Casino operator Wynn Resorts Ltd has told GGRAsia that the company has “no indication at this time that any data outside of the United States has been compromised,” following a confirmed cybersecurity breach in the U.S.
Wynn Resorts is the parent of Macau casino business Wynn Macau Ltd, and is also developing a new property, Wynn Al Marjan Island, in the United Arab Emirates.
On Tuesday, U.S.-based Wynn Resorts had confirmed in an email to Reuters that hackers had obtained employee data and that the company was investigating the breach, with the help of external experts.
Michael Weaver, Wynn Resorts’ chief communications and brand officer, told the news outlet that the data had been deleted, adding: “We are monitoring and to date have not seen any evidence that the data has been published or otherwise misused.”
Mr Weaver said the incident “has had no impact” on the group’s guest experience, its operations or its properties, “which are all fully operational and open for business”.
Wynn Resorts runs Wynn Las Vegas and Encore in Las Vegas, Nevada, and Encore Boston Harbor in Massachusetts. The Macau unit runs Wynn Macau and Wynn Palace in Cotai. In the United Kingdom, Wynn Resorts operates Wynn Mayfair in London, which it acquired last year.
Reuters had said that a person claiming to be a representative of the hackers involved in the U.S. incident, had told it in a Friday online chat they were demanding 22.34 bitcoin, worth roughly US$1.5 million, in relation to Wynn Resorts’ data.
In further communication on Tuesday, the person did not comment regarding payment, but also said the data had been deleted, reported Reuters.
A number of Las Vegas, Nevada-based gaming companies or their subsidiaries has been hit by hackers in recent times.
MGM Resorts International, parent of Macau operator MGM China Holdings Ltd, experienced a major hacking attack in the U.S. in September 2023 that reportedly compromised the data of 37 million people.
At the time, MGM China told GGRAsia its operations had not been affected by the U.S. attack.
In its first-quarter 2025 results, MGM Resorts said it had “reached a settlement for US$45 million to resolve the purported U.S. civil class action litigation related to the 2023 cybersecurity issue and a 2019 cybersecurity issue, which was paid by insurance carriers into a settlement fund in February 2025”.
In October last year, Marina Bay Sands Pte Ltd, operator of the Singapore casino resort Marina Bay Sands, was fined SGD315,000 (US$243,200) by the city-state’s authorities, over a data breach that took place in 2023 and involved personal details of more than 665,000 clients.
Marina Bay Sands Pte is a unit of U.S.-based Las Vegas Sands Corp, which is also the parent of Macau casino operator Sands China Ltd.
