10 Million MGM Guests’ Data Posted on Hacking Forum

Personal information of more than 10 million hotel guests who stayed at MGM resorts last year was hacked and showed up on a hacking forum last week. Some of the guests are suing MGM, which claims that no financial data was included.

Information on the personal details of 10.6 million plus guests who stayed at MGM Resorts International hotels last summer has appeared on a hacking forum. A law firm representing some of those people whose information was hacked has sued the entertainment firm.

According to MGM the security breach occurred last summer and customers were informed shortly thereafter. However, the data finally appeared on a hacking forum, and a spokesman for the company acknowledged that the data came from its files.

It wasn’t just details of tourists and regular customers that appeared, the lives of celebrities, government officials, reporters and employees at high tech companies were also laid bare. Full names, home addresses, phone numbers, dates of birth and emails were among the hacked information.

MGM plans to launch Under the Breach, a service that monitors such online invasions.

An MGM spokesman told ZDNet: “Last summer, we discovered unauthorized access to a cloud server that contained a limited amount of information for certain previous guests of MGM Resorts.” The spokesman said the company was “confident” that the information did not include financial, payment card or password data.

The company released this statement: “At MGM Resorts, we take our responsibility to protect guest data very seriously, and we have strengthened and enhanced the security of our network to prevent this from happening again.”

Morgan & Morgan filed the lawsuit last week in the U.S. District Court for the District of Nevada. This isn’t the first such lawsuit the firm has filed. Previously one of its attorneys represented Yahoo losers whose data was breached.