VTech "responded to InnoTab Max security flaw months ago"

VTech has said that it was alerted to a software flaw that had potential to allow hackers to remotely take control of the device and spy on users months ago. The firm has said that it promptly issued a fix, but that some parents had yet to install it.
Author:
Publish date:
vtech

VTech is promoting a security fix for its tablet, the InnoTab Max via its website, through a series of pop-ups for parents and by contacting retailers, the firm has stated in response to an investigation by BBC Watchdog Live.

VTech has said that it was alerted to a software flaw that had potential to allow hackers to remotely take control of the device and spy on users months ago. The firm has said that it promptly issued a fix, but that some parents had yet to install it.

The issue has come to light nearly three years after the firm was criticised for its handling of a separate cyber-security incident that exposed millions of its child customers’ account details.

“This was a controlled and targeted ‘ethical hack’ by… a sophisticated cyber-firm that was in possession of a detailed knowledge of hacking techniques and InnoTab Max’s firmware,” said VTech in a statement on the latest incident.

“We are not aware of any actual attempt to exploit the vulnerability and we consider the prospects of this happening to be remote. However, the safety of children is our top priority and we are constantly looking to improve the security of our devices.”

VTech was quick to issue a software fix to the vulnerability when it was alerted to it this summer and told Watchdog Live: “We thank SureCloud for bringing this vulnerability… to our attention. We took immediate action in early summer to resolve the issue and pushed out a firmware upgrade to all affected InnoTab Max devices in Europe.”

The company added that it had recently sent an email to European owners who had not performed the upgrade to urge them to do so. 

Related

vtech.gif

VTech defends new T&Cs stance following data breach

"No company that operates online can provide 100 per cent guarantee that it won’t be hacked. The Learning Lodge terms and conditions, like the T&Cs for many online sites and services, simply recognise that fact by limiting the company’s liability for the acts of third parties such as hackers."

Featured Jobs

Copyrights Group

Marketing Manager

The Copyrights Group is one of the licensing arms within The Vivendi Group. Acquired by Vivendi in 2016 Copyrights manages the licensing for a portfolio of properties to include Paddington Bear. Some of the other companies within the Vivendi Group include Universal Music Group, and their licensing arm Bravado, Gameloft and Studiocanal to name a few.