A children’s toy company exposed data on 4.8 million parents and 200,000 kids

As millions of Americans head to online stores for Black Friday, one company is having a problem keeping its customers’ information safe. An unidentified hacker was able to extract nearly 5 million credentials from the website of children’s toy manufacturer Vtech, according to an exclusive report from Motherboard. The hacker, who obtained the data through a SQL injection attack, says he has no plans to release the information. Still, it’s possible that less scrupulous actors also attempted to exploit the security flaw. That would put 4.8 million customers at risk, as well as information on 200,000 customer children whose data is also included in Vtech’s databases.

The data includes names, emails, encrypted passwords and home addresses,…

Continue reading…