Wynn Resorts Ltd. has acknowledged the data breach from its computer system, which was first reported on Friday by local media. The operator said an unauthorized third party acquired certain employee data in a cyberattack, but the company added that the hackers have stated the stolen information has been deleted, and there is no evidence so far of misuse.
The Las Vegas-based casino giant did not disclose whether it paid a $1.5 million ransom reportedly demanded by the hacking group ShinyHunters, which claimed to have stolen 800,000 files containing employee information.
In an emailed statement issued by the luxury resort company, Wynn officials said: “We have learned that an unauthorized third party acquired certain employee data. Upon discovery, we immediately activated our incident response protocols and launched a thorough investigation with the help of external cybersecurity experts.”
The email added that the unauthorized third party “has stated that the stolen data has been deleted. We are monitoring and to date have not seen any evidence that the data has been published or otherwise misused.”
Wynn said the incident had no impact on guest experience or operations and that all seven of its resort properties remain fully operational.
“Our guests can continue to expect the customer experience for which Wynn Resorts is known,” the statement said. “While the investigation is ongoing, we have elected to offer complimentary credit monitoring and identity protection to all employees.”
“The security and confidentiality of our employees, as well as our guest data, is our top priority. While no company can ever eliminate the risk of a cyberattack, we are taking appropriate steps and working with industry-leading third-party IT advisers to strengthen our systems to protect against future incidents.”
A potential class-action lawsuit has been filed by a customer concerned that his personal information may have been exposed, though there are no indications that customer data was breached.
In a December 2024 filing with the U.S. Securities and Exchange Commission, Wynn warned that it could be vulnerable to cyberattacks despite security measures in place.
“Despite the security measures we currently have in place, our facilities and systems and those of our third-party information system service providers may be vulnerable to security breaches, acts of vandalism, phishing attacks, computer viruses, worms, ransomware, malicious software programs, misplaced or lost data, programming or human errors, and other events,” the filing said.
“Cyberattacks are becoming increasingly more difficult to anticipate, prevent, and detect due to their rapidly evolving nature, and as a result, the technology we use to protect our systems from being breached or compromised could become outdated due to advances in computer capabilities or other technological developments.”
The company acknowledged prior incidents but said none had materially affected its finances.
“We have experienced data security incidents in the past and expect to experience additional incidents in the future; however, to date, no such incidents have been material to our business, operating results, or financial condition,” the filing said.
The company also said it “may find it necessary to make significant further investments to protect data and our infrastructure, including the implementation of new computer systems or upgrades to existing systems, deployment of additional personnel and protection-related technologies, engagement of third-party consultants, and training of employees,” as reported by the Las Vegas Review-Journal.
Shares of Wynn, traded on the Nasdaq, fell 6.4% on Monday before rebounding 2% on Tuesday to close at $109.44.
Original article: https://www.yogonet.com/international/news/2026/02/25/117766-wynn-says-stolen-employee-data-deleted-after-cyberattack
