Wynn Resorts takes attacker's word for it that stolen staff data was deleted
The Register
February 25, 2026
AI-Generated Deep Dive Summary
Wynn Resorts has confirmed a cyberattack where employee data was stolen by ShinyHunters, a notorious hacking group. The company is relying on the hackers' claim that the stolen data has been deleted, despite skepticism from cybersecurity experts who note that such assurances often precede extortion demands. Wynn has activated its incident response protocols and provided credit monitoring to employees as a precaution, acknowledging the potential risks even if no immediate misuse has been detected.
Dray Agha of Huntress highlights the inherent risk in trusting cybercriminals' promises, emphasizing that attackers frequently retain or sell stolen data long after claiming deletion. This case aligns with broader trends where cybercrime cartels use such claims to negotiate ransoms. Wynn's decision to offer credit monitoring reflects recognition of the limited security value in an attacker’s assurance.
This incident underscores the challenges businesses face in cybersecurity, particularly the difficulty in verifying attackers' claims and the risks associated with potential data leaks. As cyberattacks grow more sophisticated, companies must remain vigilant and proactive in protecting sensitive information. Wynn's response serves as a reminder of the critical need for robust security measures and preparedness in addressing such threats.
Verticals
tech
Originally published on The Register on 2/25/2026