Caesars Leisure is now going through a proposed federal class motion that claims the on line casino and lodge firm failed to guard buyer info throughout a second cyber incident, coming after its extensively reported 2023 breach.
The case was filed in Nevada on behalf of plaintiff Mark Huddleston, a Texas resident who says he has belonged to Caesars Rewards since 2007 and has usually gambled with Caesars each on-line and in individual. He says Caesars gathered private info by way of these transactions and loyalty program exercise over a few years.
Huddleston is searching for to carry Caesars chargeable for accidents allegedly brought on by “Caesars’s insufficient knowledge safety,” which the criticism says resulted in personal info being uncovered to unauthorized third events. The submitting refers back to the incident because the “Information Breach.”
In accordance with the lawsuit, reviewed by ReadWrite, Caesars had already skilled an information breach in September 2023. It alleges that regardless of that earlier occasion, the corporate “did not implement the requisite safety measures, and failed to stop one other Information Breach from occurring in early 2026.”
The criticism says buyer knowledge was once more taken by cybercriminals, leaving proposed class members uncovered to “an elevated and vital danger of fraud and identification theft.”
Caesars alleged knowledge breach places privateness guarantees underneath scrutiny
The swimsuit says info affected within the 2026 incident included no less than buyer contact particulars and dates of beginning. It provides that primarily based on what was uncovered in 2023, “it may be anticipated that much more delicate info, together with Social Safety numbers and driver’s license numbers had been additionally stolen in 2026.”
The criticism additionally factors to Caesars’ privateness coverage, which states: “We keep bodily, digital and organizational safeguards that moderately and appropriately defend in opposition to the loss, misuse and alteration of the data underneath our management.”
Huddleston argues these guarantees had been deceptive. The lawsuit says Caesars “didn’t ‘keep bodily, digital and organizational safeguards that moderately and appropriately defend in opposition to the loss, misuse and alteration of the data underneath our management.’”
It additional claims prospects nonetheless face long-term penalties as a result of their info might stay in circulation. The submitting says class members now face “a gift and persevering with danger of fraud and identification theft for years to come back.”
The proposed nationwide class would come with “All individuals in the USA whose Personal Info was compromised within the Caesars’s Information Breach found in March, 2026.”
Claims within the case embody negligence, breach of implied contract, unjust enrichment, negligence per se, and alleged violations of the Nevada Shopper Fraud Act. The swimsuit seeks damages, credit score monitoring, identification theft safety providers, and court-ordered safety enhancements.The Caesars case arrives as different playing operators face related scrutiny. ReadWrite lately reported the litigation tied to alleged Wynn Resorts knowledge breaches, together with a separate federal class motion. We additionally discovered that German playing firm Merkur was hit by a serious cyberattack.
ReadWrite has reached out to Caesars Leisure for remark.