1 min read

UK Daycare Webcam Service Shuts Down After 12,000 User Email Addresses Are Leaked Online

Alina BÎZGĂ

February 23, 2021

UK Daycare Webcam Service Shuts Down After 12,000 User Email Addresses Are Leaked Online

A threat actor dumped 12,000 email addresses of NuseryCam users online last Friday, prompting the service to suspend operations.

NurseryCam is a remote webcam service used by around 40 daycare centers across the UK, allowing parents to watch and monitor their children’s activities.

News of the breach reached NurseryCam after the attacker notified the Register that he obtained the names, email addresses, usernames and hashed passwords of users. After verifying the leaked credentials with the help of IoT security expert Andrew Tierney, the media outlet immediately notified NurseryCam’s developers.

“A hacker contacted El Reg on Friday to say they had obtained real names, usernames, what appeared to be SHA-1 hashed passwords, and email addresses for 12,000 NurseryCam users’ accounts – and had then dumped them online,” the online publication said. “Although this person claimed to have “redacted” those details, the redaction was so poor it was trivial to figure out the real names and contact details of NurseryCam’s parent users.”

NurseryCam services were suspended on Saturday, and the company disclosed a possible data breach to the Information Commissioner’s Office (ICO), which is now investigating.

According to NurseryCam’s director Dr. Melissa Kao, the breach was possible due to an undisclosed vulnerability in the system, allowing the attacker to view and exfiltrate personal data including usernames, email addresses, names and hashed passwords.

“The person who identified the loophole has so far acted responsibly,” Kao said in statement for the BBC. “He stated he has no intention to use this to do any harm [and] wants to see NurseryCam raise the overall standards of our security measures.”

Were you a victim of a data breach? Find out with Bitdefender”s Digital Identity Protection tool.

tags


Author



Right now

Top posts

Ultimate Privacy Guide for Your Facebook Account

Ultimate Privacy Guide for Your Facebook Account

August 31, 2021

6 min read
7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

August 27, 2021

2 min read
Your Netflix Account May Be on Sale on Darkweb. Protect It

Your Netflix Account May Be on Sale on Darkweb. Protect It

August 13, 2021

3 min read
E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

July 29, 2021

5 min read
Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Gamers Should Still Take Precautions Despite No Evidence Of User Compromise in Electronic Arts Data Breach Gamers Should Still Take Precautions Despite No Evidence Of User Compromise in Electronic Arts Data Breach
Alina BÎZGĂ

September 16, 2021

3 min read
Have you fallen victim to a data breach? Follow these six steps to protect against possible side effects Have you fallen victim to a data breach? Follow these six steps to protect against possible side effects
Alina BÎZGĂ

September 14, 2021

3 min read
7 Ways to Effectively Secure Your Digital Identity 7 Ways to Effectively Secure Your Digital Identity
Alina BÎZGĂ

September 13, 2021

4 min read