As ZDNet reports, the data appeared in a hacker forum last week. Among those affected were also other celebrities, heads of companies, journalists as well as government employees -- as well as many many tourists.
The hotel chain confirmed the attack when ZDNet approached the company. According to MGM Resorts International, the breach occurred this past summer and the customers affected were informed immediately. The company did not comment on the extent of the data leak, which consisted of personal information like full names, phone numbers, e-mail and home addresses, as well as birthdates of the guests.
In Germany, these kinds of data leaks can become a costly problem, especially since the General Data Protection Regulation (GDPR) took effect in mid-2018. That’s because a company is liable for violations of data privacy, if the stolen data is published - even if it doesn’t publish the data itself. And then there are the alienated customers as well as the damage to the company’s reputation. Here, you can find an example of how to deal with such a situation in a good way (in German).