MGM Resorts settles lawsuits after millions of customer records stolen in data breaches

Core Viewpoint - MGM Resorts has agreed to a $45 million settlement related to class action lawsuits stemming from two significant data breaches affecting millions of customers [1][4] Group 1: Data Breaches - The 2019 breach involved the theft of millions of customer names, home addresses, phone numbers, and other personal information, confirmed by MGM in 2020 after data was published on a cybercrime forum [2] - The 2023 ransomware attack caused extensive outages across MGM's properties, including the Bellagio, Aria, and Cosmopolitan, and resulted in the theft of personal information such as Social Security and passport numbers, costing the company over $100 million in damages [3] Group 2: Settlement Details - The settlement proposal was reached after both data breaches affected more than 37 million customers, although MGM has not disclosed the exact number of affected individuals [4] - Approximately 30% of the $45 million settlement fund will be allocated to attorney fees, with class action victims potentially receiving up to $75 each based on the type of information stolen [4]