Voice messages from children sent through an internet-connected toy called CloudPets were stolen from an exposed MongoDB database, which has been wiped clean and the data held for ransom. More than two million voice messages, many of them from children, along with the personal information of more than 800,000 registered users was swiped from the database. Parent company Spiral Toys had been notified by two security researchers working independently of each other, and only after a public disclosure published last night by Troy Hunt did it surface and deflected blame.
Source: https://threatpost.com/childrens-voice-messages-leaked-in-cloudpets-database-breach/123956/