A threat actor shared two databases belonging to Animal Jam for free on a hacker forum that they stated were obtained by ShinyHunters, a well-known website hacker. WildWorks CEO Clary Stacey told BleepingComputer that he believes the threat actors obtained WildWork’s AWS key after compromising the company’s Slack server. Stacey stated that they are preparing a report for the FBI Cyber Task Force and notifying all affected emails. All Animal Jam users’ will be required to reset their password on the next logon.
Source: https://www.bleepingcomputer.com/news/security/animal-jam-kids-virtual-world-hit-by-data-breach-impacts-46m-accounts/