Eureka Casino Settles $1M Class-Action Lawsuit Over 2022 Data Breach
The Eureka Casino in Mesquite, Nevada, has agreed to a $1 million settlement in a class-action lawsuit stemming from a 2022 cyberattack that exposed the personal data of 229,000 customers and employees. The breach, which occurred four years ago, compromised sensitive information, including full names, Social Security numbers, and driver’s license details.
Plaintiffs alleged the casino failed to notify victims promptly, delaying alerts by nearly a month a lapse that heightened risks of identity theft and financial fraud. Under the settlement, affected individuals may claim up to $5,000 each, provided they can demonstrate direct financial harm. Any unclaimed funds will be distributed proportionally among claimants, with submissions due by May 11, 2026.
The incident underscores the growing threat to the gaming industry, with other major casinos like Wynn Resorts and Caesars Entertainment also facing recent breaches. In 2023, Caesars reportedly paid $30 million to hackers to prevent the release of stolen data, highlighting the sector’s vulnerability to cyber extortion.
Source: https://www.gamblingnews.com/news/eureka-casino-settles-data-breach-class-action-lawsuit-for-1m/
Wynn Resorts cybersecurity rating report: https://www.rankiteo.com/company/wynnresorts
Caesars Entertainment cybersecurity rating report: https://www.rankiteo.com/company/caesars-entertainment-inc
Eureka Casino Resort cybersecurity rating report: https://www.rankiteo.com/company/eureka-casino-hotel
"id": "WYNCAEEUR1772706500",
"linkid": "wynnresorts, caesars-entertainment-inc, eureka-casino-hotel",
"type": "Ransomware",
"date": "1/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': '229,000',
'industry': 'Gaming/Hospitality',
'location': 'Mesquite, Nevada, USA',
'name': 'Eureka Casino',
'type': 'Casino'}],
'customer_advisories': 'Affected individuals may claim up to $5,000 each if '
'they can demonstrate direct financial harm. '
'Submissions due by May 11, 2026.',
'data_breach': {'number_of_records_exposed': '229,000',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Full names',
'Social Security numbers',
'Driver’s license details']},
'date_detected': '2022',
'description': 'The Eureka Casino in Mesquite, Nevada, has agreed to a $1 '
'million settlement in a class-action lawsuit stemming from a '
'2022 cyberattack that exposed the personal data of 229,000 '
'customers and employees. The breach compromised sensitive '
'information, including full names, Social Security numbers, '
'and driver’s license details. Plaintiffs alleged the casino '
'failed to notify victims promptly, delaying alerts by nearly '
'a month.',
'impact': {'brand_reputation_impact': 'Yes',
'data_compromised': 'Personal data of 229,000 individuals',
'financial_loss': '$1,000,000 (settlement)',
'identity_theft_risk': 'Yes',
'legal_liabilities': 'Class-action lawsuit'},
'lessons_learned': 'Importance of timely breach notifications to mitigate '
'identity theft and financial fraud risks.',
'motivation': 'Financial Gain',
'post_incident_analysis': {'corrective_actions': 'Settlement agreement and '
'potential improvements in '
'cybersecurity protocols.',
'root_causes': 'Failure to promptly notify victims '
'and inadequate data protection '
'measures.'},
'recommendations': 'Improve incident response timelines and enhance data '
'protection measures to prevent future breaches.',
'references': [{'source': 'Class-action lawsuit settlement announcement'}],
'regulatory_compliance': {'legal_actions': 'Class-action lawsuit'},
'response': {'communication_strategy': 'Delayed notification (nearly a '
'month)'},
'title': 'Eureka Casino Data Breach Settlement',
'type': 'Data Breach'}