Published on: October 1, 2025, 01:16h.
Updated on: October 1, 2025, 01:30h.
- Boyd Gaming is currently involved in a class-action lawsuit stemming from a recent cyberattack
- The legal action alleges that Boyd did not sufficiently safeguard customer and employee information
Boyd Gaming Corp. (BYD), headquartered in Las Vegas, is now facing six federal litigations in Nevada following a cyberattack that exposed sensitive personal details in September.
The lawsuits, initiated by four different law firms on Thursday and Monday, charge the company with inadequate cybersecurity measures that led to unauthorized access to sensitive information they were required to protect.
Each lawsuit aims for class-action status on behalf of a multitude of affected parties, including both current and former employees, along with customers.
The initial lawsuit was filed last Thursday by Scott Levy, a past Boyd employee residing in Las Vegas. On Monday, five additional plaintiffs joined the case: Deandric Price (Las Vegas), Sherekia Price (Louisiana), Larry Harris (Texas), Patricia Tiedtke (Cincinnati), and Holly Neely, whose residence remains unspecified.
What Boyd Has Confirmed…
In a September 23 SEC filing, Boyd admitted that cybercriminals had accessed its systems, extracting data that included employee information and details associated with “a limited number of other individuals.” The company stated that they have begun notifying those impacted and will inform regulators and governmental agencies as mandated.
“Upon detection of the breach, the company quickly took action to address the incident, collaborating with top external cybersecurity specialists and working alongside federal law enforcement,” Boyd mentioned in the filing. Furthermore, they stated: “The company has a comprehensive cybersecurity insurance policy that we anticipate will cover expenses related to incident management and forensic investigations, along with possible business interruptions, legal actions, and regulatory penalties, subject to policy limits and deductibles.”
Although multiple lawsuits claim the breach occurred between September 5 and 7, Boyd has yet to validate the timeline, the extent of the data exposure, or whether any ransom was paid. The company has a policy of refraining from commenting on ongoing litigation.
Boyd Gaming operates 11 local casinos in the Las Vegas Valley, which includes three locations in downtown Las Vegas, and has nearly a dozen other gaming establishments across 10 states.