Marina Bay Sands, a Singapore based luxury hotel and casino known for its unique architecture, has disclosed a data breach impacting the personal data of 665,000 non-casino loyalty-program members.
The breach comes on the heels of two high-profile ransomware hits on other resort-casinos: MGM Resorts and Caesar’s Entertainment. The latter ended up paying $15 million in ransom to regain control of its infrastructure.
The data exposed for members of the Sands LifeStyle loyalty program includes (PII) such as names, email addresses, phone numbers, countries of residence, as well as membership number and tier.
As per the breach notice, We will be reaching out to loyalty program members and sincerely apologize for the inconvenience caused by this incident. We have reported it to the relevant authorities in Singapore and other countries where applicable and are working with them in their inquiries into the issue.
Marina Bay Sand is owned by the US-based Las Vegas Sands Corporation. The company has reported the incident to Singaporean authorities and other countries where applicable, and has sent out emails to affected and non-affected customers, advising them to stay vigilant for suspicious activity on their accounts and phishing attempts.
Marina Bay Sands also says that they’ve called in a leading external cybersecurity firm to help with the investigation and have taken action to strengthen their systems and protect data.
No other technical details are available at this time.