Eight days after first disclosing it was a victim of a massive cyberattack, MGM Resorts International said its resort and casino management systems were operating normally.

In a post on Tuesday night on X, formerly known as Twitter, MGM said its “resort services, dining, entertainment, pools and spas are operating normally,” while gaming floors, “including slots, table games, and poker rooms are open.”

MGM said the casino management system is “recording gaming spend” to players’ casino loyalty accounts and the company’s ticket in-ticket out voucher system is operating normally.

Initially, MGM said operations at Excalibur, one of the company’s nine Strip resorts, were still not normalized. On Wednesday morning, a company spokesman said in an email all systems had been restored at Excalibur.

The company said guests “may continue to ask casino cashiers and slot guest representatives for assistance.”

The cyberattack, first disclosed on Sept. 11, affected the company’s hotel-casino operations in eight states. In addition to casino floor disruptions, hotel guests initially could not use digital keys to enter their rooms and could not make restaurant or show reservations online. The company lost revenue from paid parking during the week because of the outages. 

In a research note Wednesday morning, Macquarie Securities gaming analyst Chad Beynon said MGM’s financial losses from the cyber attack would be between $20 million and $40 million.

Beynon spent three days in Las Vegas last week at the outset of the attack on MGM Resorts.

“Being in Vegas during the cyber attacks was eye-opening as property Internet, reservation desks, check-in desks, elevators, and machines were not running smoothly,” he wrote. “That said, we believe the financial damage was contained and relatively minimal.”

Beynon estimated the costs to Caesars Entertainment, which said last week it was also the victim of a cyberattack, would be roughly $15 million. 

Caesars, in an 8K filing with the Securities and Exchange Commission, said it took steps “to ensure that the stolen data is deleted by the unauthorized actor, although we cannot guarantee this result.”

The company didn’t confirm media reports from anonymous sources that it made a ransom payment to the unknown hackers who stole data associated with the company’s customer loyalty program.

MGM Resorts said in its post employees are available to help guests with any intermittent issues. 

Updated at 8:55 a.m. on 9/20/2023 to reflect the status of Excalibur.