WYNN Resorts says more than 21,000 individuals were affected by the data breach, a figure later refined in a data breach notification filed with the Maine Attorney General’s Office, which states 21,775 employees were impacted. The incident was linked to hackers associated with the ShinyHunters group, which claimed to have stolen more than 800,000 records containing personally identifiable information, including SSNs.
The attack occurred in October 2025 and targeted HR systems as part of a wider campaign that affected over 100 organisations. The hackers reportedly sought a ransom of more than 22 bitcoin (roughly $1.5 million), and the notification notes that “the threat actor has stated that all data has been deleted,” suggesting a ransom payment may have been involved. While ShinyHunters publicly claimed responsibility, researchers have attributed the operation to a merged group including Scattered Lapsus$ Hunters. Wynn indicated in its notification that the incident has likely prompted the payment of a ransom to avoid a data leak.