WiFi-connected Toys May Stalk Children -- Security Today

WiFi-connected Toys May Stalk Children

By Ginger Hill
Feb 24, 2015

I often think about when I was a child and all the cool toys that I had: my Mickey Mouse record player, Sit-n-Spin, paint-with-water books, and enough stuffed animals to open my own store! As simple as those “nostalgic” toys seem, at the time, those were considered high-tec gadgetry. Now, children have toys that connect directly to the Internet, interact with them in real-time, record what they say and even adapts to their interests. While these toys are “cool,” and probably on every child’s Santa list for Christmas, there are some scary security implications.

The data being collected from children as they innocently play and interact with their toys could be used to conduct market research, advertise new products directly to children and even build profiles of their interests, a profile that could follow them for the rest of their digital lives.

Let’s take Hello Barbie as an example. Developed by ToyTalk, this interactive, Wi-Fi-connected Barbie doll has a microphone, speaker and a small embedded computer, along with Wi-Fi hardware. Press a button on Barbie’s belt buckle and she wakes up, asks a question and then activates the microphone. While the child speaks to Barbie, his or her replies (and any background noise) are being recorded, encoded, encrypted and sent into ToyTalk’s servers. The audio is then processed by voice-recognition software to figure out what was said and how best to reply.

This recorded data is supposedly used to assist Mattel and ToyTalk to improve Barbie’s scripted replies that are in the doll’s backend software. This is all fine and great, making the child’s future experience with the doll even more enriching, but what happens if ToyTalk’s servers get hacked? What happens if your child’s voice falls into an online predator’s hands? What happens if Barbie gets hacked by bad people who start interacting with your child?

All scary thoughts, but rest assured parents, because Barbie will email you weekly or daily, giving highlights about what your child has said and there’s even an app that allows you to specify “off limit” conversation topics.

By the way, whatever happened to teaching our children NOT to talk to strangers?!

About the Author

Ginger Hill is Group Social Media Manager.

Featured

Survey: Nearly Half of Employees Hide Workplace AI Use

Laserfiche, a SaaS provider of intelligent content management and business process automation, recently released new survey findings on AI adoption in the workplace, revealing that nearly half of Americans (49%) who use AI at work keep it to themselves, with 15% deliberately avoiding telling their manager. Read Now
- Artificial Intelligence
- Cybersecurity
46% of Enterprise Passwords Are Vulnerable to Cracking

Picus Security recently released The Blue Report™ 2025, based on more than 160 million real-world attack simulations. Now in its third year, the report provides a data-driven assessment of how well security controls perform against today’s threats — and this year’s findings are the most concerning to date. Read Now
- Cybersecurity
Community-Led Video Security Network Transforms Pennsylvania City Public Safety

A community-supported video security initiative has transformed public safety in Lancaster, Pennsylvania. The citizen-led collaboration demonstrates how open platform video technology can help revitalize struggling urban areas. Read Now
- Government
Browser-Based AI Agents: The Silent Security Threat Unfolding

Some of the most revolutionary advances in artificial intelligence include browser-based AI agents, which are self-sustaining software tools integrated into web browsers that act on behalf of individuals. Read Now
- Cybersecurity
Report: Cybercriminals Abandon Tech Tricks for Personalized Email Deception Tactics

VIPRE Security Group, a cybersecurity, privacy, and data protection company, has released its email threat landscape report for Q2 2025. Through an examination of worldwide real-world data, this report sounds the alarm on the most significant email security trends observed in the second quarter of 2025, enabling organizations to develop effective email security defenses for the remainder of the year. Read Now
- Cybersecurity

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

PureTech Systems, Clear Align Partner to Deliver Advanced Autonomous Security, Command-and-Control for U.S. Air Force Tactical Security System

Webinars

Whitepapers

New Products

4K Video Decoder

3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises.
Camden CV-7600 High Security Card Readers

Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure.
Unified VMS

AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities