social gaming platform; later acquired by Zynga
In approximately 2013, OMGPOP (omgpop.com), the maker of Draw Something (formerly iminlikewithyou, later acquired by Zynga), suffered a data breach exposing over 7.1 million email addresses and plaintext passwords. The data surfaced publicly in 2019 as part of the hacker "Gnosticplayers" claim of ~218 million accounts across Zynga's game portfolio. Plaintext passwords make the credentials immediately usable for credential stuffing, and they continue to circulate in combolists.
ObscureIQ assessment: Risk is moderate and follows the usual pattern for social gaming breaches: credential compromise, phishing, impersonation, and account takeover. Because the platform was socially connected, there may also be some added exposure around user relationships and persistent gaming identities.
Because passwords were stored in plaintext, the exposure of ~7.1 million email/password pairs enables immediate credential-stuffing and account-takeover where users reused those passwords, plus targeted phishing. Old credentials continue to circulate in combolists.
OMGPOP (omgpop.com) was a social/casual gaming company best known for the hit game Draw Something. Formerly "iminlikewithyou" (iilwy), it was acquired by Zynga in 2012.
Social gaming platform built around casual multiplayer play, account-based participation, and socially connected entertainment. The likely data context includes user credentials, profile information, friend or social graph elements, and gameplay-linked account records.
A ~2013-era OMGPOP dataset surfaced in 2019 when the hacker "Gnosticplayers" claimed access to ~218 million accounts across Zynga's portfolio. The OMGPOP portion (~7.1 million) contained email addresses and plaintext passwords. OMGPOP/Draw Something has since been largely wound down.
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
Attribution and method are based on available breach intelligence. Reported attack vector: Unknown.
If you believe your information may be included:
In approximately 2013, OMGPOP (omgpop.com), the maker of Draw Something (formerly iminlikewithyou, later acquired by Zynga), suffered a data breach exposing over 7.1 million email addresses and plaintext passwords. The data surfaced publicly in 2019 as part of the hacker "Gnosticplayers" claim of…
Verified fields include Email Address, Password.
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Every claim on this page is traceable. This breach draws on:
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation