• IoTHub, Tuesday, February 9, 2016 9:05 AM

Fisher Price has fixed a security vulnerability in a smart toy after being alerted to its presence by security researchers. The Fisher-Price Smart Toy is a stuffed animal that provides added functionality via wi-fi through a mobile application installed on parents’ phones, such as device monitoring and learning activities for the child. Researchers at Rapid7 was able to determine that the API platform – which is built on Android version 4.4 (KitKat) - was not performing adequate verification of messages sent between the device and the app, allowing for unsigned messages to be transmitted between them.

Read the whole story at IoTHub »