If you want, I can:
The Animal Jam data breach occurred between October 10 and 12, 2020, impacting approximately 46 million user accounts. The leak was discovered on November 11, 2020, after stolen data was posted on a cybercrime forum known as RaidForums. Impact on Passwords
While the passwords were not leaked in plain text, they were stored as salted PBKDF2 hashes.
Decryption Risk: Although PBKDF2 is a strong hashing algorithm, weak passwords—such as short ones or those using common dictionary words—could be "de-hashed" or cracked by hackers using automated tools. Animal Jam Data Breach Passwords
De-hashed Leaks: By December 2020, reports emerged that attackers had successfully de-hashed approximately 1 million passwords and were selling them in plain-text "combo-lists".
Mandatory Reset: In response, WildWorks (the developer) forced a mandatory password reset for all players and disabled the old, compromised credentials. Extent of the Compromised Data
The breach involved 46 million account records, which included varying levels of detail: Animal Jam Data Breach - Have I Been Pwned If you want, I can:
In the world of online gaming for children, few platforms have achieved the longevity and popularity of Animal Jam. Created by WildWorks (formerly Smart Bomb Interactive) in collaboration with National Geographic, this virtual world has attracted over 160 million registered users since its launch in 2010. However, with massive popularity comes massive risk. In late 2020, details emerged of a catastrophic data breach that exposed millions of Animal Jam accounts—including one of the most sensitive pieces of digital information: passwords.
For parents and young gamers alike, understanding the scope of the Animal Jam data breach is not just about losing a virtual pet or den. It is about real-world identity theft, credential stuffing attacks, and the long-term security of every family member’s online life.
Stay safe, Jammers. The wild is dangerous—especially the dark web. The Animal Jam data breach occurred between October
Here’s a concise incident report:
Use a free tool like Have I Been Pwned (haveibeenpwned.com) to check if your email address was in the Animal Jam breach or any other. For parents, also check your personal email addresses.
Crucially, change the password on any other website or app where you used the same or similar password as your old Animal Jam password. Pay special attention to:
If your child has multiple online accounts, consider a family password manager (e.g., Bitwarden, 1Password, or Apple Keychain). This generates and stores strong, unique passwords for every site so you never have to remember them—and never have to reuse passwords.
If your child played Animal Jam anytime before November 2020, assume their password is public information.