Data Breach

Zynga Data Breach

173.0M records exposed • September 2019

The makers of FarmVille and Words with Friends got hacked through a basic security flaw. 173 million accounts were stolen, including password reset tokens that let hackers take over accounts.

What Happened

Zynga, the company behind FarmVille and Words with Friends, was hacked by a Pakistani hacker who exploited SQL injection vulnerabilities.

Attack method: SQL injection

What Data Was Exposed

Email addresses, Usernames, SHA1 password hashes, Password reset tokens, Phone numbers

Is your business exposed?

What to Do If You're Affected

1.
Change your Zynga password
2.
Disconnect Zynga from your Facebook account
3.
Enable two-factor authentication

Lessons for Businesses

• SQL injection is still a major threat in 2019
• Password reset tokens need protection
• Gaming companies handle massive amounts of user data

Sources

https://www.zdnet.com/article/hacker-steals-data-of-over-218-million-words-with-friends-players/

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required