By Marcos Colón
March 1, 2017
Spiral Toys may have ignored the data breach warnings of a security researcher which initially contacted the company late in December.
The toymaker, which sells internet-connected teddy bears, recently experienced a data breach that impacted more than 800,000 customer credentials, according to a report by Motherboard.
The customer data leak, tied to its CloudPets brand, was a result of the information being stored on a database that was neither password-protected or behind a firewall. While the company claims that the incident came to its attention on Feb. 22, security expert Victor Gevers documented his efforts to contact the company well before that date.
In addition to reaching out to Spiral Toys via email, Gevers also sent a message to the company CEO via LinkedIn and worked with a Vice Media journalist to contact the company, according to CSO Online.