Yet another kid-oriented brand has been breached. Hello Kitty is the victim of a cyberattack. Sanriotown.com, the online community where kids interact with the ever-popular Hello Kitty brand through blogs, games, quiz centers and more, suffered a database breach, according to Internet security research Chris Vickery.
Vickery is the same researcher who recently discovered the MacKeeper software breach. That security event leaked over 13 million credentials. The Hello Kitty breach is less severe, possibly compromising about 3.3 million user accounts.
“The alleged security breach of the SanrioTown site is currently under investigation,” the company said in a published statement. “Information will be made available once confirmed.”
Another Lesson Learned
This is another example. Every single time you enter information into a field on a Web page and click submit, that data is transmitted and stored, and could be exposed at some point in the future.
Chinese electronic toy maker VTech was hacked in November, revealing the profiles of 6.4 million kids around the world, along with 4.9 million parent accounts. The database of the company’s Learning Lodge app store, which allows customers to download apps, e-books and learning games, was breached on November 14 HKT (Hong Kong Time).
VTech makes a wide variety of children’s toys, including the VTech Tote ‘n Go Laptop, pictured above. The company’s customer database holds a slew of user profile information. The personal identifiers mentioned in the company’s report include names, e-mail addresses, passwords, secret questions and answers for password retrieval, IP addresses, mailing addresses and download histories. The database also contains kids’ information, including names, genders and birth dates.