Hackers revealed the personal information of over 10.6 million users who stayed at MGM Resorts hotels, on a hacking discussion board this week.
MGM has resorts in Las Vegas, Atlantic City, and Detroit in the USA. Aside from these, it owns property in China and Japan and is creating a new resort in Dubai.
Those affected due to the breach embody regular tourists, celebrities, tech CEOs, government delegates, reporters, and professionals from the world’s largest tech firms.
The MGM data dump comprises personal details for 10,683,188 former resort guests.
The leaked files included the private details resembling full names, home addresses, phone numbers, emails, and dates of birth.
Nearly 1,300 former guests had been informed that delicate information along with passport numbers was revealed.
Fifty-two thousand clients had been instructed that less sensitive private information was exposed.
Researchers reached out to the past guests of MGM and confirmed the information included in the leaked records.
As per the hotel chain, it found unauthorized access to a cloud server in 2019 that included a limited amount of data on previous guests.
It’s assured that no financial, payment card, or password data was compromised in this incident.
The resort chain stated it promptly informed all impacted guests in compliance with relevant state legal guidelines.
MGM hired two cybersecurity forensics companies to carry out an internal investigation into the attack.