US gaming and on line casino operator Boyd Gaming Company disclosed it suffered a breach after risk actors gained entry to its programs and stole information, together with worker data and information belonging to a restricted variety of different people.
Boyd Gaming is a public US on line casino leisure firm with 28 gaming properties in ten states, together with Nevada, Illinois, Indiana, Iowa, Kansas, Louisiana, Mississippi, Missouri, Ohio, and Pennsylvania, and the administration of a tribal on line casino in northern California. The agency employs over 16,000 individuals and had an annual income of $3.9 billion in 2024.
In a Tuesday night FORM 8-Okay submitting with the SEC, Boyd Gaming disclosed it just lately suffered a cyberattack during which attackers gained entry to its programs.
The corporate states that it labored with exterior cybersecurity consultants to reply to the assault and notified legislation enforcement.
Nonetheless, the risk actors have been capable of steal information from the corporate’s programs, which incorporates details about workers and people.
“The Firm has decided that the unauthorized third celebration eliminated sure information from the Firm’s IT programs, together with details about workers and a restricted variety of different people,” reads the Boyd Gaming 8-Okay submitting.
“The Firm is notifying impacted people and has or will notify its numerous regulators and different governmental businesses as required.”
Boyd Gaming states that the incident has not affected the corporate’s operations and doesn’t anticipate a fabric opposed affect on the corporate’s monetary situation.
The corporate says that it has a cybersecurity insurance coverage coverage, which is predicted to cowl prices related to the incident.
BleepingComputer contacted Boyd Gaming with questions in regards to the assault, however no response was instantly out there.
No ransomware gangs or different risk actors have claimed duty for the assault.
46% of environments had passwords cracked, practically doubling from 25% final 12 months.
Get the Picus Blue Report 2025 now for a complete have a look at extra findings on prevention, detection, and information exfiltration traits.