Wynn Resorts A.I CyberSecurity Scoring
Wynn Resorts
Company Information
Website:http://wynnresorts.com/
Employees number:6,847
Number of followers:21,446
NAICS:7211
Industry Type:Hospitality
Homepage:wynnresorts.com
Wynn Resorts Risk Score (AI oriented)
Between 0 and 549
Wynn ResortsHospitality
Updated:
18/05/2026
18/05/2026
379/1000
Critical
C
Wynn Resorts Global Score (TPRM)
xxxx
Wynn ResortsHospitality
Score locked

Wynn ResortsCritical
Current Score
379C (CRITICAL)
01000
9 incidents
-60 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
340
JUNE 2026
394
MAY 2026
381
Breach
26 May 2026 • Wynn Resorts
DentaQuest: DentaQuestData Breach?
ShinyHunters Claims Responsibility for Alleged DentaQuest Data Breach
329
CRITICAL-52
DEN1779855877
ShinyHunters Claims Responsibility for Alleged DentaQuest Data Breach
The cybercriminal group ShinyHunters has claimed responsibility for a suspected data breach targeting DentaQuest, a major U.S. dental and vision insurance provider. While neither DentaQuest nor its parent company, Sun Life U.S. Dental, has officially confirmed the incident, ShinyHunters has threatened to release stolen data on May 27, 2026, though specifics about the compromised information remain undisclosed.
Legal teams are investigating the breach to determine whether a class action lawsuit can be filed on behalf of affected individuals, including current and former DentaQuest subscribers. Potential claims could cover damages such as loss of privacy, time spent mitigating the breach, and out-of-pocket costs. Attorneys are seeking input from those who may have been impacted to assess the viability of legal action.
ShinyHunters, known for targeting high-profile organizations, has been linked to other breaches in 2026, though details of those incidents remain limited. The group’s involvement in the DentaQuest case underscores ongoing risks in the healthcare sector, where sensitive personal and insurance data remains a prime target for cybercriminals. Further updates are expected as the investigation progresses.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
APRIL 2026
496
Breach
08 Apr 2026 • Wynn Resorts
Wynn Resorts and 7-Eleven: 7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand
7-Eleven Data Breach by ShinyHunters
377
CRITICAL-119
WYN7-E1779114946
7-Eleven Confirms Data Breach After ShinyHunters Claims Theft of 600K Records
7-Eleven, the world’s largest convenience store chain, has confirmed a data breach following claims by the ShinyHunters hacker group that it stole over 600,000 Salesforce records containing personal and corporate data. The intrusion was detected on April 8, targeting systems used to store franchisee documents.
In a notification filed with the Maine Attorney General’s Office, 7-Eleven acknowledged that unspecified personal information provided during franchise applications was compromised. While the company did not disclose the total number of affected individuals, it reported that only two Maine residents were impacted, suggesting a potentially limited scope of exposure.
ShinyHunters publicly listed 7-Eleven on its leak site on April 17, demanding a ransom by April 21 before later offering the stolen data for sale at $250,000 on a hacker forum. The group has been actively targeting Salesforce instances of major organizations since mid-2025, exploiting phishing attacks, third-party integrations, or misconfigurations rather than vulnerabilities in Salesforce’s core systems.
This breach follows a pattern of recent ShinyHunters attacks, including incidents at Instructure, Vimeo, Wynn Resorts, Vercel, and Medtronic. The group’s tactics highlight ongoing risks to enterprises relying on cloud-based platforms for sensitive data storage.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
APRIL 2026
490
Breach
01 Apr 2026 • Wynn Resorts
Goldman Sachs, McDonald’s, Jones Day and General Motors: Jones Day shares client data breach affecting 10 firms
Jones Day Hit by Phishing Attack, Client Data Accessed in Breach Claimed by Cybercriminal Group
438
CRITICAL-52
JONGENMCDGOL1775507547
Jones Day Hit by Phishing Attack, Client Data Accessed in Breach Claimed by Cybercriminal Group
Global law firm Jones Day confirmed a phishing attack in which hackers accessed files belonging to 10 clients, a breach later claimed by the cybercriminal group Silent. The incident, disclosed on Monday, involved unauthorized access to a limited set of dated client documents, according to a statement from spokesperson Dave Petrou. All affected clients have since been notified, though their identities remain undisclosed.
Silent, a known extortion-focused threat group, listed Jones Day as a victim on its dark web leak site, taking credit for the attack. The firm, which has previously faced cybersecurity incidents including a 2021 breach with undisclosed details represents high-profile clients such as Goldman Sachs, McDonald’s, and General Motors.
No further information on the scope of the compromised data or the timeline of the attack has been released. The incident underscores the persistent targeting of legal firms by cybercriminals seeking sensitive corporate information.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
MARCH 2026
543
Breach
11 Mar 2026 • Wynn Resorts
Wynn Resorts and Telus: Telus Investigating Major Cybersecurity Breach After Hackers Claim Massive Data Theft
Telus Cybersecurity Breach Investigation
491
CRITICAL-52
WYNTEL1773347843
Telus Investigates Cybersecurity Breach as ShinyHunters Claims Massive Data Theft
Canadian telecommunications provider Telus is probing a cybersecurity incident after the hacking group ShinyHunters alleged it stole up to 700 terabytes of data from the company’s systems. The Vancouver-based firm confirmed on Thursday that it detected unauthorized access to certain internal systems but stated that business operations and customer services remain unaffected.
Telus has engaged digital forensics experts and is collaborating with law enforcement to assess the breach’s scope. While the company has not confirmed the volume or nature of compromised data, samples shared by ShinyHunters with Reuters reportedly include personally identifiable information, call records, FBI background check details, and software source code linked to multiple corporate divisions. Reuters has not independently verified the data’s authenticity.
ShinyHunters, a group with a history of high-profile attacks, has previously targeted organizations like Dutch telecom Odido, PornHub, and Wynn Resorts. The group recently claimed responsibility for a breach exposing over six million Odido customer accounts.
Telus continues its investigation to determine how the intrusion occurred and whether sensitive customer or partner data was accessed. The company has begun notifying affected individuals where necessary.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
FEBRUARY 2026
563
Cyber Attack
23 Feb 2026 • Wynn Resorts
Caesars Entertainment, Oracle, MGM Resorts and Wynn Resorts: Top Las Vegas hotel is the latest ShinyHunters ransomware victim - hackers demand $1.5 million to not leak data
ShinyHunters Claims Breach of Wynn Resorts, Leaks 800K Employee Records
541
CRITICAL-22
MGMCAEORAWYN1771962331
ShinyHunters Claims Breach of Wynn Resorts, Leaks 800K Employee Records
The ransomware group ShinyHunters has allegedly breached Wynn Resorts, claiming to have stolen over 800,000 employee records and demanding 23.34 Bitcoin (≈$1.55 million) to delete the data. The group set a deadline of February 23, 2026, for payment, warning that failure to comply would result in the data being leaked on the dark web.
A sample of the stolen data, analyzed by The Register, includes full names, emails, phone numbers, job positions, salaries, start dates, birth dates, and other personal details enough to facilitate phishing attacks, credential theft, and financial fraud.
According to a group member, the breach occurred in September 2025 via an Oracle PeopleSoft vulnerability, exploiting compromised employee credentials. Wynn Resorts has not yet responded to the claims or media inquiries.
ShinyHunters has been highly active in recent months, targeting organizations through vishing scams and exploiting identity management systems like Okta. This incident follows high-profile attacks on Caesars Entertainment and MGM Resorts in September 2023, reinforcing concerns over cybersecurity vulnerabilities in the hospitality and gaming sectors.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
JANUARY 2026
560
DECEMBER 2025
556
NOVEMBER 2025
551
OCTOBER 2025
607
Breach
10 Oct 2025 • Wynn Resorts
Wynn Resorts: Wynn Resorts data breach impacts over 21,000 employees following HR system attack
Wynn Resorts Suffers Data Breach Impacting Over 21,000 Employees
544
HIGH-63
WYN1775566419
Wynn Resorts Suffers Data Breach Impacting Over 21,000 Employees
Luxury hospitality and gaming operator Wynn Resorts has reported a data breach compromising the personal information of 21,775 employees after a cyberattack on its internal systems in October 2025. The incident targeted the company’s HR systems, exposing sensitive employee data.
The breach was disclosed following an investigation into the attack, though specific details about the threat actors or the exact nature of the compromised data remain undisclosed. Wynn Resorts, headquartered in Las Vegas, Nevada, operates high-profile resorts and casinos globally, making it a notable target for cybercriminals.
