Animal Jam Data Breach - Passwords ((link))

WildWorks used the to store passwords. Hashing is a one‑way mathematical function that turns a password into a fixed‑length string. However, SHA‑1 has been considered cryptographically broken for many years ; it is highly susceptible to brute‑force and dictionary attacks. Security experts have noted that while the passwords were “encrypted” in a technical sense, the use of SHA‑1 made them far easier to crack than modern algorithms such as bcrypt or Argon2 .

This is the most important technical detail for anyone affected by the breach. In the worst-case scenario, a company stores passwords in (readable, unencrypted strings). In a better scenario, they use hashing (converting a password into a fixed-length string of characters). In the best scenario, they use salted hashing (adding random data to each password before hashing it). Animal Jam Data Breach Passwords

Both player usernames and parent account email addresses. WildWorks used the to store passwords

While the public became widely aware of the breach in late 2020, evidence suggests that the attacker had access to WildWorks’ servers for much longer. Security experts have noted that while the passwords

The Animal Jam data breach serves as a reminder of the importance of password security and the need for companies to prioritize user data protection. By using strong, unique passwords and enabling two-factor authentication, users can reduce the risk of unauthorized access to their accounts.

If you have not changed your password since , you should do so immediately: