Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Marina Bay Sands

Marina Bay Sands Vendor Cyber Rating & Cyber Score

marinabaysands.com

Marina Bay Sands has stood as an architectural marvel and the crown jewel in Singapore’s skyline. Home to the world's most spectacular rooftop infinity pool and approximately 1,850 rooms and suites, the integrated resort offers exceptional dining, retail, and entertainment choices, complete with a year-round calendar of signature events and festivals. As one of the largest players in hospitality, Marina Bay Sands is dedicated to being a good corporate citizen to serve its people, communities and environment. It drives social impact through its community engagement programme, Sands Cares, and leads environmental stewardship through its global sustainability programme, Sands ECO360. The integrated resort has been recognised locally and


MBS A.I CyberSecurity Scoring

MBS
Company Information
Website:https://http://www.marinabaysands.com
Employees number:6,403
Number of followers:179,140
NAICS:7211
Industry Type:Hospitality
Homepage:marinabaysands.com
MBS Risk Score (AI oriented)
Between 650 and 699
logo
MBSHospitality
Updated:
05/04/2026
655/1000
Weak
B
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
MBS Global Score (TPRM)
xxxx
logo
MBSHospitality
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

MBS
MBSWeak
Current Score
655B (WEAK)
01000
3 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
663Before Incident
JUNE 2026
661Before Incident
MAY 2026
658Before Incident
APRIL 2026
655Before Incident
MARCH 2026
655Before Incident
FEBRUARY 2026
653Before Incident
JANUARY 2026
650Before Incident
DECEMBER 2025
648Before Incident
NOVEMBER 2025
645Before Incident
OCTOBER 2025
643Before Incident
SEPTEMBER 2025
640Before Incident
AUGUST 2025
638Before Incident
NOVEMBER 2023
641Before Incident
Breach
01 Nov 2023MBS
Marina Bay Sands

Data Breach at Marina Bay Sands

566After Incident
CRITICAL-75
MAR1157121123
A data breach that affected 665,000 clients was revealed by Singapore's renowned integrated resort, Marina Bay Sands. Some of the customer's loyalty programme membership data was discovered to have been accessed by an unauthorised third party. The company's inquiry has not revealed any proof that an unauthorised third party has exploited the data to damage clients. The business has already reported the occurrence to the appropriate authorities in Singapore and, if necessary, other nations, and will contact the affected customers.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Loyalty programme membership data
DATA BREACH
Type Of Data Compromised: Loyalty programme membership data
MARCH 2023
724Before Incident
Breach
01 Mar 2023MBS
Marina Bay Sands Pte Ltd

Marina Bay Sands Data Breach (2023)

619After Incident
CRITICAL-105
MAR0932709102825
Marina Bay Sands, a Singapore-based casino resort and subsidiary of Las Vegas Sands Corp, suffered a data breach in March 2023 during a large-scale software migration. Due to a technical identifier omission in a webpage, security policies were improperly configured, allowing malicious actors to illegally access and exfiltrate the personal data of 665,495 patrons, including names and contact details. The breach went undetected for six months until October 2023, when the data was discovered for sale on the dark web.The Singapore Personal Data Protection Commission (PDPC) imposed a SGD 315,000 (USD 243,200) fine for failing to implement reasonable security measures, citing negligence in migration processes—such as relying on a single employee without verification checks. While Marina Bay Sands admitted liability and reactivated security measures immediately upon discovery, the breach exposed over half a million customers' data, severely undermining trust. The incident highlights critical gaps in enterprise-level data protection during high-risk IT operations.
INCIDENT DETAILS -
TYPE
data breachunauthorized accessdata exfiltration
MOTIVATION
financial gain (data sold on dark web)opportunistic
IMPACT
Financial Loss: SGD315,000 (US$243,200) regulatory fineloyalty programme membership databasewebpage with omitted security identifierBrand Reputation Impact: High (personal data of 665,495 patrons exposed)Legal Liabilities: Fined SGD315,000 under Singapore’s Personal Data Protection ActIdentity Theft Risk: Moderate (names and contact details exposed)
DATA BREACH
personal dataloyalty programme membership dataNumber Of Records Exposed: 665,495Sensitivity Of Data: Moderate (names, contact details)namescontact details
JUNE 2021
793Before Incident
Breach
16 Jun 2021MBS
Marina Bay Sands (MBS)

Marina Bay Sands Data Breach (October 2023)

699After Incident
CRITICAL-94
MAR3632436103025
Marina Bay Sands (MBS) in Singapore was fined S$315,000 under the Personal Data Protection Act (PDPA) after a cybersecurity breach in October 2023 exposed the personal data of over 665,000 non-casino rewards programme members. The compromised data—including names, telephone numbers, countries of residence, membership numbers, and rewards programme tiers—was later found for sale on the dark web, increasing risks of phishing scams and identity theft.The breach occurred during a software migration, where MBS entrusted the process to a single employee without implementing second-layer security checks. This negligence allowed an unauthorised third party to access and exfiltrate the data illegally. Singapore’s Personal Data Protection Commission (PDPC) criticised MBS for failing to adopt adequate security measures, despite being a large enterprise with significant resources. The PDPC ruled that MBS ignored clear risks associated with the migration, violating the Protection Obligation under PDPA. The penalty was calculated under the 2021 Amendment Bill, which permits fines up to 10% of annual turnover for organisations with revenues exceeding S$10 million.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Financial Gain (Data Sold on Dark Web)
IMPACT
NameTelephone NumberCountry of ResidenceMembership NumberRewards Programme TierRewards Programme DatabaseBrand Reputation Impact: High (Data Sold on Dark Web, Risk of Phishing/Identity Theft)Legal Liabilities: Fined S$315,000 under PDPAIdentity Theft Risk: High
DATA BREACH
Personal Identifiable Information (PII)Membership DataNumber Of Records Exposed: 665,000+Sensitivity Of Data: Moderate to High (Identity Theft Risk)

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for MBS ?
?
What was MBS's A.I Rankiteo Cyber Score in June 2026 ?
?
What was MBS's A.I Rankiteo Cyber Score in May 2026 ?
?
What was MBS's A.I Rankiteo Cyber Score in April 2026 ?
?
What was MBS's A.I Rankiteo Cyber Score in March 2026 ?
?
What was MBS's A.I Rankiteo Cyber Score in February 2026 ?
?
What was MBS's A.I Rankiteo Cyber Score in January 2026 ?
?
What was MBS's A.I Rankiteo Cyber Score in December 2025 ?
?
What was MBS's A.I Rankiteo Cyber Score in November 2025 ?
?
What was MBS's A.I Rankiteo Cyber Score in October 2025 ?
?
What was MBS's A.I Rankiteo Cyber Score in September 2025 ?
?
What was MBS's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on MBS's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with MBS ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view MBS's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?