ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

AnimeLeague Data Breach

animeleague.net
Limited exposure
Verified breach Passwords exposed
Accounts exposed 192,134
Breach date 04 Jul 2024
Added to tracker 31 Jul 2024
Data classes 8

What happened

In July 2024, AnimeLeague disclosed a data breach of their services. The data was posted for sale on a popular hacking forum and included 2 databases covering both event registration records and a dump of the phpBB bulletin board. The impacted data included passwords in various hashed formats including SHA-1, salted md5 and bcrypt, as well as usernames, private messages, dates of birth, purchases and 192k unique email addresses.

Exposed data

Dates of birth Email addresses IP addresses Passwords Phone numbers Private messages Purchases Usernames

Recommended actions

  • Change your AnimeLeague password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing AnimeLeague — attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP