Caesars Data Breach Investigation
Lowey Dannenberg is investigating claims for violations of the common law and state consumer protection statutes by Caesars Entertainment, Inc., as a result of a data breach involving highly sensitive Social Security and driver’s license numbers.
What Happened and What Information Was Involved:
Caesars Entertainment, Inc. (“Caesars”) is a global entertainment company with national and international locations featuring hotels and casinos. The Caesars portfolio encompasses 51 domestic properties in 16 states.
Caesars announced on September 14, 2023 that it had recently identified suspicious activity in its information technology network resulting from a social engineering attack on an outsourced IT support vendor used by the company. Caesars conducted an investigation, and on September 7, 2023, determined that the unauthorized actor acquired a copy of, among other data, Caesars’s loyalty program database, which included:
- Driver’s license numbers, and/or
- Social Security numbers for a significant number of members in the database.
The Scattered Spider hacking group has publicly taken credit for the data breach. Scattered Spider, also known as UNC3944, is one of the most disruptive hacking outfits in the United States, according to Google’s Mandiant Intelligence.