Here’s Exactly What Data Was Stolen From MGM Grand Detroit Customers

Written By Dan Holmes on October 6, 2023 - Last Updated on December 7, 2023
Image of a driver's license, as driver's license numbers were included in MGM data breach, affecting MGM Grand Detroit customers

MGM Resorts has released details about what was stolen during a cybersecurity breach that impacted its casinos in several states last month, including MGM Grand Detroit.

The attack, which a hacker organization called Scattered Spider has taken credit for, occurred on Sept. 11, 2023. It resulted in a ransomware demand after infiltration of casino resorts in as many as six states. For several days, many systems at MGM properties were impacted.

MGM Grand Detroit was one of the impacted casino resorts. It saw a partial shutdown of computer systems in September.

A similar cyberattack was performed on Caesars properties in September, reportedly perpetrated by the same criminal organization. No arrests have been made in the incidents, but state and federal authorities are investigating.

What data was affected by the cyberattack on MGM casinos?

According to a press release from MGM Resorts dated Oct. 5, customer information possibly compromised includes:

  • Customer name
  • Phone number
  • Email address
  • Postal address
  • Gender
  • Date of birth
  • Driver’s license number

MGM also revealed that some customers may have had their Social Security number and/or passport number affected.

The company does not believe passwords, credit card information, or bank account information was compromised during the cybersecurity incident.

MGM states in its release that, “Promptly after learning of this issue, MGM Resorts took steps to protect its systems and data, including shutting down certain systems.”

Cybersecurity expert Lisa Plaggemier spoke to PlayMichigan. She said hacks like the one that impacted MGM Grand Detroit aren’t likely to stop. So, companies must focus on improving security measures to protect consumers.

Why you may be getting an email from MGM Grand Detroit soon

MGM Grand Detroit customers who may have been impacted by the cybersecurity issue will receive an email from MGM Resorts soon, if they haven’t already.

The company says:

“MGM Resorts is notifying relevant customers by email as required by applicable law and has arranged to provide those customers with credit monitoring and identity protection services at no cost to them. Individuals who receive an email from MGM Resorts about this issue should refer to that email for additional information and instructions for enrolling in these services.”

Customers of MGM Grand Detroit or any MGM resort casino can use a toll-free help line dedicated to this issue at 1-800-621-9437 toll-free Monday through Friday from 8 to 10 p.m. CT, or Saturday and Sunday from 10 a.m. to 7 p.m. CT (excluding major U.S. holidays).

You’ll need to use reference #B105892 when calling the helpline. A web page is also available for consumers to find information about the MGM cybersecurity breach.

Throughout this whole process, MGM has maintained the hack did not impact its mobile betting operations. That would mean customer information in BetMGM Casino Michigan would not have been compromised.

Photo by Shutterstock
Dan Holmes Avatar
Written by
Dan Holmes

Dan Holmes is a Michigan resident who writes about sports betting, sports media, casino and sports betting legislative matters. He's the author of three books, and previously reported for Major League Baseball, as well as the National Baseball Hall of Fame and Museum. He lives near Lake Michigan with his daughters.

View all posts by Dan Holmes
Privacy Policy