MGM Data Breach Exposed Personal Details of 10.6 million Hotel Guests

If you have stayed at a MGM Resorts hotel, a recent data breach might have exposed some of your personal information. Details of more than 10.6 million hotel guests were recently posted on a hacking forum, and ZDNet has confirmed the data’s authenticity. The data dump contains affected guests’ full names, home addresses, phone numbers, emails and dates of birth.

In a statement, MGM Resorts said it already notified affected customers about the breach last year, and that it commissioned two cybersecurity forensics firms to investigate the incident. While guests who only stayed at the resort more recently may not have had their information included, it’s unclear which years were covered. Upon being notified about the breach, the MGM Resorts team told the publication that the company was able to trace the leaked data back to a security breach that took place last year. MGM said that last summer, it discovered an unauthorized entry to a cloud server that housed some information for “certain previous guests” to its hotels.

“No financial, payment card or password data was involved” in this MGM Data Breach as per the company’s spokesperson.