DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Golden Entertainment notification of malware incident

Posted on September 26, 2021 by Dissent

As I commented this week:  protected health information or medical information can be found in so many breaches involving entities that may not sound “medical” to you.  Today, this site is posting two such notifications.  Here’s the second one. 


LAS VEGAS, Sept. 24, 2021 /PRNewswire/ — Golden Entertainment, Inc. (“Golden”) is notifying individuals of an incident that may affect the privacy of some personal information as part of its commitment to privacy. Golden has no evidence of actual or attempted misuse of information as a result of this incident, but this notice provides details about the incident, Golden’s response, and resources available to help protect information.

What Happened? In late January, Golden discovered that certain portions of its network were infected with malware. Golden promptly took steps to secure the network and, with the assistance of computer forensic specialists, conducted an investigation to determine the nature and scope of the event, including any risk to data. The investigation confirmed that an unauthorized actor gained access to a portion of the network and encrypted network files around January 24, 2021. The investigation also determined the unauthorized actor acquired certain documents before the encryption occurred. Given that network locations were accessed without authorization, Golden undertook a lengthy and time-intensive thorough review of the potentially impacted information in order to identify the information that was potentially impacted and to whom it related. This review was completed on or around August 25, 2021, at which time Golden confirmed the individuals whose information was present. Golden then worked to reconcile the results of the review with internal records in furtherance of identifying the individuals to whom the data related and the appropriate contact information for those individuals in order to provide notification to potentially impacted individuals as quickly as possible.

What Information Was Involved? While the impacted information varied by individual, the investigation determined that the information affected included individual name, date of birth, Social Security number, driver’s license or state identification number, financial account information, debit or credit numbers, and medical treatment or diagnosis information. Please note, Golden does not have any evidence of misuse of any information impacted as a result of this incident.

What We Are Doing. Golden takes this incident and the security of personal information very seriously. Upon discovering the activity, Golden conducted a comprehensive investigation of the event to confirm its nature and scope. Further, Golden has security measures in place to protect the data on its systems and continues to assess and update security measures and training to employees to safeguard the privacy and security of information in its care. Golden also notified law enforcement of this event and notified regulatory authorities, as required by law.

On September 24, 2021, Golden Entertainment began mailing written notice to potentially impacted individuals. Golden Entertainment also posted noticed of this incident on its website at: https://www.goldenent.com. As an added precaution, Golden is offering impacted individuals with access to credit monitoring and identity theft protection services through Kroll at no cost as an added precaution.

What You Can Do. Golden encourages individuals to remain vigilant against incidents of identity theft and fraud by reviewing account statements and monitoring free credit reports for suspicious activity and reporting any such activity to law enforcement. Individuals can also enroll to receive the complimentary credit monitoring services offered within the letter. Please also review the information contained in the below Other Steps to Protect Personal Information.

For More Information. Golden Entertainment has set up a dedicated toll-free line at (855) 551-1533, 6:00 am to 3:30 pm Pacific Time Monday through Friday (excluding some U.S. national holidays). Golden also has information related to the event available on its website at https://www.goldenent.com. You may also write to Golden Entertainment at 6595 S. Jones Blvd., Las Vegas, NV 89118.

Source: PR Newswire


Comment: Golden Entertainment does not indicate whether any ransom demand was received. Nor do they mention what threat actors were involved (if they know), or how many people are being notified. If the health information was related to a health plan Golden Entertainment offers employees, this may show up on HHS’s breach tool at some point.

Category: Breach IncidentsBusiness SectorMalwareU.S.

Post navigation

← Council on Aging of Southwestern Ohio notifies clients after employee email account compromsed
Declaration by the High Representative on behalf of the European Union on respect for the EU’s democratic processes →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • New evidence links long-running hacking group to Indian government
  • Zaporizhzhia Cyber ​​Police Exposes Hacker Who Caused Millions in Losses to Victims by Mining Cryptocurrency
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Google: Hackers target Salesforce accounts in data extortion attacks
  • The US Grid Attack Looming on the Horizon
  • US govt login portal could be one cyberattack away from collapse, say auditors
  • Two Men Sentenced to Prison for Aggravated Identity Theft and Computer Hacking Crimes
  • 100,000 UK taxpayer accounts hit in £47m phishing attack on HMRC
  • CISA Alert: Updated Guidance on Play Ransomware
  • Almost one year later, U.S. Dermatology Partners is still not being very transparent about their 2024 breach

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act
  • 23andMe Bankruptcy Judge Ponders Trump Bill’s Injunction Impact
  • Hell No: The ODNI Wants to Make it Easier for the Government to Buy Your Data Without Warrant
  • US State Dept. says silence or anonymity on social media is suspicious

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.