Funimation Comments on Website Data Breach
posted on by Karen Ressler
Funimation Entertainment provided a comment on Friday regarding the July data breach of the Funimation website. The company confirmed that some names, e-mail addresses, and dates of birth may have been compromised — and it has sent notifications to customers potentially affected — but passwords were not viewable as they are encrypted.
The full statement is as follows:
Safeguarding the privacy and security of our customers' information is a top priority.
In August 2016 we learned that our web application forum software was the subject of a sophisticated intrusion. Upon learning of the issue, our incident response team promptly launched an investigation and has been working very closely with one of the nation's leading cybersecurity firms that regularly investigates and analyzes these types of incidents. Following our complex forensic investigation, which was recently concluded, we devoted considerable time and effort to determine what information contained within the forums database may have been compromised.
Funimation has sent written notification to those customers whose names, e-mail addresses, and dates of birth may have been accessed, as required by state notice laws. Passwords were encrypted and not viewable as a result of this incident.
We are taking proactive steps to strengthen our IT systems moving forward to prevent similar issues in the future. We immediately turned off the forums web application and have since changed all administrator passwords, relaunched an updated version of the site with additional security, increased the complexity of the passwords required for user accounts and upgraded the Forums Platform.
The "Have I been pwned?" and Vigilante websites reported earlier this week that around 2.5 million accounts may have been compromised in a data breach of Funimation's website in July.