
Old breach, new headache
MGM Resorts is back in the legal spotlight, this time with the Superior Court of Québec set to weigh a proposed settlement in a class action tied to its 2019 confidentiality incident. And because one cyber mess apparently wasn’t enough, the settlement also folds in the 2023 attack that hit MGM’s network later on.
Why investors should still care
This isn’t the kind of headline that sends blackjack chips flying across the table, but it does matter. Every new hearing or settlement milestone keeps the cyber incident saga alive, which means more legal costs, more management distraction, and more reasons for investors to think about operational risk when they model MGM.
The annoying part about “done”
Companies love to say they’ve moved on after a breach. Courts, plaintiffs, and lawyers tend to disagree. A settlement approval hearing is basically the legal version of, “Are we really finished here?” and the answer is often: not quite.
For MGM, that means the market still has to price in the possibility of lingering costs and reputational damage from incidents that happened years ago but refuse to stay in the past.
Big picture: cyber cleanup is rarely one-and-done, and MGM is still paying the time-and-money tax for that reality.
