- Today
- Holidays
- Birthdays
- Reminders
- Cities
- Atlanta
- Austin
- Baltimore
- Berwyn
- Beverly Hills
- Birmingham
- Boston
- Brooklyn
- Buffalo
- Charlotte
- Chicago
- Cincinnati
- Cleveland
- Columbus
- Dallas
- Denver
- Detroit
- Fort Worth
- Houston
- Indianapolis
- Knoxville
- Las Vegas
- Los Angeles
- Louisville
- Madison
- Memphis
- Miami
- Milwaukee
- Minneapolis
- Nashville
- New Orleans
- New York
- Omaha
- Orlando
- Philadelphia
- Phoenix
- Pittsburgh
- Portland
- Raleigh
- Richmond
- Rutherford
- Sacramento
- Salt Lake City
- San Antonio
- San Diego
- San Francisco
- San Jose
- Seattle
- Tampa
- Tucson
- Washington
Wynn Resorts Confirms Cyberattack and Extortion Threat
Hackers stole 800,000 employee records and demanded $1.5 million in Bitcoin to prevent a leak
Published on Feb. 25, 2026
Got story updates? Submit your updates here. ›
Wynn Resorts has confirmed a massive data breach in which hackers stole 800,000 employee records, including names, Social Security numbers, email addresses, and other personal information. The hackers, a group called ShinyHunters, demanded a $1.5 million Bitcoin ransom to prevent the data from being leaked. While Wynn claims the stolen data has been deleted, the company is offering credit monitoring and identity protection services to affected employees as a precaution.
Why it matters
This incident highlights the growing threat of cybercrime and data breaches facing large companies. The theft of sensitive employee data raises concerns about privacy and identity theft, and the extortion attempt shows how cybercriminals are becoming more sophisticated in their tactics. The case also underscores the importance of robust cybersecurity measures and incident response protocols for organizations handling large amounts of personal information.
The details
According to Wynn Resorts, the hackers gained access to the company's systems in September 2025 by exploiting a vulnerability in the Oracle PeopleSoft software and using an employee's credentials, though it's unclear if those credentials were stolen through social engineering or purchased from an insider. The stolen data included full names, Social Security numbers, email addresses, phone numbers, and birthdays of 800,000 current and former Wynn employees.
- In September 2025, the ShinyHunters hacking group stole the 800,000 employee records from Wynn Resorts.
- On February 23, 2026, the deadline set by ShinyHunters for the $1.5 million Bitcoin ransom payment passed.
The players
Wynn Resorts
A major casino and resort operator based in Las Vegas, Nevada.
ShinyHunters
A prolific data-theft and extortion gang that claimed responsibility for the Wynn Resorts breach.
Richard Reed
A California resident who filed a federal class action lawsuit against Wynn Resorts, alleging the company failed to protect the information of more than 800,000 customers and employees.
What they’re saying
“The unauthorized third party has stated that the stolen data has been deleted.”
— Wynn Resorts spokesperson (Wynn Resorts)
“We are monitoring and to date, have not seen any evidence that the data has been published or otherwise misused.”
— Wynn Resorts spokesperson (Wynn Resorts)
What’s next
The judge in the class action lawsuit filed by Richard Reed will decide on the company's response to the allegations.
The takeaway
This incident underscores the growing threat of sophisticated cyberattacks and data breaches facing large companies. It highlights the importance of robust cybersecurity measures, incident response protocols, and the protection of sensitive employee and customer data.
Las Vegas top stories
Las Vegas events
Mar. 9, 2026
Farrell Dillon Comedy Magician
Mar. 9, 2026
Blue Man Group Las Vegas