vTech breach

vtech-crop.jpg

A massive November 2015 breach at toymaker VTech raised major concerns about the level of data security at providers of the new generation of connected toys.

Announced on: November 30, 2015

Description of breach: In mid-November, an unauthorized party accessed VTech customer data housed in its Learning Lodge app store database. Learning Lodge is a place where customers download apps, learning games, e-books, and other educational content for their VTech products.

Information exposed: Hackers retrieved adults’ profile information, including names, email addresses and passwords. They also obtained secret questions and answers for password retrieval, I.P. addresses, mailing addresses, and download histories. (More from New York Times.) The compromised database also contained the names, gender and birth dates of children.

Affected customers: The major breach exposed personal data for 12 million people, including 6.4 million minors.

Official information from vTech: http://www.vtech.com/en/press_release/2015/data-breach-on-vtech-learning-lodge-update/

December 2015 update: Man arrested in vTech hacking attack (SC Magazine UK)