MGM Resorts Fails to Squelch Class Action Over 2019 Data Breach

MGM Resorts International must face a class action arising from a July 2019 data breach that exposed the personal information of 10.6 million customers, a federal court ruled, substantially denying the company’s motion to dismiss.

Plaintiffs alleged that MGM failed to implement reasonable data security measures to protect their information, retained their information longer than was needed, and failed to encrypt the server where the information was stored.

Information exposed in the breach included names, addresses, phone numbers, email addresses, birthdates, driver’s license numbers, passports number,s and military identification numbers, the lawsuit said. Information from the breach has been offered ...