If as a parent you have recently bought a teddy bear 2.0, You may have been the victim of a cyberattack. The company that owns CloudPets toys, which allow you to record voice messages between parents and children and send them through their application, has had millions of voicemails stolen from its customers, as well as email addresses and passwords.
The information was stored without any protection in a publicly accessible database during the Christmas campaign, of the 25 December 2016 to the 8 January 2017.
The exposed information was repeatedly accessed by cybercriminal groups who had a great Christmas gift: access to millions of fully exposed customer data, No protection of any kind.
The worst of all is not the company's own neglect to store that type of information in a timely manner. “little” Safer, they were even warned about the security breach, ignoring it.
If you own one of these toys and want to know if your account has been compromised, You can visit the website “Have I Been Pwned?“, where entering your email address will tell you whether or not you have been exposed to this or other attacks.
If you happen to be one of those affected, since Intecwe recommend disconnecting the toy immediately from the Internet and changing passwords, both for this toy and for all services in which you use the same key.