In November 2015, hackers extracted more than 4.8 million parents’ and 227k children’s accounts from VTech’s Learning Lodge website. The Hong Kong company produces learning products for children including software sold via the compromised website. The data breach exposed extensive personal details including home addresses, security questions and answers and passwords stored as weak MD5 hashes. Furthermore, children’s details including names, ages, genders and associations to their parents’ records were also exposed.
Accounts breached: 4833678
Breached on: November 13, 2015
Exposed data: Dates of birth, Email addresses, Family members’ names, Genders, IP addresses, Names, Passwords, Physical addresses, Security questions and answers, Usernames, and Website activity
Added on: November 25, 2015