The company did not specify how the breach occurred or the number of affected patrons. While BetMGM insists its systems were not compromised, the company said it’s working to bolster its online security. “We are taking this matter very seriously and are working to quickly investigate it. The security of our platform and our patrons’ data is top priority for BetMGM. We regret any inconvenience this may cause,” BetMGM CEO Adam Greenblatt said in a statement. BetMGM is working with cybersecurity experts to determine the “nature and scope” of the breach. The company said it is also working with law enforcement. BetMGM is reaching out to affected users and will provide them with free credit monitoring and identity restoration services for two years.
Compromised Personal Information
While BetMGM said the compromised information might differ for each user, the affected data includes names, hashed social security numbers, dates of birth, postal addresses, email addresses, phone numbers, and BetMGM account-related information such as Player ID and screen name. At this time, there is no evidence the incident compromised any account passwords or resulted in the theft of customer funds. It also did not affect BetMGM’s online operations. Still, BetMGM recommends that users reset their passwords. BetMGM has also cautioned its users to be on high alert for any suspicious communication or unauthorized transactions. In its breach notice (currently offline), BetMGM provided customers in the U.S. and Canada with reference guides for getting a free credit report and reporting fraud. The company has also provided toll-free numbers for its users in the U.S. (1-844-850-0077) and Canada (1-844-279-4948) to call for further information.
Targeted Betting Platforms
BetMGM is the latest sports betting company to be targeted by hackers. Last month, popular sportsbook DraftKings announced that cybercriminals breached its customers’ accounts and stole approximately $300,000. In 2020, another betting services platform, Commission Kings, was hit by a cyberattack. The attack knocked its line-up of betting brands offline for four days, including BetOnline, Wild Casino, Sportsbetting.ag. While the BetMGM breach did not expose any passwords or financial information, hackers can use the basic personal information stolen to conduct targeted phishing attacks or identity theft. Our in-depth guides to phishing and identity theft contain information about how you can spot these nefarious schemes and protect your privacy.
