Our sources don’t always get it right, but an industry insider hit this one out of the park: An MGM Resorts data breach initially said to have involved 10 million customers actually affected at least 142 million.
CDNet.com has confirmed “exclusively” what we shared back in February 2020: The official number of customer records breached was vastly inaccurate, and not in a good way.
While CDNet’s story says 142 million records are for sale on the dark Web, our source puts the number of stolen records closer to 200 million.
CDNet’s story included, “Posts on Russian-speaking hacking forums promoted the MGM data breach as containing details on more than 200 million hotel guests.”
On the bright side, if there is one, the breached records had limited MGM Resorts customer data: Names, addresses, phone numbers and, in limited cases, dates of birth and drivers license numbers.
No financial data was leaked.
Our source provided lots of information which hasn’t been reported elsewhere or confirmed by MGM Resorts.
The source says the stolen data in question had no information beyond 2017.
The source also claims the hackers had ties to Iran.
There were also some technical aspects of the breach which we have no clue about: The data was compromised via “SQL tables” posted “in the Cloud” within AWS (Amazon Web Services). Basically, “production data” stored in a development environment.
Both the MGM Resorts player database (PATRON) and hotel database (OPERA) were compromised, according to our source.
Our source says MGM Resorts paid “hundreds of thousands of dollars” to attempt to buy back the data, but it was leaked, anyway.
Astonishingly, the hacker trying to sell the stolen data is offering it for a paltry $2,939.
MGM Resorts claims it “has already addressed the situation.”
That sounds like an apology to us, so it’s all good!