the two recent data breaches at MGM Resorts International will soon receive their cut of the $45m settlement. The attacks resulted in the theft of personal data from more than 37 million people, leading to a class-action lawsuit. Anyone who was part of the claim is now eligible to claim a payout:
MGM Resorts agreed in January to settle the lawsuit for $45m. The first data breach occurred in July 2019 when a hacker accessed guests’ sensitive information, including passport numbers and home addresses.
The cyberattack in September 2023 crippled operations at MGM Resorts’ casinos in Las Vegas for over a week and also led to the exposure of data. The company estimated at the time that the financial cost, combining damages and lost revenue, would total $100m.
payouts that depend on the type of information affected
The class action settlement provides payouts that depend on the type of information affected. The original deal said it would pay out $50 for a leaked driver’s license or passport number. Payouts jump to $75 for compromised Social Security numbers or military identification numbers.
The maximum anyone was eligible for was $15,000. Payments can be received via a number of methods, including ACH, Venmo, and PayPal.
