Smart toy manufacturer Spiral Toy's CloudPets database of 800,000 customer credentials and more than two million users' messages was stored for a little over two weeks on an unsecured server and discovered by security researchers and potentially hackers, Motherboard reports. Researchers said that the exposed data has been overwritten twice, the report states. However, the company has not yet publicly disclosed the breach or notified victims. "They were very irresponsible because they had to know about this," GDI Foundation's Victor Gevers said. "People make mistakes. It's the action that follows up which defines your character. Handling serious data leaks like this proves a lack of the right personality and then you should not be in this industry or in any in which you are responsible for such data." Editor's Note: A recent Privacy Tech post looked into connected toys and privacy.
If you want to comment on this post, you need to login.