Wynn Resorts has reportedly been targeted by the cybercrime group ShinyHunters, which claims to have stolen over 800,000 employee records including Social Security numbers. The extortionists have demanded a ransom of approximately 1.5 million dollars in Bitcoin and threatened further digital disruptions if the company does not comply by February 23.
The hospitality giant Wynn Resorts has been listed on the extortion blog of the notorious cybercrime crew known as ShinyHunters. The group asserts that it has successfully exfiltrated a massive database containing more than 800,000 records. These files allegedly include highly sensitive information belonging to employees, most notably their Social Security numbers and other private identifiers.
According to representatives from the criminal organization, the initial breach occurred in September 2025. The intruders reportedly gained access to the company's internal systems by exploiting a vulnerability in Oracle PeopleSoft software. They managed to leverage an employee's credentials to penetrate the network, allowing them to remain undetected while gathering a vast array of corporate and personal data.
Evidence of the theft has surfaced in the form of data samples that include a comprehensive list of employee details. Beyond Social Security numbers, the leaked snippets reveal full names, contact information, job titles, and specific salary figures. The data also encompasses hiring dates and birthdays, providing a complete profile of the individuals working across the company's extensive portfolio of properties.
The extortionists have issued a formal ultimatum to the resort chain, setting a deadline for the company to initiate contact and negotiate. The starting price for the return or destruction of the stolen files has been set at 22.34 Bitcoin, which is valued at roughly 1.5 million dollars. Failure to meet these demands could result in the public release of the database and the implementation of additional technical problems for the firm.
Wynn Resorts, which operates a significant global footprint including five major resorts and hundreds of retail and dining outlets, has not yet provided an official statement regarding the incident. The situation remains developing as the deadline approaches and the company evaluates the scope of the potential compromise.
Source: ShinyHunters Demands $1.5M To Stop Vegas Casino Data Leak