WildWorks, the gaming firm that makes the favored children sport Animal Jam, has confirmed an information breach.

Animal Jam is among the hottest video games for youths, rating within the prime 5 video games within the 11th of September age class in Apple’s App Retailer within the U.S., in keeping with information supplied by App Annie. However whereas no information breach is ever excellent news, WildWorks has been extra forthcoming in regards to the incident than most corporations could be, making it simpler for fogeys to guard each their info and their children’ information.

Right here’s what we all know.

WildWorks mentioned in a detailed statement {that a} hacker stole 46 million Animal Jam data in early October however that it solely realized of the breach in November.

The corporate mentioned somebody broke into one in all its methods that the corporate makes use of for workers to speak with one another, and accessed a secret key that allowed the hacker to interrupt into the corporate’s consumer database. The dangerous information is that the stolen information is thought to be circulating on at the least one cybercrime discussion board, WildWorks mentioned, which means that malicious hackers could use (or be utilizing) the stolen info.

The stolen information dates again to over the previous 10 years, the corporate mentioned, so former customers should be affected.

A lot of the stolen information wasn’t extremely delicate, however the firm warned that 32 million of these stolen data had the participant’s username, 23.9 million data had the participant’s gender, 14.8 million data contained the participant’s start yr, and 5.7 million data had the participant’s full date of start.

However, the corporate did say that the hacker additionally took 7 million father or mother e mail addresses used to handle their children’ accounts. It additionally mentioned that 12,653 father or mother accounts had a father or mother’s full title and billing handle, and 16,131 father or mother accounts had a father or mother’s title however no billing handle.

In addition to the billing handle, the corporate mentioned no different billing information — corresponding to monetary info — was stolen.

WildWorks additionally mentioned that the hacker additionally stole participant’s passwords, prompting the corporate to reset each participant’s password. (In case you can’t log in, that’s in all probability why. Verify your e mail for a hyperlink to reset your password.) WildWorks didn’t say the way it scrambled passwords, which leaves open the likelihood that they could possibly be unscrambled and probably used to interrupt into different accounts which have the identical password as used on Animal Jam. That’s why it’s so essential to make use of distinctive passwords for every website or service you employ, and use a password manager to retailer your passwords safely.

The corporate mentioned it was sharing details about the breach with the FBI and different regulation enforcement companies.

So what can dad and mom do?

  • Fortunately the info related to children accounts is proscribed. However dad and mom, when you have used your Animal Jam password on some other web site, ensure you change these passwords to robust and distinctive passwords in order that no one can break into these different accounts.
  • Hold a watch out for scams associated to the breach. Malicious hackers like to leap on current information and occasions to attempt to trick victims into turning over extra info or cash in response to a breach.