ShellCodeX Breach Report
MGM Resorts Data Breach
mgmresorts.com
Verified breach
Accounts exposed
3,081,321
Breach date
25 Jul 2019
Added to tracker
20 Feb 2020
Data classes
5
What happened
In July 2019, MGM Resorts discovered a data breach of one of their cloud services. The breach included 10.6M guest records with 3.1M unique email addresses stemming back to 2017. The exposed data included email and physical addresses, names, phone numbers and dates of birth and was subsequently shared on a popular hacking forum in February 2020 where it was extensively redistributed. The data was provided to HIBP by Under The Breach.
Exposed data
Dates of birth
Email addresses
Names
Phone numbers
Physical addresses
Recommended actions
- Watch for targeted phishing emails referencing MGM Resorts โ attackers weaponise breach data quickly.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
- Exposed identity data raises identity-theft risk โ consider credit monitoring or a credit freeze.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP