However, a new report from ZDNet suggests that instead of 10.6 million, more than 142 million customers might have been affected. The earlier data leak included personal details of guests such as names, addresses, phone numbers, and email IDs. The report notes that a hacker has posted a listing on the dark web claiming to sell a database with MGM customer records for $2,939. The listing highlights that while February’s reports pointed out MGM Resorts’ data breach, it missed out on MGM Grand Hotel data leak. In a statement, MGM Resorts told TNW it was aware of the scope of the incident: However, the hotel chain didn’t confirm the number of customers affected. ZDNet’s report also said that threat research firm KELA notified the publication about posts on Russian security forums that advertised MGM data breach affecting more than 200 million customers. In the past few years, hackers have attacked several hotels to steal customer data. In March, Marriott Hotels was breached impacting more than 5.2 million people. security
