Google's Guide is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission.

MGM Resorts client data has been leaked for free on Telegram

Advertisements

MGM Resorts customer data worth 8.7GB has been leaked online.

image credits: techmarmot

A large (but ostensibly outdated) database containing personal information has been leaked in a Telegram channel for anyone who wants to look at it for free.

The 8.7GB file dump was found earlier this week by vpnMentor cybersecurity researchers, who discovered it contained data on at least 30 million people.

Advertisements

The information appears to have come from MGM Resorts, a hotel and casino corporation whose endpoints were breached three years ago.

New tricks, same targets

If this is the same database as some reports claim, it has information on over 140 million MGM Resorts customers. Full names, postal addresses, over 24 million unique email addresses, over 30 million unique phone numbers, and dates of birth are all included in the data. Fortunately, no financial information appears to have been compromised, but users may still be vulnerable to identity theft (opens in new tab).

MGM Resorts has been silent about the topic so far, but a data breach in 2019 resulted in personal information on high-profile individuals such as former Twitter CEO Jack Dorsey and pop singer Justin Bieber being sold on the dark web for $3,000.

Advertisements

vpnMentor claims that now that the data is openly available to anyone, it has become “far more accessible for even the least tech-savvy folks.”

While it’s difficult to say why someone would dump such a database online without notice, BleepingComputer suggests two possibilities: it’s old and worthless, or it was published as a result of the recent takedowns of RaidForums and Hydra, dark web forums where stolen data was commonly sold.

Researchers are pushing everyone to remain icy, regardless of whether they believe the data is meaningless. “Bad actors might utilise the victims’ complete names and home or business addresses to create trust by sending phishing messages and scams to exposed individuals via SMS and email,” they explain.

Advertisements

They stated that the elderly may be targeted in particular because they are typically simpler to swindle. Dates of birth found in the database can aid in the selection of targets.

With the greatest firewalls available, you can keep track of all incoming and exiting data.

Advertisements

Leave a Comment