Animal Jam Data Breach Passwords ((exclusive))

The following is a briefing paper analyzing the 2020 Animal Jam data breach, focusing on password security and the subsequent impact on the platform's user base. Case Study: The 2020 Animal Jam Data Breach Executive Summary

The Animal Jam Data Breach: Managing Compromised Passwords and Security Animal Jam Data Breach Passwords

1. Usernames (including display names and login IDs)
2. Email addresses (many linked to parents’ accounts)
3. Birthdates (used for account recovery and age verification)
4. Player IP addresses (revealing geographic location)
5. Hashed passwords (more on this below)
6. Membership status (premium vs. free accounts)
7. Gems, diamonds, and in-game item lists

Within two weeks of the database’s appearance on the dark web, an estimated 70-80% of the passwords had been successfully cracked and converted back to plain text. The following is a briefing paper analyzing the

Final Verdict: Is Animal Jam Safe Now?

WildWorks has since upgraded its password storage to use bcrypt (a strong, computationally expensive hashing algorithm) and has implemented mandatory 2FA for certain high-value accounts. The company undergoes regular third-party security audits. For new players creating accounts today, the risk is significantly lower than it was in 2020. Usernames (including display names and login IDs) Email

Data Leaked: Usernames, 7 million unique email addresses, IP addresses, dates of birth, billing addresses, and parent names.