Online Sportsbook BetMGM Faces Data Breach

  • By Steven
  • Dec 28, 2022

BetMGM Data Breach

We often talk about how hospitals, schools, banks, and credit bureaus are some of the most prominent targets for hackers. However, we also talk about how sometimes, the most obvious place to be hacked takes eons to get hacked. Honestly, we’re just surprised that it took so long for hackers to target one of this magnitude. Most people have seen Ocean’s Eleven; a thick, twisting scheme you can’t see coming until the last second. It was fun and exhilarating, and everyone enjoyed ripping off the rich. We can promise you this casino robbery was nowhere near as fun.

How Did the Attack Occur?

An unauthorized third party accessed BetMGM’s client records, accessing an undisclosed number of customer records. Fortunately, they did not release the records to the general public. Unfortunately, it’s likely being sold on the dark web.

What Information Was Viewed or Stolen?

The unauthorized party accessed a large amount of information, much of which was very sensitive. The released data included names, birthdays, hashed social security numbers, emails, phone numbers, postal addresses, player IDs, screen names, and “information related to your transactions” with BetMGM. This leaves patrons in a perilous situation, as now their PII (personally identifying information) is in the hands of an unknown and unauthorized party. 

How Did BetMGM Admit to the Breach?

BetMGM sent notification letters to the victims and the California State Attorney General’s Office. The letters contained vague information about the incident and did not detail the breach itself. However, instructions on how to redeem the offered two years of free credit monitoring were explained in great length, as is California law. “We promptly launched an investigation after learning of the matter and have been working with leading security experts to determine the nature and scope of the issue,” reads the notice. “We learned of the issue on November 28, 2022, and believe the issue occurred in May 2022.”

What Will Become of the Stolen Information?

There are, of course, many options for the hacker: they can sell, they can let the data sit for a while to fall out of the limelight, and then sell. They can keep whatever PII and financial data they accessed and use it to steal someone’s identity. They could even hand out the information to their friends. For all we know, the hacker just wanted to scare gamblers and had no plans for the stolen details. However, it would be naive to assume so. 

What Should Affected Parties Do in the Aftermath of the Breach?

We like to prepare for the worst and be surprised by the best. Whenever any of us or our loved ones are affected by the data breach, we take the steps we would if our identities were stolen - short of calling the police, of course. These steps are derailed in various other posts and are the same steps many of us take to remain safe. This keeps us protected in the long run, so we spend less time worrying about our online safety and more about the life happening around us. We hope you stay safe and protect yourself as best as you can; you only live once, so don’t spend it all worrying.

About the Author
IDStrong Logo

Related Articles

Instagram Vulnerability Allowed Hackers Access to Control Your Phone

Security experts Check Point Research discovered a critical vulnerability while examining Instagra ... Read More

Alien Malware Infects More than 226 Mobile Apps and Steals Bank Data

As reported on September 24, 2020, by ZDNet and ThreatPost, a new strain of malware named “A ... Read More

Universal Health Systems Hit by Ransomware Attack

Universal Health Systems (UHS), a Fortune 500 company owning more than 400 hospitals across the co ... Read More

Exchange Server Bug Exposes a Big Risk to Hackers

Months after Microsoft released a patch to fix a serious flaw in MS Exchange Server, more than 61% ... Read More

Clients’ Bank Data Exposed in Blackbaud Ransomware Attack

Blackbaud software was victim to a ransomware attack last May, and new information suggests that c ... Read More

Latest Articles

Pennsylvania Maternal & Family Health Services Announces Ransomware Attack

Pennsylvania Maternal & Family Health Services Announces Ransomware Attack

Anyone paying even little attention to cybersecurity knows that medical practices and services are some of the most targeted institutions in the world.

Weekly Cybersecurity Recap January 27

Weekly Cybersecurity Recap January 27

This week, our lineup is pretty hard-hitting. Some of the biggest names in, well, everything, have been hacked, with a combined victim total of well into the millions.

MailChimp Announces Data Breach Affecting Tiny Number of Customers – With Big Ripples

MailChimp Announces Data Breach Affecting Tiny Number of Customers – With Big Ripples

MailChimp has been hacked repeatedly over the years; there is very little surprise in the breach, though one thing should be considered.

Featured Articles

How to Buy a House with Bad Credit

How to Buy a House with Bad Credit

Buying your own home is the American Dream, but it might seem out of reach to those with bad credit. However, the good news is, if your credit is less than perfect, you do still have options and in most cases, can still buy a home.

How Secure Is Your Password? Tips to Improve Your Password Security

How Secure Is Your Password? Tips to Improve Your Password Security

Any good IT article on computers and network security will address the importance of strong, secure passwords. However, the challenge of good passwords is that most people have a hard time remembering them, so they use simple or obvious ones that pose a security risk.

Top 10 Senior Scams and How to Prevent Them

Top 10 Senior Scams and How to Prevent Them

Senior scams are becoming a major epidemic for two reasons. First, seniors often have a lot of money in the bank from a life of working hard and saving.

Free Identity Threat Scan
Instantly Check if Your Personal Information is Exposed
All fields below are required
Please enter first name
Please enter last name
Please enter a city
Please select a state
Please enter an email address
Close