Connect with us

Hi, what are you looking for?


Data Breaches

Marina Bay Sands Discloses Data Breach Impacting 665k Customers

Singapore’s Marina Bay Sands luxury resort has disclosed a data breach impacting the information of 665,000 customers. 

Singapore’s Marina Bay Sands luxury resort revealed on Tuesday that 665,000 of its customers are impacted by a recent data breach.

The incident affects Marina Bay Sands’ shopping loyalty program members. There is no indication to date that the Sands Rewards Club casino rewards program was impacted as well.

The resort, which is owned by US casino and resort giant Las Vegas Sands, discovered on October 20 that an unauthorized third-party had gained access to shopping membership program data on October 19 and 20.

The attacker gained access to information such as name, email address, phone number, country of residence, and membership details. The company said it had found no evidence that the exposed data was misused to “cause harm to customers”.

It’s worth pointing out that while passwords and financial information do not appear to have been compromised, the type of data that was exposed in this incident can be highly useful for targeted phishing attacks. 

“After learning of the issue, we quickly launched an investigation, have been working with a leading external cybersecurity firm, and have taken action to further strengthen our systems and protect data,” Marina Bay Sands said in a data security notice posted on its website.

“We have reported it to the relevant authorities in Singapore and other countries where applicable and are working with them in their inquiries into the issue,” it added.

Marina Bay Sands has not shared any additional details on the attack and it’s unclear if the data breach is the result of a ransomware attack, in which cybercriminals often steal data in an effort to pressure the victim into paying a ransom.

Advertisement. Scroll to continue reading.

No major ransomware group appears to have taken credit for the Marina Bay Sands attack at the time of writing.

This incident comes just weeks after hospitality and entertainment giant MGM Resorts disclosed a highly disruptive ransomware attack that will cost the company more than $110 million.

Related: Motel One Discloses Ransomware Attack Impacting Customer Data

Related: Caesars Confirms Ransomware Hack, Stolen Loyalty Program Database

Related: Two Vegas Casinos Fell Victim to Cyberattacks, Shattering the Image of Impenetrable Casino Security

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join us as we delve into the transformative potential of AI, predictive ChatGPT-like tools and automation to detect and defend against cyberattacks.


As cybersecurity breaches and incidents escalate, the cyber insurance ecosystem is undergoing rapid and transformational change.


Expert Insights

Related Content

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

Data Breaches

A group of hackers has leaked Atlassian employee records and floorplans, information that was obtained from third-party workplace platform Envoy.

Data Breaches

KFC and Taco Bell parent company Yum Brands says personal information was compromised in a January 2023 ransomware attack.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Data Breaches

AT&T is notifying millions of wireless customers that their CPNI was compromised in a data breach at a third-party vendor.


Instant Checkmate and TruthFinder have disclosed data breaches affecting a total of more than 20 million users.