Children’s toy firm VTech Electronics has been slapped with a $650,000 fine after admitting to a major data breach in 2015.
The firm settled privacy violation allegations with the Federal Trade Commission (FTC), and agreed to pay a fine for not properly securing its technology, leading to a data breach that put users, the vast majority of whom were children, at risk.
“As a parent, I know raising digital natives comes with a host of new challenges,” tweeted FTC Commissioner Terrell McSweeny wrote “This case underscores that we must remain mindful about how kids data is collected & used by toys & that toymakers must comply w/ #COPPA”
The breach, which took place in December 2015, saw app store database Learning Lodge hacked, with some five million user accounts compromised.
The hackers got their hands on names, email addresses, passwords, secret questions and answers for password retrieval, IP addresses, mailing addresses and download history.
“We are committed to protecting our customer information and their privacy, to ensure against any such incidents in the future,” the company said in a statement.
“Our Privacy Statement can be found on our website. The investigation continues as we look at additional ways to strengthen the security of all on-line services provided by VTech. We will provide further updates as appropriate in the future. “
Image source: Shutterstock/MaximP
- FCC Issues $10 Million Fine in Data Breach-Federal Communications Commission
- FTC Settles GLBA Enforcement Action Against TaxSlayer Stemming From 2015 Data Breach
- California disability clients, state employees hit by data breach
- Capital One Says Data Breach Affected 100 Million Customers
- Chili's Customers Possibly Impacted by Data Breach
- D&O Liability: Minnesota Federal Court Dismisses Derivative Lawsuit against Target’s D&Os for Data Breach
- Vast Reach of Security Breach re: Experian Data Breach
- Microsoft users’ emails exposed in data breach
- Happy Holidays: VTech Data Breach Affects Over 11 million Parents and Children Worldwide
- Dutch Parliament Adopts Data Breach Notification Obligation and Increases Fines
- UK Telco Loses Appeal; Should Have Reported Data Breach Within 24 Hours Of Customer Complaint, Not Fuller Investigation
- TalkTalk Handed Record Fine In Data Protection Breach In The UK