It does look as though the folks over at VTech are not having a really good time as the holiday season nears – simply because they have to navigate through some really choppy waters at this point in time. We have received word that the company experienced a data breach not too long ago, exposing data on 6.4 million children and 4.8 million adults. In what can be said to be another whammy, security researchers have discovered not one, but a couple of glaring vulnerabilities in the InnoTab Max tablet which is meant for children, and remains mum on the situation as to whether it has a security team in the first place.
Ken Munro of Pen Test Partners found the security issues concerning the InnoTab in a single day, and it was easy to locate the flaw since this flaw is a known one for over a couple of years. The processor used would be the Rockchip RK3168 that allowed folks to obtain data from the device’s memory via a tool known as ‘rkflashtool’ in an easy manner.
Munro wrote, “This bug has been known about for well over two years. It’s a bit lame of VTech to continue shipping vulnerable tablets, tablets that expose children’s data.” Hopefully VTech will be able to do something about the rather precarious security situation on their hands sooner rather than later, and communicating more with its customers would really help, too.