However, not paying it will also come at a steep price. I should add, as someone who works in the IT disaster recovery field I give kudos to MGM for not paying the ransom. It plans to notify customers affected in the coming weeks. There is no evidence that passwords, payment or bank account information was accessed, Caesars said.Ĭaesars said that so far it hasn’t seen evidence that data accessed in the attack has been published or misused and is offering credit monitoring and identity theft protection to all members of its loyalty program. The company said it discovered that the attacker acquired a copy of data including driver’s license numbers and social security numbers for “a significant number” of members of its loyalty program. The two excerpts below are, at the least, troubling. The one in #74 is to a WSJ article about the fact that Caesars Entertainment paid half of a $30 million $ ransom in the late summer (doesn't specify exact dates - but prior to the MGM attack). On page 8 of the thread, in posts #73 & #74, there are links to news stories. It's very interesting to read through the 'MGM System Issues' thread on the Las Vegas Trip Advisor Forum (here's a link: ).