What Happened
In January 2013, OMGPOP, a gaming platform later acquired by Zynga, suffered a data breach that exposed approximately 7.1 million user accounts. The breach compromised email addresses and plain text passwords, along with additional sensitive information including hashed and salted passwords, password reset tokens, full names, phone numbers, and Facebook IDs. A hacker operating under the alias “Gnosticplayers” gained unauthorized access to the platform. The stolen data remained largely unknown until it was publicly leaked in 2019, when it was subsequently added to breach databases like Have I Been Pwned in November 2023.
