Security Market Segment LS
Friday, 20 December 2019 21:42

Hacked with friends: 173M Zynga accounts breached Featured


Have I Been Pwned has reported that much of Zynga's userbase has been 'stolen.'

In September this year, Zynga announced "While the investigation is ongoing, we do not believe any financial information was accessed. However, we have identified account login information for certain players of Draw Something and Words With Friends that may have been accessed. As a precaution, we have taken steps to protect these users' accounts from invalid logins. We plan to further notify players as the investigation proceeds."

However, the HaveIBeenPwned site suggests a different story. "In September 2019, game developer Zynga (the creator of Words with Friends) suffered a data breach. The incident exposed 173M unique email addresses alongside usernames and passwords stored as salted SHA-1 hashes. The data was provided to HIBP by"

In addition, anyone who played the games via Facebook also had their Facebook ID and phone number (if provided to Facebook) revealed in the breach.

Starting in 2007 and moving forward with such games as Farmville, CityVille, Hit It Rich, Zynga Poker, CSR Racing and many others, Zynga's games are available for play on Facebook, iOS and Android platforms.

Of course because the passwords were salted, the task of reversing the hashes back to plain text is significantly more difficult for the 'intruders,' but not impossible.

Other reporting suggests that the hack is significantly more pervasive than Zynga has admitted, although confirmation has not yet been obtained.

Once final concern is the sale by Zynga's director Ellen F. Siminoff of 5000 shares in the company just 4 days ago, and prior to any public announcement of the latest breach. This was disclosed in a formal filing to the US SEC. No investigation is currently pending.


26-27 February 2020 | Hilton Brisbane

Connecting the region’s leading data analytics professionals to drive and inspire your future strategy

Leading the data analytics division has never been easy, but now the challenge is on to remain ahead of the competition and reap the massive rewards as a strategic executive.

Do you want to leverage data governance as an enabler?Are you working at driving AI/ML implementation?

Want to stay abreast of data privacy and AI ethics requirements? Are you working hard to push predictive analytics to the limits?

With so much to keep on top of in such a rapidly changing technology space, collaboration is key to success. You don't need to struggle alone, network and share your struggles as well as your tips for success at CDAO Brisbane.

Discover how your peers have tackled the very same issues you face daily. Network with over 140 of your peers and hear from the leading professionals in your industry. Leverage this community of data and analytics enthusiasts to advance your strategy to the next level.

Download the Agenda to find out more


David Heath

David Heath has had a long and varied career in the IT industry having worked as a Pre-sales Network Engineer (remember Novell NetWare?), General Manager of IT&T for the TV Shopping Network, as a Technical manager in the Biometrics industry, and as a Technical Trainer and Instructional Designer in the industrial control sector. In all aspects, security has been a driving focus. Throughout his career, David has sought to inform and educate people and has done that through his writings and in more formal educational environments.



Recent Comments