Android Century
  • Home
  • Android Zone
    • Android Apps
    • Android Games
    • Apps APk Files
    • Games Apk Files
    • Apps Hack Tricks
  • Reviews
  • Fantasy Zone
    • Entertainment
    • Quotes and Status
    • Life Style
    • Home Made Tips
    • Hair Care
    • Skin Care
    • Fantasy Tips
  • Tricks
    • Free Recharge
    • Free Internet
    • shopping Cashback
    • Recharge Cashback
  • Tech
  • Mobiles
  • Gadgets
  • News
  • How To's
  • Software
Breaking
Loading...

Featured post

How to Take Great Photos With Apple's iPhone X

Recent Posts

Labels

  • Android Apk Files
  • Android Apps
  • Android Games
  • Apps Apk Files
  • Entertainment
  • Fantasy Tips
  • Gadgets
  • Hair Care
  • HomeMade Tips
  • How To's
  • News
  • Quotes
  • Quotes & Status
  • Recharge Cashback
  • Recharge Promo Codes
  • Shopping Cashback
  • Technology
  • skin care
Home / News / Smart teddy bears for kids suffer a contentious data breach 2017

Smart teddy bears for kids suffer a contentious data breach 2017

Latest Govt. Jobs 22:42:00 News Edit
screen shot 2017 02 27 at 4.34.08 pm

If you own a stuffed animal from CloudPets, then you better change your password to the product. The toys—which can receive and send voice messages from children and parents—have been involved in a data breach dealing with more than 800,000 user accounts.
The breach, which grabbed headlines on Monday, is drawing concerns from security researchers because it may have given hackers access to voice recordings from the toy’s customers. But the company behind the products, Spiral Toys, is denying that any customers were hacked. 
“Were voice recordings stolen? Absolutely not,” said Mark Myers, CEO of the company.
[ Further reading: How the new age of antivirus software will protect your PC ]
Security researcher Troy Hunt, who tracks data breaches, brought the incident to light on Monday. Hackers appear to have accessed an exposed CloudPets’ database, which contained email addresses and hashed passwords, and they even sought to ransom the information back in January, he said in a blog post.
The incident underscores the danger with connected devices, including toys, and how data passing through them can be exposed, he added. 
In the case of CloudPets, the brand allegedly made the mistake of storing the customer information in a publicly exposed online MongoDB database that required no authentication to access. That allowed anyone, including hackers, to view and steal the data.
On the plus side, the passwords exposed in the breach are hashed with the bcrypt algorithm, making them difficult to crack. Unfortunately, CloudPets placed no requirement on password strength, meaning that even a single character such as letter “a” was acceptable, according to Hunt, who was given a copy of the stolen data last week.
As a result, Hunt was able to decipher a large number of the passwords, by simply checking them against common terms such as qwerty, 123456, and cloudpets.
“Anyone with the data could crack a large number of passwords, log on to accounts and pull down the voice recordings,” Hunt said in his blog post. 
Security researcher Victor Gevers from the GDI Foundation said he also discovered the exposed database from CloudPets and tried to contact the toy maker in late December.
However, both Gevers and Hunt said the company never responded to their repeated warnings.
On Monday, California-based Spiral Toys, which operates the CloudPets brand, claimed the company never received the warnings. 
“The headlines that say 2 million messages were leaked on the internet are completely false,” Myers said. 
His company only became aware of the issue after a reporter from Vice Media contacted them last week. “We looked at it and thought it was a very minimal issue,” he said. 
A malicious actor would only be able to access a customer’s voice recording if they managed to guess the password, he said. 
“We have to find a balance,” Myers said, when he addressed the toy maker’s lack of password strength requirements.  “How much is too much?”
He also said that Spiral Toys had outsourced its server management to a third-party vendor. In January, the company implemented changes MongoDB requested to increase the server’s security. 
Spiral Toys hasn’t been the only company targeted. In recent months, several hacking groups have been attacking thousands of publicly exposed MongoDB databases. They’ve done so by erasing the data, and then saying they can restore it, but only if victims pay a ransom fee.   
In the CloudPets incident, different hackers appear to have deleted the original databases, but left ransom notes on the exposed systems, Hunt said.
Although the CloudPets’ databases are no longer publicly accessible, it appears that the toy maker hasn’t notified customers about the breach, Hunt said. The danger is that hackers might be using the stolen information to break into customer accounts registered with the toys.
But Myers said the company found no evidence that any hackers broke into customer accounts. To protect its users, the company is planning on a password reset for all users. “Maybe our solution is to put more complex passwords,” he said. 
Share on Facebook Share on Twitter Share on Google Plus

RELATED POSTS


Vodafone partners with Tecno to off...

LG G7 with iPhone X-like notch

Oppo F7 India launch confirmed
Smart teddy bears for kids suffer a contentious data breach 2017 Smart teddy bears for kids suffer a contentious data breach 2017 Reviewed by Latest Govt. Jobs on 22:42:00 Rating: 5

0 comments:

Post a Comment

Newer Post Older Post Home
Subscribe to: Post Comments ( Atom )

Search This Blog

TEST BOOK FOR GOVT ENTRANCE TEST

TEST BOOK FOR GOVT ENTRANCE TEST
Find All Latest book for preparation of SSC,RAILWAYBANK PO,RBI,BANK CLERK,GATE ME,GATE CE are available here in less prices, to check out the books click here

