About Boyd Gaming Corporation
Boyd Gaming Corporation is a casino entertainment company that operates casino hotel properties and online gaming services. Recently, the company experienced a data breach that compromised the personal information of certain individuals. The breach involved the unauthorized removal of data from a system used to store sensitive information. Boyd Gaming Corporation promptly initiated an investigation with the help of external cybersecurity experts and has been working closely with federal law enforcement to address the issue.
What Happened
On September 6, 2025, Boyd became aware of a cyber incident that involved the unauthorized removal of information from a system used to store data. Boyd quickly launched an investigation with the support of external cybersecurity experts and in coordination with federal law enforcement. Through the investigation, Boyd determined that the unauthorized activity began on September 5, 2025 and the last observed unauthorized activity occurred on September 7, 2025.
The breach affected 25 individuals, all of whom are Maine residents. The unauthorized access began on September 5, 2025, and was identified by Boyd Gaming Corporation on September 6, 2025.
Next Steps
Affected users should remain vigilant to any signs of identity theft and monitor their accounts for suspicious activity. Boyd Gaming Corporation has taken steps to terminate the unauthorized access and is working with third-party forensic experts to investigate and respond to the incident. Users are encouraged to review any communications from Boyd Gaming Corporation regarding the breach and follow any recommended actions. Additionally, it may be beneficial for affected individuals to update their passwords and enhance their personal security measures.
Identity Theft Protection Services
Boyd Gaming Corporation is offering two years of complimentary identity protection services to impacted individuals through IDX. These services include credit monitoring, dark web monitoring, and identity recovery services. The company has mailed individual notifications to the affected Maine residents, providing them with details on how to access these services. This proactive approach is aimed at helping individuals protect their personal information and mitigate the risks associated with the breach.