Wynn Resorts Faces Class Action Following Data Breach Incident

Lucas Dunn
By: Lucas Dunn
Las Vegas
Wynn and Encore hotel towers in Las Vegas behind Chanel, Louis Vuitton, Dior, Cartier and Graff luxury stores

Photo by Wikimedia Commons, CC BY 2.0

Key Takeaways

  • Plaintiff Richard Reed alleges negligence by Wynn in data protection
  • The lawsuit includes seven counts against the resort
  • Wynn's breach notification lacked essential details and transparency

Wynn Resorts is under fire following a significant data breach that allegedly compromised the personal information of over 800,000 customers and employees. The hacking group ShinyHunters claimed responsibility for the breach and demanded a ransom of $1.5 million.

The incident has sparked a federal class-action lawsuit, raising concerns about the company's cybersecurity measures and the handling of sensitive data. As the legal proceedings unfold, scrutiny of Wynn's data protection intensifies.

Plaintiff Alleges Inadequate Security by Wynn

The lawsuit was filed by plaintiff Richard Reed in the U.S. District Court for Nevada on February 21. It accuses Wynn Resorts of negligence in safeguarding personal information. According to the complaint, the company failed to implement essential security measures, including encryption and multi-factor authentication, which contributed to the breach.

Reed states, "On February 20, 2026, the notorious hacking group ShinyHunters announced it had stolen over 800,000 records from Defendant containing the personal information of Plaintiff and Class Members." The exposed data reportedly includes names, Social Security numbers, and dates of birth.

The lawsuit further argues that Wynn's breach notification was insufficient. It criticized the company for omitting vital details. These include the identity of the hackers and the root cause of the breach. The complaint emphasizes, "Omitted from the Notice Letter were the identity of the cybercriminals... and the vulnerabilities exploited."

Class Action Lawsuit Filed

The legal action against Wynn Resorts encompasses seven counts, including negligence, invasion of privacy, and breach of fiduciary duty. Plaintiffs seek compensatory damages and injunctive relief.

The complaint asserts that companies collecting personal data have a legal duty to protect it from unauthorized access. Reed argues that Wynn's failure to do so has resulted in long-term risks for those affected. He states that "the present and continuing risk of identity theft and fraud to victims of the Data Breach will remain for their respective lifetimes."

Wynn's Response and Broader Industry Implications

In response to the allegations, Wynn Resorts activated its incident response protocols and launched an investigation with external cybersecurity experts. The company maintains that it has not seen any evidence that the stolen data has been published or misused.

This incident is part of a troubling trend in the casino and hospitality industry. Major operators have faced similar cybersecurity challenges. Recent breaches at Caesars Entertainment and MGM Resorts have underscored vulnerabilities in data protection. Analysts suggest that casinos' extensive databases are attractive targets for cybercriminals.

Lucas Michael Dunn is a prolific iGaming content writer with 8+ years of experience dissecting it all, from game and casino reviews to industry news, blogs, and guides. A psychology graduate and painter that transitioned into the iGaming world, his articles depend on proven data and tested insights to educate readers on the best gambling approaches. Beyond iGaming content craftsmanship, Lucas is an avid advocate for responsible play, focusing on empowering players to strike a balance between thrill and informed choices.

All Reviews by Lucas Dunn
Lucas Dunn

Related News

see more