NCSA's Response to CloudPets Breach
Feb 28, 2017 12:32pm
On Feb. 28, families around the nation woke up to find out that CloudPets toys had been hacked and more than 800,000 user accounts and 2 million voice recordings – mostly of children and family members – were exposed in a major data breach.
“As connected toys, appliances and cars are increasingly incorporated into our daily digital lives, the CloudPets breach illustrates that we all should pay close attention to what data is collected, particularly when our kids are involved,” said Michael Kaiser, executive director of the National Cyber Security Alliance (NCSA). “Additionally, it is a sobering reminder of the need to be especially vigilant in establishing strong credentials and authentication on such devices that we normally wouldn’t associate with security risks. While many new, digitally enhanced toys offer the promise of unique user experiences, they are subject to the same risks of any digital device and require the same security and privacy design vigilance as they make their way into the marketplace.”
The Internet of Things (IoT) and rapidly advancing technology are making our lives easier and unlocking potential for the future, but it’s important to remember to STOP. THINK. CONNECT.™ Consumers should demand clear communications on how their data is collected and insist that companies make privacy and security a top priority.
NCSA recommends following these tips to enjoy the countless benefits of cutting-edge tech and connected toys with more peace of mind:
The NCSA infographic below illustrates the growing presence of connected devices in the home while providing useful tips for consumers.
About the National Cyber Security Alliance
The National Cyber Security Alliance (NCSA) is the nation's leading nonprofit, public-private partnership promoting cybersecurity and privacy education and awareness. NCSA works with the U.S. Department of Homeland Security (DHS) and NCSA's Board of Directors, which includes representatives from ADP; AT&T Services, Inc.; Bank of America; Barclays; BlackBerry Corporation; CDK Global, LLC; Cisco; Comcast Corporation; ESET North America; Facebook; Google; Intel Corporation; LifeLock, Inc, Logical Operations; Mastercard; Microsoft Corp.; NXP Semiconductors; PayPal; PKWARE; Raytheon; RSA, the Security Division of EMC; Salesforce; SANS Institute; Symantec and Visa Inc. NCSA’s core efforts include National Cyber Security Awareness Month (October); Data Privacy Day (January 28) and STOP. THINK. CONNECT.™, the global online safety awareness and education campaign cofounded by NCSA and the Anti-Phishing Working Group, with federal government leadership from DHS. For more information on NCSA, please visit staysafeonline.org/about-us/overview/.