1 min read

UK Daycare Webcam Service Shuts Down After 12,000 User Email Addresses Are Leaked Online

Alina BÎZGĂ

February 23, 2021

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
UK Daycare Webcam Service Shuts Down After 12,000 User Email Addresses Are Leaked Online

A threat actor dumped 12,000 email addresses of NuseryCam users online last Friday, prompting the service to suspend operations.

NurseryCam is a remote webcam service used by around 40 daycare centers across the UK, allowing parents to watch and monitor their children’s activities.

News of the breach reached NurseryCam after the attacker notified the Register that he obtained the names, email addresses, usernames and hashed passwords of users. After verifying the leaked credentials with the help of IoT security expert Andrew Tierney, the media outlet immediately notified NurseryCam’s developers.

“A hacker contacted El Reg on Friday to say they had obtained real names, usernames, what appeared to be SHA-1 hashed passwords, and email addresses for 12,000 NurseryCam users’ accounts – and had then dumped them online,” the online publication said. “Although this person claimed to have “redacted” those details, the redaction was so poor it was trivial to figure out the real names and contact details of NurseryCam’s parent users.”

NurseryCam services were suspended on Saturday, and the company disclosed a possible data breach to the Information Commissioner’s Office (ICO), which is now investigating.

According to NurseryCam’s director Dr. Melissa Kao, the breach was possible due to an undisclosed vulnerability in the system, allowing the attacker to view and exfiltrate personal data including usernames, email addresses, names and hashed passwords.

“The person who identified the loophole has so far acted responsibly,” Kao said in statement for the BBC. “He stated he has no intention to use this to do any harm [and] wants to see NurseryCam raise the overall standards of our security measures.”

Were you a victim of a data breach? Find out with Bitdefender”s Digital Identity Protection tool.

tags


Author



Right now

Top posts

Ultimate Privacy Guide for Your Facebook Account

Ultimate Privacy Guide for Your Facebook Account

August 31, 2021

6 min read
7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

August 27, 2021

2 min read
Your Netflix Account May Be on Sale on Darkweb. Protect It

Your Netflix Account May Be on Sale on Darkweb. Protect It

August 13, 2021

3 min read
E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

July 29, 2021

5 min read
Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

From data breach to data dump: What cybercriminals do with your stolen info From data breach to data dump: What cybercriminals do with your stolen info
Alina BÎZGĂ

October 13, 2021

2 min read
2021 on Track for Record Year in Data Compromise Incidents, the ITRC Says 2021 on Track for Record Year in Data Compromise Incidents, the ITRC Says
Alina BÎZGĂ

October 08, 2021

2 min read
Twitch has been leaked, what does it mean? Twitch has been leaked, what does it mean?
Radu CRAHMALIUC

October 07, 2021

2 min read