Lawsuit filed against Wynn Resorts following alleged data breach

A federal class action lawsuit has been filed against Wynn Resorts after hacking group ShinyHunters allegedly stole over 800,000 documents containing customer records such as names and social security numbers. 

Plaintiff Richard Reed filed the lawsuit in the US District Court of Nevada on February 21 and is looking to represent any Wynn Resorts customers in the US whose data was allegedly compromised. 

“On February 20, 2026, the notorious hacking group ShinyHunters announced it had stolen over 800,000 records from Defendant containing the personal information of Plaintiff and Class Members,” the lawsuit stated. 

“Defendant failed to adequately protect Plaintiff’s and Class Members’ Private Information—and failed to even encrypt or redact this highly sensitive information.”

As stated in the lawsuit, Wynn Resorts allegedly failed to store the information with encryption, as well as provide the customers affected with a full account of the situation or how it plans to deter a repeat situation. 

The complaint alleges Wynn Resorts failed to provide “the identity of the cybercriminals who perpetrated this Data Breach, the details of the root cause of the Data Breach, the vulnerabilities exploited and the remedial measures undertaken to ensure such a breach does not occur again.”

Reed stated himself and other affected individuals have already begun verifying financial accounts and credit reports for potential stolen identity as a result of the data breach. His lawsuit seeks damages, injunctive relief and changes to Wynn Resorts’ security practices. 

As part of ShinyHunters’ alleged cyberattack, the hackers gave Wynn Resorts a February 23 deadline to pay nearly $1.5m worth of bitcoin or else the group would leak customer information discovered in the breach. 

At the time of writing, Wynn Resorts has yet to respond to the lawsuit or the alleged deadline from ShinyHunters.