VTech is promoting a security fix for its tablet, the InnoTab Max via its website, through a series of pop-ups for parents and by contacting retailers, the firm has stated in response to an investigation by BBC Watchdog Live.
VTech has said that it was alerted to a software flaw that had potential to allow hackers to remotely take control of the device and spy on users months ago. The firm has said that it promptly issued a fix, but that some parents had yet to install it.
The issue has come to light nearly three years after the firm was criticised for its handling of a separate cyber-security incident that exposed millions of its child customers’ account details.
“This was a controlled and targeted ‘ethical hack’ by… a sophisticated cyber-firm that was in possession of a detailed knowledge of hacking techniques and InnoTab Max’s firmware,” said VTech in a statement on the latest incident.
“We are not aware of any actual attempt to exploit the vulnerability and we consider the prospects of this happening to be remote. However, the safety of children is our top priority and we are constantly looking to improve the security of our devices.”
VTech was quick to issue a software fix to the vulnerability when it was alerted to it this summer and told Watchdog Live: “We thank SureCloud for bringing this vulnerability… to our attention. We took immediate action in early summer to resolve the issue and pushed out a firmware upgrade to all affected InnoTab Max devices in Europe.”
The company added that it had recently sent an email to European owners who had not performed the upgrade to urge them to do so.