Hasty Briefsbeta

Bug in AI Toy Console leaked 50k kid's conversation

8 days ago
https://www.wired.com/story/an-ai-toy-exposed-50000-logs-of-its-chats-with-kids-to-anyone-with-a-gmail-account/
Copy Link
  • #Children's Privacy
  • #AI Security
  • #Data Exposure
  • Joseph Thacker and Joel Margolis discovered a security flaw in Bondu's web portal that exposed children's private conversations and personal data.
  • The exposed data included children's names, birth dates, family member names, and detailed chat transcripts with the AI toy.
  • Bondu fixed the security issue within hours and implemented additional measures, but the incident raises concerns about AI toy data privacy.
  • Researchers warn about the risks of AI-enabled toys, including potential misuse of sensitive data by malicious actors.
  • Bondu uses third-party AI services like Google's Gemini and OpenAI's GPT5, raising questions about data sharing with these companies.
  • The incident highlights the broader issue of security in AI-driven products, especially those designed for children.
  • Despite Bondu's safeguards, the exposure of sensitive data undermines trust in AI toy safety and privacy measures.
AboutLogin