Subscribe To Our Newsletter

This field is for validation purposes and should be left unchanged.
Class Action U Logo
Check Your Eligibility

MGM Resorts Data Breach

MGM Resorts accidentally shared personal information, including Social Security numbers and details about winnings, with another guest. Although no misuse has been reported, MGM Resorts is offering recommendations and free credit monitoring services to affected individuals. If your data was exposed, you may be entitled to compensation through a class action lawsuit. Contact Class Action U today to explore your legal options.

MGM Resorts
Date of Breach: Not Specified
CAU logo

Who was affected:

Clients of MGM Resorts

Impacted Data:

Full Name

Address

Social Security Number

State-Issued Identification Number

Information about Winnings (including date, time, and amount won)

Check Your Eligibility

MGM Resorts recently informed customers of a data security incident where personal information was inadvertently shared with another guest. While the information was returned after the error was realized, MGM Resorts is notifying impacted individuals to ensure they take appropriate steps to protect their personal information.

MGM Resorts’ Data Breach Investigation

MGM Resorts became aware of a data security issue involving a copy of a Form W-2G, which was mistakenly provided to another guest. The form included sensitive personal details, such as the affected individual’s name, address, Social Security number, state-issued identification number, and information about winnings, such as the date, time, and amount won.

Once MGM Resorts became aware of the error, they took swift action to address the issue. The form was returned by the other guest shortly after the mistake was discovered. MGM Resorts has stated that they have no indication of identity theft, fraud, or any misuse of the exposed information. Despite this, they are proactively notifying the affected individuals and offering recommendations to protect their data.

To prevent future incidents, MGM Resorts has taken steps to improve their data handling processes, though they have not disclosed the specific measures they have implemented.

When Did This Breach Occur?

The breach occurred when an MGM Resorts guest mistakenly received a Form W-2G containing the personal information of another guest. The mistake was realized and corrected promptly, with the form being returned shortly after the error was discovered. The breach was reported to affected individuals once the company became aware of the incident.

What Information Was Breached?

The following personal information was inadvertently disclosed:

  • Full Name

  • Address

  • Social Security Number

  • State-Issued Identification Number

  • Information about Winnings (including date, time, and amount won)

What You Can Do

If you were impacted by this incident, here are the steps you can take to protect your personal information:

  1. Order your free credit reports: Under U.S. law, you are entitled to one free credit report annually from each of the three nationwide credit bureaus (Equifax, Experian, and TransUnion).

  2. Monitor your accounts: Regularly check your bank and credit card statements for any unauthorized activity.

  3. Place a fraud alert: Contact the three major credit bureaus to place a fraud alert on your credit file, which will help protect you from identity theft.

  4. Request a security freeze: If you are a Massachusetts resident, you have the right to place a security freeze on your credit file. This prevents anyone from accessing your credit report without your permission. You can request this freeze at no cost to you.

  5. Stay vigilant: Keep an eye on your financial accounts and credit reports for any signs of misuse of your personal information.

By following these steps, you can minimize the risk of fraud or identity theft as a result of this breach.

File a Data Breach Lawsuit Against MGM Resorts

If you were affected by this incident, you may be entitled to compensation for any damages caused by the breach. MGM Resorts has a responsibility to safeguard your personal information, and you may have the right to file a lawsuit to seek redress for any harm caused by the unauthorized disclosure of your data.

Contact us at Class Action U to explore your legal options. Our experienced attorneys can help you determine if you qualify for a class action lawsuit. Fill out our easy and secure form to get started. There is no cost to reach out, and no obligation after speaking with one of our legal partners. Don’t stand alone—join the class, and together, we can seek justice!

VIEW PDF
Subscribe To Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This field is for validation purposes and should be left unchanged.
Other Data Breaches
MGM Resorts Data Breach
Date of Breach: Not Specified
Opus Card Systems Data Breach
Date of Breach: July 21, 2025
Automobile Club of Southern California Data Breach
Date of Breach: Not Specified
Show More

Frequently Asked Questions

A data breach occurs when sensitive, confidential, or protected information is accessed, stolen, or disclosed without authorization. Data breaches often occur through phishing emails, malware, weak passwords, insider threats, or unsecured databases. Indicators of a data breach can include unexpected password resets, suspicious account activity, unauthorized transactions, or notifications from companies about compromised information.If you suspect your data has been compromised, you must take measures and act quickly. Change passwords, enable two-factor authentication, review your financial accounts for unusual activity and consider freezing your credit.

Once stolen, your personal information may be sold on the dark web or used for identity theft and financial fraud. In some cases, hackers use the data to extort companies or launch further attacks. Victims often face long-term risks, including damage to credit and privacy.

If you receive a data breach notification, don’t ignore it. Immediately change passwords for the affected account and any others that share credentials. Enroll in any free credit monitoring services offered and monitor financial statements closely.

To pursue a data breach claim, you’ll need documentation showing your information was compromised and proof of resulting harm, such as fraudulent charges, credit score damage, or identity theft reports. Notification letters, financial records, and communication with the breached company can help support your claim.

Yes. If a company fails to protect consumer data or delays notifying victims, it may be held liable under state and federal privacy laws. Many victims join class action lawsuits to recover financial losses and hold negligent organizations accountable.

Data breach settlements vary widely depending on the size of the breach, type of data compromised, and damages suffered by victims. Payouts may include cash compensation, identity theft protection, or reimbursement for losses. Many settlements range from a few hundred to several thousand dollars per person. A skilled data breach lawyer can guide victims through the complex legal process, ensuring their rights are protected. If you’ve received a data breach notification or believe your personal data was exposed, you may be eligible for compensation. Contact Class Action U to learn more about how to join a data breach lawsuit and understand the process of filing.