Breach Detection BREACH DETECTION

According to officers from the South East Regional Organised Crime Unite (SEROCU), a 21-year-old man has been arrested on suspicion of being involved in the VTech cyber-attack.

This man was arrested on Tuesday morning in Bracknell on suspicion of unauthorized access to a computer to facilitate the commission on an offense and suspicion of causing a computer to perform functions to secure or enable unauthorized access to a program or data.

VTech has stated that a hacker gained access to the personal credentials of individuals who registered an account for VTech’s Learning Lodge, Kid Connect, and their PlanetVTech services. The hacker was able to obtain 4.8 million parent accounts & 6.3 million kids’ profiles from Learning Lodge, as well as 1.2 million from the Kid Connect app. The hacker was also able to access 235,000 parent accounts and 227,000 kids’ accounts from the PlanetVTech databases.

Kids profiles include details like names, genders & dates of birth, while parent accounts include names, email addresses, security Q&A, IP addresses, passwords, mailing addresses and download history.

Shortly after the breach, the hacker spoke with Motherboard and explained he targeted the educational toy maker to bring light to the company’s inadequate security practices and raise awareness of the flaws in hopes the company would quickly fix them.

In a quote from the Craig Jones, Head of the Cyber Crime Unit at SEROCU, “We are still at the early stages of the investigation and there is still much work to be done. We will continue to work closely with our partners to identify those who commit offenses and hold them to account. We are pursuing cyber criminals using the latest technology and working with businesses and academia to further develop specialist investigative capabilities to protect and reduce the risk to the public.”

With this breach, in particular, affecting millions of children and parents alike, it's important for companies collecting sensitive data like dates or birth and addresses to approach IT security with a layered approach. 

Data security is important for the health of your business and its reputation and as sophisticated attacks increase from both external sources such as Trojans, worms, and modern malware, as well as internal threats from ‘Insiders’ knowing ‘how to operate within the rules’ to avoid detection, IT security is facing its most testing time.

By working with NNT you will be able to adopt a layered approach to security that incorporates the right processes, methodology, and set of tools in order to guard your environment against this new threat landscape.

 

Read the Press Release by SEROCU

Read this article on Security Week

 

 

 

 

 

 

NNT Products
USA Offices
New Net Technologies LLC
Naples
Suite #10115, 9128 Strada Place
Naples, Florida, 34108
Atlanta
201 17th Street, Suite 300
Atlanta, Georgia, 30363.

Tel: 1-888-898-0674
email [email protected]
UK Office
New Net Technologies LLC
Rivers Lodge
West Common
Harpenden
Hertfordshire
AL5 2JN

Tel: 01582 287310
email [email protected]
Connect
Google+ Linkedin Twitter - Change Tracker Facebook rss feed YouTube
CIS benchmarking SEWP Cybersecurity 500 Sans Institute
Copyright 2017, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.