Translate

  • Popular Post
  • Random posts
  • Category

Popular Posts

  • Teen Patti Offer 2018: Refer and Earn Flipkart Vouchers Free
    Teen Patti Offer 2018: Refer and Earn Flipkart Vouchers Free
    Teen Patti Refer & Earn Offer:  Hey Guys! Today I make an article about Teen Patti Referral ...
  • Hands-on with the home windows 10 Creators update for the Xbox One: Beam recreation streaming arrives
    The Windows 10 Creators Update is here, now—yes,  now —but not (officially) on the PC. The ...
  • Taotronics TT-BH22 Headphones Review
    We make it a addiction to now not look up pricing of a product sooner than reviewing and if ...
  • Jio effect: Telcos may have to cut data rates 2017
    India's big  telecom  companies,  Bharti Airtel ,  Vodafone India  and  Idea Cellular , will be ...
  • How To Install Xposed Framework On Bluestacks
    How To Install Xposed Framework On Bluestacks
    How To Install Xposed Framework On Bluestacks For Rooted Bluestacks Only Requirements: ...
  • Hands-on: HP's Lap Dock helps your Windows Phone feel more like a real PC
    HP’s Lap Dock represents a future where a smartphone is powerful enough to replace your ...

Random Posts

  • Alone Time Is Good For Us, Research Says
    Alone Time Is Good For Us, Research Says
    11.09.2016 - 0 Comments
    Our world is more hyper-connected than ever. We have smartphones, tablets, iPods, laptops, and a few of us…
  • Google Translate now proficient in 9 major Indian languages
    Google Translate now proficient in 9 major Indian languages
    26.04.2017 - 0 Comments
    Google has just announced a new set of products and features aimed at serving the needs…
  • HTC Vive Pro announced with improved resolution and built-in headphones
    HTC Vive Pro announced with improved resolution and built-in headphones
    18.01.2018 - 0 Comments
    HTC Vive Pro is an upgraded model with improved display and built-in headphones. (Image credit:…
  • Amazon's Kindle Paperwhite e-reader just dropped to $100
    Amazon's Kindle Paperwhite e-reader just dropped to $100
    15.02.2017 - 0 Comments
    Nothing says “I love you” more than the gift of digital books. Or at least, that’s what I tell my wife when…
  • Oily Hair Care recommendations
    Oily Hair Care recommendations
    15.05.2016 - 0 Comments
     what causes oiliness of hair? nicely there are masses of reasons. it may be because you are born with…

Labels

Android Apk Files Android Apps Android Games Apps Apk Files Apps Hack Tricks Entertainment Free Internet Freecharge Gadgets Games Apk Files How To's Laptops Guide Mobiles Reviews Technology Viral's android zone free recharge

Entertainment

Tricks

Popular Posts

  • BenQ’s flagship photographer SW320 4K monitor in India costs Rs 1.25 lakh
    BenQ has launched ...
  • How To Install Xposed Framework On Bluestacks
    How To Install Xposed Framework On Bluestacks
    How To ...
  • (no title)
    I’m thinking of ...
  • Sony Xperia XZs first impressions: At Rs 49,990 every other ‘top rate’ supplying
    Sony Xperia XZs is ...
  • WhatsApp now lets you search for GIFs from within its interface
    Spicing up your ...
  • How to Test Your Internet Speed from the Command Line
    How to Test Your Internet Speed from the Command Line
  • Alone Time Is Good For Us, Research Says
    Our world is more ...

Random Posts

  • How to Enable Google’s “Material Design” in Chrome
    How to Enable Google’s “Material Design” in Chrome
    18.02.2017 - 0 Comments
    Over the last couple of years, Google has been moving towards a unified user experience with…
  • 11.02.2016 - 0 Comments
    Whatever our souls are made of, his and mine are the same
  • Mobikwik CGURU15 – Get 15% Cashback On Recharge Of Rs 20 [Selected Users] [Ultimatez Tricks]
    Mobikwik CGURU15 – Get 15% Cashback On Recharge Of Rs 20 [Selected Users] [Ultimatez Tricks]
    23.03.2016 - 0 Comments
    Mobikwik has come upw with a new offer. Mobikwik is offering 15% cashback on recharge of Rs 20 or more. This…
  • People want efficient e-governance globally: Survey
    People want efficient e-governance globally: Survey
    27.01.2018 - 0 Comments
    NEW DELHI: Simply having a presence online is not enough; governments must focus on delivering…
  • Fujifilm X-T2 review
    Fujifilm X-T2 review
    17.03.2017 - 0 Comments
    Fujifilm VERDICT With a brilliant new AF system, lovely handling and an updated sensor that delivers…

Most Popular

  • Teen Patti Offer 2018: Refer and Earn Flipkart Vouchers Free
    Teen Patti Offer 2018: Refer and Earn Flipkart Vouchers Free
    Teen Patti Refer & ...
  • SAMSUNG GALAXY J7 (2016) REVIEWS
    SAMSUNG GALAXY J7 (2016) REVIEWS
    SAMSUNG GALAXY J ...
  • Top 5 Best SmartPhones under 7000 Rs (March 2017)
    Looking for the ...
  • Apple, IBM, Cisco are huge because of Indians, do not deny them H-1B visa: RBI Governor Urjit Patel
    ...
  • SAMSUNG GALAXY J7 (2016) Specifications
    SAMSUNG GALAXY J ...
  • BlackBerry Teases Marshmallow Beta Testing for Priv by Next Week
    Blackberry ...
  • LG Q6 Review
    LG Q6 Review
    2017 is ...

Contact Form

Name

Email *

Message *

Offers Zone

Created By Android Century Distributed by Android Century
  • Home
  • About us
  • Contact us
  • Privacy policy
  • Terms of use
  • Advertise here
Subscribe Via Email Subscribe To Android Century By Email And Get Free Updates. ;-)


Your email address is safe with us!