A security researcher recently found two toys vulnerable to leaking kids’ data, Fortune reports. One is a GPS watch called hereO, which allows kids to track family members’ locations and send messages. The other is a “smart toy bear.” Mark Stanislav at cybersecurity firm Rapid7 found coding flaws in the bear after receiving it as a gift for his unborn daughter. According to Stanislav, the bear is programed to use unsecured application programming interfaces, which could allow a hacker to learn profile information about children registered with the bear, like names, dates of birth, genders and spoken languages. Similarly, the watch contains bugs that allow Stanislav to access users’ family members’ locations and GPS logs.
Full Story
Comments
If you want to comment on this post, you need to login.