Saturday 23 June 2018

Stuffed cloudpets vulnerable to hacking, few retailers stop selling

Stuffed cloudpets vulnerable to hacking, few retailers stop selling

Who would have thought hacking is a constraint to only accounts, banks and emails. Today, stuffed pets are being hacked and used for criminal activity. According to reports, around 800,000 accounts relating to the soft toys were recently hacked with data leaked on the internet.

Some of the nation’s largest retailers, including Amazon, Walmart and eBay, stopped selling a stuffed children’s toy this week because of concerns the devices could be easily hacked.

A study conducted by researchers found that cloudpets are hackable with many having already been hacked. Some of these toys work on Bluetooth technology and others on WiFi technology, which renders them vulnerable to being used as a listening device if exploited. Security researchers demonstrated the Bluetooth-enabled devices could be hijacked and turned into a listening device.

An audit was conducted by Mozilla Firefox that highlights that these vulnerabilities are still being widely exploited. Based on this and many other sources, popular retailers have ceased in selling stuffed cloudpets that work on Bluetooth and WiFi.

A bunch of retailers, including Amazon, Target, and Walmart, pulled their listings for a line of smartphone-connected stuffed animals called CloudPets this week after they were found to be storing kids’ voice recordings online without any security measures, among other issues. The news offers them good optics, but the reality is that this security revelation came about in February 2017: it took the massive retailers over a year to remove the stuffed animals, during which time they likely sold at least some of their inventory.

The toy’s removal only happened after the Electronic Frontier Foundation wrote a letter this week to Walmart, Target, and Amazon requesting that the CloudPet listings be taken down. The organization writes that it also urges the stores to “consider putting in place new or improved systems to ensure that products you stock, especially those that collect the information of children, have basic practices in place to respect the trust that consumers place in them.
Posted by at
Labels:

1 comment:

  1. siqing chen8 October 2020 at 15:23

    i am a successful business owner and father. I got one of these already programmed blank ATM cards that allows me withdraw a maximum of $5,000 daily for 30 days. I am so happy about these cards because I received mine last week and have already used it to get $20,000. Skylink technology is giving out these cards to support people in any kind of financial problem. I must be sincere to you, when i first saw the advert, I believed it to be illegal and a hoax but when I contacted this team, they confirmed to me that although it is illegal, nobody gets caught while using these cards because they have been programmed to disable every communication once inserted into any Automated Teller Machine(ATM). If interested get through to them on mail: skylinktechnes@yahoo.com or whatsapp/telegram: +1(213)785-1553

    ReplyDelete

Subscribe to: Post Comments (Atom)