The news just keeps getting worse for MGM Grand who is still dealing with the fallout from hackers.
The company was brought to its knees back in September when systems were brought down affecting everything from slot machines and hotel key cards for rooms.
Now MGM Grand admitted that along with denial of services, the hackers were able to steal customer data.
Two hacker groups called AlphV and Scattered Spider worked together to accomplish the breach.
Details of how the hackers were able to get in are sparse because the FBI investigation is ongoing.
The customer data was limited to contact information including social security numbers, and did not include financial information and credit card information.
A small number of clients had passport and visa information stolen.
The company stated there is no indication that the hackers have used the customer information yet, but hackers often hold this information and eventually sell it to other hackers on the dark web.
MGM Grand is estimating that the breach has cost the company over $100 million in the third quarter.
Caesar’s was also attacked prior to the MGM breach and the company paid the ransom reported to be $50 million in cryptocurrency.
Cybercrime is projected to cost companies worldwide an estimated $10.5 trillion annually by 2025, up from $3 trillion in 2015.
David Bradbury, Chief Security Officer of Okta a cloud-based identity management company that counts both MGM Grand and Caesars as clients, said that three other of its clients were breached by the same group.
The additional three companies were not publically named because of the investigation.