Taos Mountain Casino Hit by DragonForce Ransomware Attack, Exposing Sensitive Customer Data
On March 26, 2026, Taos Mountain Casino, a tribally owned casino in Taos, New Mexico, suffered a ransomware attack after an unauthorized actor accessed its computer systems. The casino detected suspicious activity on March 28 and immediately disconnected its network, enlisting a third-party cybersecurity firm to investigate.
The DragonForce ransomware group later claimed responsibility, announcing on the dark web on June 1, 2026, that they had exfiltrated 38.63 GB of data from the casino. The exposed information included names, addresses, and Social Security numbers of affected individuals.
Taos Mountain Casino began notifying impacted customers on June 9, 2026. Legal firms specializing in data breach cases, including Shamis & Gentile P.A., are now investigating potential compensation claims for those affected. The incident highlights the growing threat of ransomware attacks targeting organizations with sensitive personal data.
Source: https://www.claimdepot.com/investigations/taos-mountain-casino-data-breach-2026
Taos Mountain Casino cybersecurity rating report: https://www.rankiteo.com/company/taos-mountain-casino
"id": "TAO1781188596",
"linkid": "taos-mountain-casino",
"type": "Ransomware",
"date": "3/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Gaming/Hospitality',
'location': 'Taos, New Mexico',
'name': 'Taos Mountain Casino',
'type': 'Casino'}],
'customer_advisories': 'Notifications sent starting June 9, 2026',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Addresses',
'Social Security numbers']},
'date_detected': '2026-03-28',
'date_publicly_disclosed': '2026-06-01',
'description': 'Taos Mountain Casino, a tribally owned casino in Taos, New '
'Mexico, suffered a ransomware attack after an unauthorized '
'actor accessed its computer systems. The DragonForce '
'ransomware group claimed responsibility and exfiltrated 38.63 '
'GB of data, including names, addresses, and Social Security '
'numbers of affected individuals.',
'impact': {'data_compromised': '38.63 GB of data',
'identity_theft_risk': 'High'},
'investigation_status': 'Ongoing',
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'DragonForce'},
'references': [{'date_accessed': '2026-06-01',
'source': 'Dark web announcement'}],
'regulatory_compliance': {'legal_actions': 'Potential compensation claims '
'(Shamis & Gentile P.A.)'},
'response': {'communication_strategy': 'Customer notifications starting June '
'9, 2026',
'containment_measures': 'Disconnected network',
'incident_response_plan_activated': 'Yes',
'third_party_assistance': 'Yes (cybersecurity firm)'},
'threat_actor': 'DragonForce ransomware group',
'title': 'Taos Mountain Casino Hit by DragonForce Ransomware Attack, Exposing '
'Sensitive Customer Data',
'type': 'Ransomware'}