A month after the hacking of VTech, an educational toys company, on November 14, a man was arrested in UK as he was suspected to be the person behind the hideous breach.
England Police said that a 21-year old man was arrested on Tuesday in connection to the said breach that happened last month which exposed personal data for 12 million people, including 6.4 million minors, according to BBC.
The accessed information, as previously reported, included name, email address, encrypted password, secret question and answer for password retrieval, IP address, mailing address and download history of parents, as well as names, genders and birth dates of children.
“We are still at the early stages of the investigation and there is still much work to be done,” said South East Regional Organised Crime Unit (SEROCU) officials in a statement.
Parents were specifically alarmed by the said hack as it involved information of minors such as photos and chat logs on VTech Learning Lodge.
VTech’s Learning Lodge and its several websites are still suspended temporarily for 'precautionary measures’ and for thorough security assessment and fortification.
VTech is currently facing a class action suit from US consumers regarding alleged privacy breach that is tied to products which include the InnoTab 3, InnoTab 3S Plus, InnoTab 3S, the Tote & Go Laptop, MobiGo, ABC Learning Classroom toys; as well as the Kid Connect, Learning Lodge, and PlanetVTech services.
However, according to , the hacker who is believed to be behind such breach told Vice’s Motherboard blog that he never intended to sell nor use the data. He was just drawing people’s attention on VTech’s weak security measures.
“Profiting from dumps is not something I do. Especially not if children are involved! I just want issues made aware of and fixed,” the hacker told Motherboard in a private chat.
What do you think of the development of the case regarding the hacking of VTech customer data?