Wynn Resorts Confirms Data Breach After Hackers Remove It From Leak Site

SecurityWeekhas asked Wynn for confirmation that a ransom has indeed been paid, but the company has yet to respond.The Register previously reported that the cybercrime group haddemandeda ransom of 22.34 bitcoin (roughly $1.5 million).The luxury hospitality and gaming company said its investigation is ongoing, but it has decided to offer credit monitoring and identity protection services to affected employees.“The security and confidentiality of our employees, as well as our guest data, is our top priority,” Wynn said. “While no company can ever eliminate the risk of a cyberattack, we are taking appropriate steps and working with industry-leading third-party IT advisors to strengthen our systems to protect against future incidents.”The ShinyHunters group is believed to have targeted more than100 organizationsin recentcampaigns, which often involve vishing and compromised SSO credentials.The cybercriminals have named several major companies on their leak site in recent weeks, includingFigure,Betterment,Crunchbase,SoundCloud, andPanera Bread.Related:Ad Tech Company Optimizely Targeted in CyberattackRelated:Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics FalterRelated:PayPal Data Breach Led to Fraudulent Transactions

The Register previously reported that the cybercrime group haddemandeda ransom of 22.34 bitcoin (roughly $1.5 million).The luxury hospitality and gaming company said its investigation is ongoing, but it has decided to offer credit monitoring and identity protection services to affected employees.“The security and confidentiality of our employees, as well as our guest data, is our top priority,” Wynn said. “While no company can ever eliminate the risk of a cyberattack, we are taking appropriate steps and working with industry-leading third-party IT advisors to strengthen our systems to protect against future incidents.”The ShinyHunters group is believed to have targeted more than100 organizationsin recentcampaigns, which often involve vishing and compromised SSO credentials.The cybercriminals have named several major companies on their leak site in recent weeks, includingFigure,Betterment,Crunchbase,SoundCloud, andPanera Bread.Related:Ad Tech Company Optimizely Targeted in CyberattackRelated:Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics FalterRelated:PayPal Data Breach Led to Fraudulent Transactions

The luxury hospitality and gaming company said its investigation is ongoing, but it has decided to offer credit monitoring and identity protection services to affected employees.“The security and confidentiality of our employees, as well as our guest data, is our top priority,” Wynn said. “While no company can ever eliminate the risk of a cyberattack, we are taking appropriate steps and working with industry-leading third-party IT advisors to strengthen our systems to protect against future incidents.”The ShinyHunters group is believed to have targeted more than100 organizationsin recentcampaigns, which often involve vishing and compromised SSO credentials.The cybercriminals have named several major companies on their leak site in recent weeks, includingFigure,Betterment,Crunchbase,SoundCloud, andPanera Bread.Related:Ad Tech Company Optimizely Targeted in CyberattackRelated:Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics FalterRelated:PayPal Data Breach Led to Fraudulent Transactions

“The security and confidentiality of our employees, as well as our guest data, is our top priority,” Wynn said. “While no company can ever eliminate the risk of a cyberattack, we are taking appropriate steps and working with industry-leading third-party IT advisors to strengthen our systems to protect against future incidents.”The ShinyHunters group is believed to have targeted more than100 organizationsin recentcampaigns, which often involve vishing and compromised SSO credentials.The cybercriminals have named several major companies on their leak site in recent weeks, includingFigure,Betterment,Crunchbase,SoundCloud, andPanera Bread.Related:Ad Tech Company Optimizely Targeted in CyberattackRelated:Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics FalterRelated:PayPal Data Breach Led to Fraudulent Transactions

The ShinyHunters group is believed to have targeted more than100 organizationsin recentcampaigns, which often involve vishing and compromised SSO credentials.The cybercriminals have named several major companies on their leak site in recent weeks, includingFigure,Betterment,Crunchbase,SoundCloud, andPanera Bread.Related:Ad Tech Company Optimizely Targeted in CyberattackRelated:Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics FalterRelated:PayPal Data Breach Led to Fraudulent Transactions

The cybercriminals have named several major companies on their leak site in recent weeks, includingFigure,Betterment,Crunchbase,SoundCloud, andPanera Bread.Related:Ad Tech Company Optimizely Targeted in CyberattackRelated:Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics FalterRelated:PayPal Data Breach Led to Fraudulent Transactions

Related:Ad Tech Company Optimizely Targeted in CyberattackRelated:Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics FalterRelated:PayPal Data Breach Led to Fraudulent Transactions

Related:Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics FalterRelated:PayPal Data Breach Led to Fraudulent Transactions

Related:PayPal Data Breach Led to Fraudulent Transactions

Eduard Kovacs (@EduardKovacs) is the managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Source: SecurityWeek