JoyGames 2022

In September 2022 the gaming platform JoyGames suffered a significant data breach affecting millions of accounts. The incident exposed sensitive user information including email addresses and passwords stored as salted MD5 hashes. Due to the absence of captcha systems on the website the database contained a high volume of bot accounts alongside legitimate players. This was not the first security failure for the company as it previously experienced a major compromise in 2019. The leak allowed attackers to potentially perform credential stuffing attacks across other platforms where users might have reused their passwords.