A class action lawsuit has been filed in the United States District Court for the District of Nevada against Wynn Resorts Limited, alleging the company failed to protect customer information in a data breach that was claimed by the cybercrime group ShinyHunters. The suit was brought on behalf of individuals whose data was included in the incident and seeks damages for alleged privacy harms.
The complaint asserts that ShinyHunters published personal data, including names, email addresses, and phone numbers, after claiming to obtain the information from Wynn in 2025. Plaintiffs say the breach has exposed them to a risk of identity theft, phishing, and other forms of fraud. The suit alleges that Wynn failed to implement adequate data security measures to prevent unauthorized access and did not notify affected individuals promptly.
Wynn Resorts operates hotels and casinos in the United States and abroad. The company previously confirmed that it experienced a cybersecurity incident and has stated it was investigating the breach with the assistance of external security specialists. Wynn did not publicly disclose the total number of affected customers at the time of the incident.
The class action complaint includes claims under state and federal privacy laws. Plaintiffs seek compensation for financial losses and statutory damages, and they accuse Wynn of failing to safeguard sensitive information as required by law. The filing also alleges that the company’s response to the breach was insufficient to mitigate the potential harm faced by individuals whose data was exposed.
ShinyHunters has posted samples of the allegedly stolen data on public forums but has not provided full details of the dataset. Independent verification of the authenticity and scope of the information shared online had not been completed at the time the lawsuit was filed. Plaintiffs say that the potential for misuse of the published information remains a continuing concern.
Legal representatives for the class have argued that Wynn’s cybersecurity practices lag behind industry standards and that the breach underscores a need for stronger protections for consumer data held by large organisations. The lawsuit will proceed through the federal court system as discovery and preliminary motions develop.
Wynn Resorts has not yet filed a public response to the lawsuit’s allegations. The company’s ongoing investigation into the security incident and its efforts to notify and support potentially affected customers were not detailed in the court filing. The progress of the litigation and any changes to Wynn’s data security policies will be reported as the case moves forward.