VTech Data Breach Affects 5 Million User Accounts

Chinese electronic toymaker (pictured: VTech Tote 'n Go Laptop) VTech, has been hacked, revealing the information of 5 million customers. The database of the company?EU?s Learning Lodge app store, which allows customers to download apps, e-books and learning games, was breached on November 14 HKT (Hong Kong Time). The hack was discovered on November 24 HKT and customers were notified on November 27 HKT.

The customer database holds a slew of user profile information. The personal identifiers mentioned in the company?EU?s report include names, e-mail addresses, passwords, secret questions and answers for password retrieval, IP addresses, mailing addresses and download histories. The database also contains kids?EU? information, including names, genders and birth dates.

?EU?It is important to note that our customer database does not contain any credit card information and VTech does not process nor store any customer credit card data on the Learning Lodge Web site,?EU? the company said in a statement. ?EU?To complete the payment or check-out process of any downloads made on the Learning Lodge Web site, our customers are directed to a secure, third-party payment gateway.?EU?

Serious Risks

We turned to Mark Bower, global director of product management at HP Enterprise Data Security, to get his thoughts on the breach. He told us there are regulations in place about the collection, storage and use of data involving children -- but perhaps they need to be rethought, as compliance may not be enough to protect today?EU?s children?EU?s data from advanced threats.

?EU?In the United States, the regulation is called COPPA, Children?EU?s Online Privacy Protection Rule, which is regulated by the FTC. There are specific controls that must be adhered to in collecting and using children?EU?s data, and several companies have been fined to date for non-compliance,?EU? Bower said. ?EU?Breach of children?EU?s data in itself has many serious risks, as you could...

Comments are closed.