Caesars faces new lawsuit after second alleged data security breach claims
Caesars Entertainment is now facing a proposed federal class action that says the casino and hotel company failed to protect customer information during a second cyber incident, coming after its widely reported 2023 breach.
The case was filed in Nevada on behalf of plaintiff Mark Huddleston, a Texas resident who says he has belonged to Caesars Rewards since 2007 and has regularly gambled with Caesars both online and in person. He says Caesars gathered personal information through those transactions and loyalty program activity over many years.
Huddleston is seeking to hold Caesars responsible for injuries allegedly caused by “Caesars’s inadequate data security,” which the complaint says resulted in private information being exposed to unauthorized third parties. The filing refers to the incident as the “Data Breach.”
According to the lawsuit, reviewed by ReadWrite, Caesars had already experienced a data breach in September 2023. It alleges that despite that earlier event, the company “failed to implement the requisite security measures, and failed to prevent another Data Breach from occurring in early 2026.”
The complaint says customer data was again taken by cybercriminals, leaving proposed class members exposed to “an elevated and significant risk of fraud and identity theft.”
Caesars alleged data breach puts privacy promises under scrutiny
The suit says information affected in the 2026 incident included at least customer contact details and dates of birth. It adds that based on what was exposed in 2023, “it can be expected that even more sensitive information, including Social Security numbers and driver’s license numbers were also stolen in 2026.”
The complaint also points to Caesars’ privacy policy, which states: “We maintain physical, electronic and organizational safeguards that reasonably and appropriately protect against the loss, misuse and alteration of the information under our control.”
Huddleston argues those promises were misleading. The lawsuit says Caesars “did not ‘maintain physical, electronic and organizational safeguards that reasonably and appropriately protect against the loss, misuse and alteration of the information under our control.’”
It further claims customers still face long-term consequences because their information may remain in circulation. The filing says class members now face “a present and continuing risk of fraud and identity theft for years to come.”
The proposed nationwide class would include “All persons in the United States whose Private Information was compromised in the Caesars’s Data Breach discovered in March, 2026.”
Claims in the case include negligence, breach of implied contract, unjust enrichment, negligence per se, and alleged violations of the Nevada Consumer Fraud Act. The suit seeks damages, credit monitoring, identity theft protection services, and court-ordered security improvements.The Caesars case arrives as other gambling operators face similar scrutiny. ReadWrite recently reported the litigation tied to alleged Wynn Resorts data breaches, including a separate federal class action. We also found that German gambling company Merkur was hit by a major cyberattack.
ReadWrite has reached out to Caesars Entertainment for comment.
Featured image: Bernard Spragg via Flickr / CC0 1.0
The post Caesars faces new lawsuit after second alleged data security breach claims appeared first on ReadWrite.