The incident underscores the growing risk of cyber threats to large enterprises, particularly those handling extensive employee and customer data. No further details on remediation efforts or potential regulatory implications have been released.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
SEPTEMBER 2025
606
AUGUST 2025
603
FEBRUARY 2025
649
Breach
20 Feb 2025 • Wynn Resorts
Wynn Resorts: Wynn Fires Back at Lawsuit Tied to Data Breach
Wynn Resorts Disputes Class-Action Lawsuit Over Alleged Data Breach
579
HIGH-70
WYN1771977320
Wynn Resorts Disputes Class-Action Lawsuit Over Alleged Data Breach
Wynn Resorts has pushed back against a class-action lawsuit filed in Nevada last weekend, which claims a cyberattack exposed the personal data of over 800,000 customers. In a statement to Gambling Insider, the company clarified that the breach involved employee data only, not customer records.
According to Michael Weaver, Wynn’s chief communications and brand officer, an unidentified third party accessed certain employee information. The company activated its incident response protocols and engaged external cybersecurity experts to investigate. Weaver confirmed that the perpetrator later identified in the lawsuit as the cybercriminal group ShinyHunters claimed to have deleted the stolen data, though Wynn has found no evidence of publication or misuse. The company did not disclose whether a ransom was paid.
Despite the breach, Wynn stated that guest operations, physical properties, and customer experiences remained unaffected. The company is offering complimentary credit monitoring and identity protection to affected employees while working with third-party IT advisors to bolster security.
The lawsuit, led by plaintiff Richard Reed, alleges Wynn’s mishandling of customer data enabled the breach, citing a February 20 blog post by ShinyHunters that claimed the theft of 800,000 records, including Social Security numbers. Wynn’s denial of customer impact raises questions about the lawsuit’s validity. Both the plaintiff and class-action attorneys have yet to respond to requests for comment.
The investigation remains ongoing.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
JANUARY 2024
682
Breach
01 Jan 2024 • Wynn Resorts
TriZetto Provider Solutions, Cognizant and Wynn Resorts: Wynn Resorts confirms breach, believes data deletion claims
TriZetto Provider Solutions Breach Exposes Data of Over 3.4 Million Individuals
609
CRITICAL-73
TRIWYNCOG1772159592
TriZetto Provider Solutions Breach Exposes Data of Over 3.4 Million Individuals
In a major cybersecurity incident, TriZetto Provider Solutions, a health insurance technology subsidiary of Cognizant, reported that the sensitive data of 3.4 million individuals was stolen in a 2024 breach. The attack, attributed to the ShinyHunters hacking group, compromised employee data and disrupted IT systems, including billing and customer delivery operations.
While Wynn Resorts another victim of ShinyHunters acknowledged a breach and offered credit monitoring services to affected employees, the group later claimed to have deleted the stolen data, a move experts suggest may indicate a ransom payment. However, cybersecurity analysts, including Dray Agha of Huntress, caution that threat actors often retain or sell stolen data despite such assurances, as there is no reliable way to verify deletion claims.
The breach highlights the growing risk of extortion-based cyberattacks, where hackers demand payment in exchange for purported data removal though victims remain vulnerable to future misuse. The incident underscores the challenges organizations face in confirming the true scope of data compromise and the effectiveness of attacker promises.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
JANUARY 2022
803
Ransomware
01 Jan 2022 • Wynn Resorts
Caesars Entertainment, Eureka Casino and Wynn Resorts: Eureka Casino Settles Data Breach Class-Action Lawsuit for $1M
Eureka Casino Data Breach Settlement
621
CRITICAL-182
WYNCAEEUR1772706500
Eureka Casino Settles $1M Class-Action Lawsuit Over 2022 Data Breach
The Eureka Casino in Mesquite, Nevada, has agreed to a $1 million settlement in a class-action lawsuit stemming from a 2022 cyberattack that exposed the personal data of 229,000 customers and employees. The breach, which occurred four years ago, compromised sensitive information, including full names, Social Security numbers, and driver’s license details.
Plaintiffs alleged the casino failed to notify victims promptly, delaying alerts by nearly a month a lapse that heightened risks of identity theft and financial fraud. Under the settlement, affected individuals may claim up to $5,000 each, provided they can demonstrate direct financial harm. Any unclaimed funds will be distributed proportionally among claimants, with submissions due by May 11, 2026.
The incident underscores the growing threat to the gaming industry, with other major casinos like Wynn Resorts and Caesars Entertainment also facing recent breaches. In 2023, Caesars reportedly paid $30 million to hackers to prevent the release of stolen data, highlighting the sector’s vulnerability to cyber extortion.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Wynn Resorts ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in June 2026 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in May 2026 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in April 2026 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in March 2026 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in February 2026 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in January 2026 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in December 2025 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in November 2025 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in October 2025 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in September 2025 ??
What was Wynn Resorts's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Wynn Resorts's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Wynn Resorts ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Wynn Resorts's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?