Published on: February 24, 2026, 09:10h.

Updated on: February 24, 2026, 09:10h.

• Wynn Resorts has disclosed a cyber breach involving 800,000 employee records stolen by hackers
• Although there’s no confirmation of a ransom being paid, Wynn asserts that the data has been purged
• The threat from the hackers has also been removed from their dark web site

On Tuesday, Wynn Resorts acknowledged a significant data breach and extortion attempt as reported by various news outlets. In September 2025, a notorious hacking group named ShinyHunters compromised 800,000 employee records from the gaming powerhouse, demanding a ransom of $1.5 million in Bitcoin to avert a data leak.

The compromised data is said to have contained full names, Social Security numbers, email addresses, phone numbers, and birth dates.

A Wynn representative confirmed the breach on Tuesday, February 24, indicating that the issue was addressed promptly.

“The unauthorized third party has claimed that the stolen data has been eliminated,” the statement conveyed.

While the announcement did not clarify whether a ransom was fulfilled, the implication leaves little room for doubt. Alongside Wynn’s assertion of data deletion, ShinyHunters has removed its threat directed at the organization from its dark web site.

Typically, cybercriminals do not erase their extortion threats or any stolen data unless their demands have been satisfied; the ransom deadline set by ShinyHunters was February 23.

ShinyHunters, when contacted by the cybersecurity news platform BleepingComputer, declined to disclose whether a payment had been received.

Incident Details

ShinyHunters, which had listed Wynn Resorts on its dark web leak platform last Thursday, informed the British tech site The Register that it infiltrated Wynn’s systems in September 2025. This was achieved by exploiting a vulnerability within Oracle PeopleSoft utilizing an employee’s credentials. The group did not specify if these credentials were acquired through social engineering tactics or purchased from an insider.

“Once we discovered the breach, we promptly activated our incident response protocols and initiated a comprehensive investigation with the aid of external cybersecurity specialists,” noted Wynn’s statement.

As a precautionary measure, the company is providing complimentary credit monitoring and identity protection services to all current and former employees impacted by the breach.

“We are actively monitoring the situation and have, to date, found no evidence that the data has been published or otherwise exploited,” Wynn’s statement further elaborated, insisting the incident “has had no effect on our guest experience, operations, or physical properties, which remain fully functional and open for business.”

In a related matter, Richard Reed, a California resident, filed a federal class-action lawsuit against Wynn Resorts on February 21, alleging negligence in safeguarding the data of over 800,000 customers and employees alike.

Reed’s lawsuit seeks compensatory and consequential damages, outlining seven counts against Wynn for allegedly failing to implement security measures, including the storage of data without encryption.

Even prior to the announcement concerning the hackers’ claimed deletion of the data, Wynn contested the lawsuit, asserting through preferred media channels that no customer information was compromised.