⚡︎ OVER 3,000 OFFERS CLAIMED! ⚡︎

The OYO Hotel & Casino Las Vegas (formerly Hooters Hotel & Casino) suffered a significant cyberattack in January 2025, according to court filings first reported by Crain’s New York Business on October 14, 2025. The resulting data breach reportedly compromised the personal information of 4,700 casino and hotel guests and employees.

The OYO Hotel & Casino in Las Vegas experienced a major cyberattack in January 2025, according to court filings reported last week. (Images: Shutterstock)

The cyber attack surfaced in a legal dispute between Highgate Hotels, a prominent hotel management firm, and OYO Hotels, which owns properties in Las Vegas and New York, among many other cities. Highgate filed suit contesting its abrupt termination from the OYO Times Square hotel, arguing that its August 1, 2025 dismissal violated New York Labor Law Section 860-a, which requires 90 days’ notice for certain mass layoffs.

OYO defended its action by citing “seriously deficient” IT practices at Highgate, as demonstrated by a Las Vegas data breach that went unreported by mainstream news outlets until the legal filings surfaced. (OYO also fired Highgate as its Las Vegas property manager.)

However, OYO’s termination of Highgate came six weeks before the breach’s official discovery date. As recorded by the state of Maine attorney general’s office, it wasn’t notified of the incident until September 18, 2025.

Crain’s characterized this timeline discrepancy as “unexplained,” suggesting that OYO may have chosen to keep the incident under wraps for eight months.

As determined by Casino.org, BreachSense.com, a dark web monitoring service, published this report of the incident on January 14, 2025, fingering LockBit 3.0, a notorious ransomware group that it claimed leaked the compromised OYO Las Vegas data on its dark web portal.

Further details published on August 15, 2025 by another cyber monitoring site, Brinztech.com, claimed that 30 gigabytes of sensitive data was stolen and exposed in the incident. This reportedly included:

  • Personal and financial information of hotel and casino patrons
  • Internal financial and operational records
  • Human resources files containing sensitive employee data
  • Proprietary documentation related to casino gaming systems and procedures

OYO did not immediately return Casino.org‘s request for a response.

The post Another Las Vegas Casino Suffered Major Cyberattack — Back in January appeared first on Casino.org.

Leave a Reply

Your email address will not be published. Required fields are marked *

Responsible Gaming

Gambling can turn into an addiction and that’s why you should always make use of the responsible gambling tools made available to you by online operators to help you stay in control of the time and expenditure you invest in online gaming. By law, online operators licensed by the Gambling Commission of Great Britain must provide you with information about responsible gambling and it is their responsibility to create a legal, fair and reliable environment, where players can enjoy the thrill of an online casino. The Gambling Commission of Great Britain licenses and regulates businesses that offer gambling to persons in Great Britain. Our mission is to provide you with only the best online slots experience and that means only reviewing and recommending sites that are licensed to operate by the Gambling Commission.