It turns out a VTech hacker is hoarding some-more than only the personal data of millions of customers.
The purported designer behind a fourth largest consumer information crack told Motherboard that a penetrate unprotected other supportive information, including children’s photos and discuss logs between kids and parents.
The hacker, whose temperament was not revealed, pronounced he or she was means to collect conversations and headshots from a company’s Kid Connect service, that allows relatives and kids to discuss around a smartphone app and VTech tablet. The oldest logs were antiquated from a finish of 2014; a many new came from final month.
The association did not immediately respond to PCMag’s ask for comment.
A Nov. 14 penetrate of a Learning Lodge database unprotected names, email addresses, passwords, home addresses, and download histories of 4.8 million adults who purchased products online. The initial names, genders, and birthdays of some-more than 200,000 kids were also exposed. VTech’s patron index does not enclose credit label information.
Speaking with Motherboard around encrypted chat, a hacker common a representation of some-more than 3,830 picture files, nothing of that he or she intends to tell or sell. “Frankly, it creates me ill that we was means to get all this stuff,” a hacker said. “VTech should have a book thrown during them.”
Anyone in possession of this information could presumably couple a children to their parents, exposing families’ full identities.
VTech has temporarily dangling a Learning Lodge app store and a series of associated websites for “thorough confidence comment and fortification,” and is working with regulators in Hong Kong for a “compliance check.”
The association alerted business of intensity bearing following a hack, and users are speedy to follow adult around email (email@example.com in a U.S.). More sum are also accessible on a VTech FAQ page.