ShellCodeX Breach Report
CloudPets Data Breach
cloudpets.com
Verified breach
Passwords exposed
Accounts exposed
583,503
Breach date
01 Jan 2017
Added to tracker
27 Feb 2017
Data classes
3
What happened
In January, the maker of teddy bears that record children's voices and sends them to family and friends via the internet CloudPets left their database publicly exposed and it was subsequently downloaded by external parties (the data was also subject to 3 different ransom demands). 583k records were provided to HIBP via a data trader and included email addresses and bcrypt hashes, but the full extent of user data exposed by the system was over 821k records and also included children's names and references to portrait photos and voice recordings.
Exposed data
Email addresses
Family members' names
Passwords
Recommended actions
- Change your CloudPets password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing CloudPets โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP